Brigham Young University (BYU) is seeking an Information Security Risk Manager to support and enable the implementation of security programs and controls across multiple CES campuses. This role involves advising on risk implications, assisting with risk reduction efforts, and consulting with campus partners.

What You'll Do

Establish and maintain relationships with various campus partners.
Assist business and technical leaders in understanding, prioritizing, and reducing information security risk.
Participate in key security and privacy compliance committees to ensure business practices meet regulatory compliance requirements.
Communicate risk and/or information security knowledge appropriately to technical and non-technical audiences.
Promote and evaluate adherence to information security policies and standards.
Coordinate security assessment findings and reports with management, engineers, and customers.
Prioritize risk reduction work based on resources available and risk levels.

What We're Looking For

Bachelor’s degree in Information Systems, Information Technology or equivalent professional experience.
5+ years of related work experience preferably in an information security, IT assurance, compliance, or risk management role.

Nice to Have

One or more recognized IT security or assurance certifications such as CISSP, CISA, CISM, CRISC, CPISA (other technical certifications are also given consideration).
Familiarity with security standards and best practices such as those specified by the payment card industry, ISO 27000, National Institutes of Standards and Technology, and Center for Internet Security.
Excellent communication skills (Written and verbal).
Ability to develop, refine and follow processes.
Proven ability to conceptualize, analyze and communicate complex issues and concerns to both technical and non-technical managers and workers.
Conversant in the security and risk implications for common technical architecture and components.
Ability to identify and assess security risks across technical domains such as segmented enterprise networks, identity and access management, cloud architectures, insider threats, endpoint protections, securing web applications, and privacy regulatory compliance.
Ability to work individually and as part of a team with minimal supervision.

Team & Environment

This role is part of the CES Security Operations Center, supporting BYU, BYU-Hawaii, BYU-Idaho, and Ensign College.

Benefits & Compensation

Compensation: $99,000-$129,000
401k. BYU automatically contributes 8% at no cost. Additional 4% match if you contribute 5%.
13 paid holidays + 22 days paid vacation + 12 sick days, accrued annually.
Employee assistance program, available to the employee and all household members.
Tuition benefits for employees and eligible family members.
Access to athletic facilities.
Excellent medical/dental benefits.
Short/long-term disability benefits.
Paid parental and maternity leave.
Wellness Program.
Free on-campus parking.
Free UTA passes for employees, spouses, and qualified dependents.
Discounts at the BYU Store and for many events at BYU.