Inside Higher Ed
Overview
We are seeking a highly skilled Security Architect with 5 to 7+ years of experience and expertise in cloud security, vulnerability management, BC/DR and AI governance. The ideal candidate will drive innovation while ensuring operational resilience, compliance, and effective risk mitigation across on-prem and hybrid cloud environments. This Information Security Professional position contributes to the division’s role of ensuring university compliance with federal and state laws and regulation, serving as the advisory and support resource for HIPAA Security Rule, FERPA and DMCA compliance, records management, and compliance with restricted data laws and policies – such as PII, ePHI, and educational information. Position Details Position Number: 012583 Functional Title: Information Security Professional Position Type: Staff Position Eclass: EP - EHRA 12 mo leave earning Organization The Information Security Office is a subset within the Division of Information Technology Services (ITS). The Information Security Office provides active information security & risk management services, incident management, information security controls, education, and guidance for the protection of UNCG’s information assets and information technology environment. The objective is to provide confidentiality, integrity, and availability services for teaching and learning, research, service, and the conduct of university business and compliance with regulatory requirements. Key Responsibilities
Security Architecture & Risk Management (5 to 7+ years of experience preferred): Conduct security architecture reviews, risk assessments, threat modeling, and cloud configuration audits (Azure & AWS). Collaborate with AI/ML teams to identify and mitigate risks related to AI, including data privacy, model security, and adversarial threats. Develop and implement robust security frameworks, focusing on IAM & Data Security, Cloud & Network Security. Cloud and AI Security: Monitor and optimize security posture using Microsoft Azure tools (Defender for Cloud, Sentinel, Azure AD) and the Microsoft Defender Suite (Endpoint, Identity, Office 365, Cloud Apps). Secure AI/ML models and data pipelines while addressing governance risks. Data Protection and Governance: Design and implement advanced DLP policies via Microsoft Purview. Ensure compliance with NIST and ISO frameworks, CIS controls, HIPAA, AI governance standards (ISO 42001/23894) and data protection regulations. Incident Response & Threat Detection: Experienced in incident response using SIEM/SOAR platforms with automation where applicable. Perform vulnerability assessments across hybrid environments and ensure timely remediation and patch management coordination. Operational Resilience: Develop and maintain comprehensive BC/DR plans, conducting annual exercises for continuous process improvement. Conduct business impact analyses to prioritize remediation strategies. Automation & Reporting: Build dashboards and custom security reports using Splunk, Power BI, Microsoft Sentinel, or equivalent. Automate repetitive security tasks using scripting languages (PowerShell, Python, Bash). Training & Awareness: Conduct DLP policy enforcement, AI security education, and annual security awareness training. Stay ahead of emerging threats and regulatory developments in cloud, data, and AI security domains. Qualifications
Minimum Qualifications
A Bachelor’s or Master’s degree in a technical field with at least 5 to 7 years of relevant experience, or equivalent combination of education/experience Certifications such as CISSP, CRISC, CCSP, Microsoft Certified: Security, Compliance, and Identity Fundamentals, or equivalent. Azure/AWS/AI Certifications Proven experience in security architecture and AI governance. Expertise in Microsoft security tools (Azure Security, Defender Suite, Purview, Sentinel). Proficient in scripting languages for automation (PowerShell, Python, Bash). Familiarity with compliance frameworks like NIST, ISO 27001/2, HIPAA, and AI governance standards. Strong analytical, communication, and collaboration skills. Preferred Qualifications
Recruitment Range: Salary commensurate with experience Employment Details
Org #-Department: Info Technology Services - 23101 Job Open Date: 08/26/2025 Open Until Filled: Yes FTE: 1.000 Type Of Appointment: Permanent Number Of Months Per Year: 12 FLSA: Exempt Percentage Of Time: 30% Key Responsibilities by Time Allocation
Security Architect – 20% Conduct security architecture reviews, risk assessments, threat modeling, and cloud configuration audits (Azure & AWS). Collaborate with AI/ML teams to identify and mitigate risks related to AI, including data privacy, model security, and adversarial threats. Develop and implement robust security frameworks, focusing on IAM & Data Security, Cloud & Network Security. Cloud and AI Security – 20% Monitor and optimize security posture using Microsoft Azure tools and Defender Suite. Secure AI/ML models and data pipelines while addressing governance risks. Data Protection and Governance – 10% Design and implement advanced DLP policies via Microsoft Purview. Ensure compliance with NIST and ISO frameworks, CIS controls, HIPAA, and AI governance standards. Incident Response & Threat Detection – 10% Incident response using SIEM/SOAR platforms with automation where applicable. Vulnerability assessments and remediation coordination. Operational Resilience – 5% Develop BC/DR plans and annual exercises. Conduct business impact analyses to prioritize remediation strategies. Automation & Reporting – 5% Build dashboards and automate security tasks. Produce security reports using Splunk, Power BI, Microsoft Sentinel. Training & Awareness – 10% Enforce DLP policies, provide AI security education, and conduct security awareness training. Monitor threats and regulatory developments in cloud, data, and AI security. Physical/Work Environment Physical Effort: See original for specifics (hand movement, reading, writing, etc.). Work Environment: Inside Note: This refined description preserves core responsibilities, qualifications, and organizational context while removing boilerplate and ensuring proper HTML structure.
#J-18808-Ljbffr
We are seeking a highly skilled Security Architect with 5 to 7+ years of experience and expertise in cloud security, vulnerability management, BC/DR and AI governance. The ideal candidate will drive innovation while ensuring operational resilience, compliance, and effective risk mitigation across on-prem and hybrid cloud environments. This Information Security Professional position contributes to the division’s role of ensuring university compliance with federal and state laws and regulation, serving as the advisory and support resource for HIPAA Security Rule, FERPA and DMCA compliance, records management, and compliance with restricted data laws and policies – such as PII, ePHI, and educational information. Position Details Position Number: 012583 Functional Title: Information Security Professional Position Type: Staff Position Eclass: EP - EHRA 12 mo leave earning Organization The Information Security Office is a subset within the Division of Information Technology Services (ITS). The Information Security Office provides active information security & risk management services, incident management, information security controls, education, and guidance for the protection of UNCG’s information assets and information technology environment. The objective is to provide confidentiality, integrity, and availability services for teaching and learning, research, service, and the conduct of university business and compliance with regulatory requirements. Key Responsibilities
Security Architecture & Risk Management (5 to 7+ years of experience preferred): Conduct security architecture reviews, risk assessments, threat modeling, and cloud configuration audits (Azure & AWS). Collaborate with AI/ML teams to identify and mitigate risks related to AI, including data privacy, model security, and adversarial threats. Develop and implement robust security frameworks, focusing on IAM & Data Security, Cloud & Network Security. Cloud and AI Security: Monitor and optimize security posture using Microsoft Azure tools (Defender for Cloud, Sentinel, Azure AD) and the Microsoft Defender Suite (Endpoint, Identity, Office 365, Cloud Apps). Secure AI/ML models and data pipelines while addressing governance risks. Data Protection and Governance: Design and implement advanced DLP policies via Microsoft Purview. Ensure compliance with NIST and ISO frameworks, CIS controls, HIPAA, AI governance standards (ISO 42001/23894) and data protection regulations. Incident Response & Threat Detection: Experienced in incident response using SIEM/SOAR platforms with automation where applicable. Perform vulnerability assessments across hybrid environments and ensure timely remediation and patch management coordination. Operational Resilience: Develop and maintain comprehensive BC/DR plans, conducting annual exercises for continuous process improvement. Conduct business impact analyses to prioritize remediation strategies. Automation & Reporting: Build dashboards and custom security reports using Splunk, Power BI, Microsoft Sentinel, or equivalent. Automate repetitive security tasks using scripting languages (PowerShell, Python, Bash). Training & Awareness: Conduct DLP policy enforcement, AI security education, and annual security awareness training. Stay ahead of emerging threats and regulatory developments in cloud, data, and AI security domains. Qualifications
Minimum Qualifications
A Bachelor’s or Master’s degree in a technical field with at least 5 to 7 years of relevant experience, or equivalent combination of education/experience Certifications such as CISSP, CRISC, CCSP, Microsoft Certified: Security, Compliance, and Identity Fundamentals, or equivalent. Azure/AWS/AI Certifications Proven experience in security architecture and AI governance. Expertise in Microsoft security tools (Azure Security, Defender Suite, Purview, Sentinel). Proficient in scripting languages for automation (PowerShell, Python, Bash). Familiarity with compliance frameworks like NIST, ISO 27001/2, HIPAA, and AI governance standards. Strong analytical, communication, and collaboration skills. Preferred Qualifications
Recruitment Range: Salary commensurate with experience Employment Details
Org #-Department: Info Technology Services - 23101 Job Open Date: 08/26/2025 Open Until Filled: Yes FTE: 1.000 Type Of Appointment: Permanent Number Of Months Per Year: 12 FLSA: Exempt Percentage Of Time: 30% Key Responsibilities by Time Allocation
Security Architect – 20% Conduct security architecture reviews, risk assessments, threat modeling, and cloud configuration audits (Azure & AWS). Collaborate with AI/ML teams to identify and mitigate risks related to AI, including data privacy, model security, and adversarial threats. Develop and implement robust security frameworks, focusing on IAM & Data Security, Cloud & Network Security. Cloud and AI Security – 20% Monitor and optimize security posture using Microsoft Azure tools and Defender Suite. Secure AI/ML models and data pipelines while addressing governance risks. Data Protection and Governance – 10% Design and implement advanced DLP policies via Microsoft Purview. Ensure compliance with NIST and ISO frameworks, CIS controls, HIPAA, and AI governance standards. Incident Response & Threat Detection – 10% Incident response using SIEM/SOAR platforms with automation where applicable. Vulnerability assessments and remediation coordination. Operational Resilience – 5% Develop BC/DR plans and annual exercises. Conduct business impact analyses to prioritize remediation strategies. Automation & Reporting – 5% Build dashboards and automate security tasks. Produce security reports using Splunk, Power BI, Microsoft Sentinel. Training & Awareness – 10% Enforce DLP policies, provide AI security education, and conduct security awareness training. Monitor threats and regulatory developments in cloud, data, and AI security. Physical/Work Environment Physical Effort: See original for specifics (hand movement, reading, writing, etc.). Work Environment: Inside Note: This refined description preserves core responsibilities, qualifications, and organizational context while removing boilerplate and ensuring proper HTML structure.
#J-18808-Ljbffr