Summary

Under general direction, supports various components of UNM's cybersecurity programs. Requires foundational knowledge of cybersecurity regulations and practices. May supervise or provide functional direction to assigned staff and/or student employees. Positions in this classification are reserved for units reporting to the Chief Information Officer.

Duties and Responsibilities

1. Supports the University's cybersecurity program and initiatives to ensure University information and information systems are adequately safeguarded as required by laws, regulations, and University policies and procedures.
2. Supports projects and technologies designed to address cybersecurity risks.
3. Supports University cybersecurity processes and systems.
4. Tests and monitors various technologies including but not limited to firewalls, intrusion detection systems, extended detection and response tools, vulnerability scanning tools, security threat intelligence services and tools, and security information and event management tools.
5. May participate in cybersecurity policy and process development, implementation, and/or communication.
6. Assists in cybersecurity incident and data breach response activities, as assigned.
7. Provides support for authorized investigations, as assigned.
8. Supports the development of materials for cybersecurity education/awareness programs.
9. Develops knowledge of relevant cybersecurity laws and regulations, and corresponding technologies.
10. Identifies and develops effective working relationships and lines of communication with internal and external partners.
11. Performs miscellaneous job-related duties as assigned.

Minimum Job Requirements

• Bachelor's degree; at least 1 year of progressively responsible experience directly related to the duties and responsibilities specified.
• Completed degree(s) from an accredited institution and/or experience that is directly related to the duties and responsibilities specified may be interchangeable on a year-for-year basis.

Knowledge, Skills and Abilities Required

• Maintain currency of knowledge with respect to relevant laws and regulations related to cybersecurity.
• Demonstrated verbal and written communication skills for both technical and non-technical audiences.
• Problem analysis and resolution skills as they apply to cybersecurity concepts and services.
• Strong interpersonal and communication skills and the ability to work effectively with a wide range of constituencies in a diverse community.
• Ability to organize efforts and adjust work priorities in response to University priorities.
• Knowledge of one or more scripting languages such as BASH, PowerShell, Python, or Ruby.
• Proficiency with various system administration knowledge domains including but not limited to operating systems (i.e. GNU/Linux and/or Windows Server); DNS, DHCP, IPAM; routing and switching; event monitoring; directory services; and infrastructure as code tools.

Distinguishing Characteristics

a) Includes rotating on-call primary cybersecurity incident and breach response duties; and b) Ability to operate on a scheduled 24-hour on-call basis.

Conditions of Employment

• Must pass a pre-employment criminal background check.

Working Conditions and Physical Effort

• No or very limited physical effort required.
• No or very limited exposure to physical risk.
• Work is normally performed in a typical interior/office work environment.

The University of New Mexico provides all training required by OSHA to ensure employee safety.

Revised Date: 02/01/2024