The University of Wisconsin System is one of the largest systems of public higher education in the country and employs more than 40,000 faculty and staff statewide. The UW System’s combined enrollment headcount exceeds 165,000. With 13 universities across 26 campuses and a statewide extension network with offices in every county, the UW System is a tremendous academic, cultural, and economic resource for Wisconsin, the nation, and the world. The UW System is governed by a single Board of Regents comprised of 18 members. The UW System head is the President of the System.
The Office of Learning & Information Technology Services (OLITS) is dedicated to supporting the use of technology to enhance the teaching and learning mission of the UW System institutions. OLITS staff have responsibility for systemwide collaboration and enhancement of six major areas of Information Technology: 1) overall systemwide IT planning, 2) technology for teaching and learning, 3) support for major IT infrastructure and administrative systems, 4) wide area networking issues, 5) library automation and collections enhancement, and 6) research and development in emerging technologies. In addition, OLITS develops and supports information technology systems and services that allow UW System Administration staff to perform their responsibilities effectively and efficiently.
The Cybersecurity Architect plays an integral role in defining and assessing the University of Wisconsin System’s security strategy, architecture and practices. The cybersecurity architect will be required to effectively translate business objectives and risk management strategies into specific security processes enabled by security technologies and services.
Telecommuting or hybrid work options may be available.
Planning and Design Activities
- Develops and maintains a security architecture process that enables the enterprise to develop and implement security solutions and capabilities that are clearly aligned with business, technology and threat drivers.
- Develops and maintains security architecture artifacts (models, templates, standards and procedures) that can be used to leverage security capabilities in projects and operations.
- Determines baseline security configuration standards for operating systems (e.g. operating system hardening), network segmentation, and identity and access management (IAM).
- Develops standards and practices for data encryption and tokenization within the UW System based on UW System data classification criteria.
- Tracks developments and changes in digital business and threat environments to ensure that these are adequately addressed in cybersecurity strategy plans and architecture artifacts.
- Validates IT infrastructure and other reference architectures for security best practices and recommend changes to enhance security and reduce risk where applicable.
- Validates security configurations and access to security infrastructure tools, including firewalls, intrusion prevention systems (IPSs), web application firewalls (WAFs), anti-malware/endpoint protection systems, etc.
- Conducts or facilitates threat modeling of services and applications that tie to the risk and data associated with the service or application.
- Coordinates with the privacy officer to document data flows of sensitive information within UW System (e.g. PII or ePHI) and recommends controls to ensure this data is adequately secured.
- Reviews network segmentation to ensure least privilege for network access.
- Liaises with other IT architects and security practitioners to share best practices and insights.
- Liaises with internal audit (IA) team to review and evaluate the design and operational effectiveness of security-related controls.
- Participates in application and infrastructure projects to provide security planning advice.
- Liaises with business continuity management team to validate security practices for both disaster recovery planning (DR) and continuity of operations (COOP) testing and operations when failover occurs.
- Review’s security technologies, tools and services, and makes recommendations to the broader security team for their use based on security, financial and operations metrics.
- Leads and/or coordinates penetration testing and other red team exercises as directed by the Chief Information Security Officer (CISO).
- The cybersecurity architect will demonstrate knowledge of security and risk management through ongoing continuing professional education
- Maintain and expand professional networks by participating in UW System-wide programs and national professional societies
- Perform other duties as assigned
- Bachelor’s Degree in Computer Science, Information Systems or related field
- Five (5) or more years demonstrated proficiency in security management, network security devices, security practices or infrastructure security in a regulated environment
- Strong customer focus with a track record for driving delivery and operational performance improvements across an organization
- Excellent verbal and written communication skills as well as customer service and organizational skills
- Current certification in areas related to information security or risk management (e.g., CISSP, CISA, GIAC)
- Previous work managing security infrastructure such as firewalls, IPSs, WAFs, endpoint protection, SIEM and log management technology
- Experience in using architecture methodologies such as SABSA, Zachman and TOGAF.
- Experience reviewing application code for security vulnerabilities.
KNOWLEDGE, SKILLS AND ABILITIES
- Knowledge of IT infrastructure:
- Operating Systems (Windows, UNIX and Linux)
- Knowledge of common information security management frameworks (e.g. NIST, ISO 27000)
- Understanding of IAM technologies and services (Active Directory, LDAP, Amazon Web Services IAM)
- Strong working knowledge of IT service management:
- Change management
- Configuration management
- Asset management
- Incident management
- Problem management
- Strong attention to detail
- Willing to travel on university business
- The cybersecurity architect will be expected to demonstrate the following key behaviors and competencies as they fulfill the core responsibilities of their role:
- Adaptability: Demonstrates flexibility within a variety of changing situations, while working with individuals and groups. Changes his or her own ideas or perceptions in response to changing circumstances.
- Conceptual thinking: Synthesizes facts, theories, trends, inferences and key issues and/or themes in complex and variable situations. Recognizes abstract patterns and relationships among apparently unrelated entities and situations. Applies appropriate concepts and theories in development of principles, practices, techniques, tools and solutions.
- Openness to new learning: Takes personal responsibility for personal growth. Acquires strategies for gaining new knowledge, behaviors and skills.
- Versatility: Ability to work effectively with different types of scenarios and challenges. Ability to address tasks and projects for which no precedence exists in the organization.
CONDITIONS OF EMPLOYMENT
This position is a full-time (1.0 FTE), salaried (exempt) academic staff position. This is an ongoing position. The official title is IT Architect II (Inst).
The UW System is required to conduct a criminal background and sexual harassment check for final candidate(s) prior to employment.
Please note that successful applicants are responsible for ensuring their eligibility to work in the United States (i.e. a citizen or national of the United States, a lawful permanent resident, a foreign national authorized to work in the United States without the need of employer sponsorship) on or before the effective date of appointment.
COMPENSATION AND BENEFITS
Well-qualified candidates can expect a starting annual salary within a range of $80,000 – $100,000. Salary offered is commensurate with the candidate’s education, related experience, and qualifications. UW System employees receive an excellent benefit package. UW System employees receive an excellent benefits package. To learn more about the benefits package, review the UW System Employee Benefits Brochure.
To ensure full consideration, please submit application materials as soon as possible. Applicant screening will begin immediately and be ongoing through 11:55 p.m. Sunday, July 10, 2022. However, applications may be accepted until the position has been filled.
- Follow the onscreen instructions; be sure to upload ALL THREE of the required documents: resume, cover letter, and references as PDF files. Failing to include any of these documents may disqualify your application. Uploading your documents as PDFs is also critical to maintain the formatting of your documents.
- Your cover letter MUST specifically address how your education and experience relate to the position and qualifications. Be sure to emphasize the areas outlined under “Minimum Qualifications.”
- Your reference page should include the names, business addresses, e-mail addresses, and phone numbers for three professional references with at least one being from your current or previous supervisor(s).
The University of Wisconsin System Administration is an affirmative action/equal opportunity employer and actively seeks and encourages applications from women, minorities, and person with disabilities.
Questions may be addressed to: Sarah Wilson, Human Resources, at email@example.com .