• Utilizing information security systems in place, monitor for and investigate security events
• Monitor, maintain, and execute changes to the ISTO security systems
• Review weekly information systems security reports.
• Maintains access matrix and manages the security door codes for Springfield STO buildings.
• Maintains relationships with building Security vendors, i.e. Central Illinois Security, A-1, etc.
• Periodically conduct a complete review of each system's audits and monitor corrective actions until all actions are closed.
• Collaborate with ISTO end-users, IT and external suppliers to ensure business requirements are properly aligned with IT security requirements.
• Perform ISTO risk assessments to identify control strengths/weaknesses, assess the effectiveness of existing controls, and recommend remedial action.
• Investigate potential or actual security violations or incidents to identify issues and areas that require new security measures or policy changes.
• Implement the security initiatives that will improve the ISTO security posture through people, processes and technology.
• Deliver IT Security solutions and support for electronic records retention and e-discovery.
• Contribute to the creation, documentation and maintenance of security technical standards.
• Work closely with application, service providers, network, auditors and other teams as necessary to mitigate IT security related issues.
• Under the direction of the Director of IT Infrastructure and Support, implement security best practices, trends, risk analysis, risk mitigation and tackle emerging threats.
• Endpoint and server maintenance and patching
• Lead and maintain ISTO cyber security awareness training program, to include annual training, remedial training, and ad hoc training.

Specific Skills:

• Hands-on knowledge of firewalls, intrusion detection systems, anti-virus, vulnerability management, data encryption/protection, and other industry-related standard techniques and practices
• Knowledge of Windows and Unix/Linux
• Knowledge of SQL Server, Windows Server Platform, IIS, Crowdstrike
• Knowledge of Active Directory, domain structures, user authentication and Group Policy Object (GPO) implementation.
• Knowledge or experience with anti-malware solutions and desktop security tools.
• Knowledge or experience of industry compliance standards (ex PCI-DSS, SOX, HIPPA)
• Proficient with the Microsoft Office Suite
• Stays up-to-date with current and emerging technologies
• Handles confidential matters with discretion
• A strong client focus, with the ability to manage expectations and build relationships
• Demonstrated ability to prioritize workload and effectively handle multiple assignments
• Highly self-motivated and self-directed.
• Strong communication skills, both verbal and written.