St. Petersburg College

Systems Administration Director [ID: 455]

Position Summary:

Provide direction and leadership to systems administrators and database administrators. The responsibilities include overseeing the day-to-day technical activities related to maintaining a reliable and effective environment for college’s ERP systems, Oracle and SQL Server databases, Microsoft Active Directory, Microsoft Exchange, HP and Windows servers, backup and recovery system.

Typical Essential Duties

Supervise and participate in the ongoing maintenance of the server environment as well as all related infrastructure;
Develop and maintain a program of proactive system administration, including but not limited to a system upgrades, patches and fixes, system enhancements, log monitoring, and system hardening;
Supervise server based antivirus, antimalware software packages;
Troubleshoot and repair all server related problems in a timely manner;
Develop and maintain a server recovery plan for all systems to include both a regular backup schedule and tested process for data restoration;
Assist in developing ways to reduce the amount of incoming technical support requests.

The Information Security Officer is responsible for developing an Information Security Vision and Strategy that is aligned to the College priorities and facilitates the College’s business objectives. This position will also develop a comprehensive Information Security Program using a recognized Information Security Framework, e.g., National Institute of Standards and Technology (NIST). This position will also serve as the champion of Information Security to the College raising the awareness and importance of Information Security.

This is a Director level position which leads the Information Security department consisting of two IT Security Engineers and one IT Security Technician. This role conducts risk assessments across all SPC facilities following the organization’s established risk management framework. The Information Security Officer collaborates closely with the College’s Compliance Office and serves as the Chair of the College’s Critical Incident Response Team

As the lead for the Information Security department, the unit will identify, rate, and track risks to enterprise systems and business operations. The person in this role will assist the security and compliance staff to implement surveys, interviews, inspections, audits and reviews associated with risk assessments. The Information Security Officer also performs risk assessments for new vendors and technology platforms prior to acquisition, and periodically updates assessments for critical vendors and systems.

Compensation: $107,009.85 - $133,762.31

Requirements:

Education:

BS/BA in Computer Science or in a related field to assigned area. Masters degree preferred.

Experience:

Six (6) years experience in area of responsibility. Must have experience in implementing and upgrading PeopleSoft Applications. Four (4) years experience in windows/HP server management and Oracle/SQL Server database management as an administrator, Experience at the programmer/analyst level is a plus. Experience must include extensive hands-on work with windows server operating systems, and HP-UX operating system. Hands on experience in windows Active Directory, and Microsoft Exchange are preferred. Experience with server based antivirus software package is a plus.

* An equivalent combination of education and experience sufficient to successfully perform the essential duties of the job may be acceptable in lieu of those requirements listed above.

Knowledge:

Oracle/PeopleSoft ERP implementation, upgrade and administration.

One or more of the following certifications, CISSP, GSEC, CISM or similar Cybersecurity certifications
Ability to communicate effectively with audiences that include but are not limited to management, coworkers, clients, vendors, contractors, and other stakeholders
Ability to learn and apply knowledge of applicable local, state/province, and federal/national statutes and guidelines
Ability to attend to detail and work in a time-conscious and time-effective manner
Understanding of common industry standards and compliance frameworks such as ISO27001/27002 or NIST-800

Skills:

Supervising and evaluating employees;
Prioritizing and assigning work;
Analyzing and developing policies and procedures;
Analyzing problems, identifying alternative solutions, projecting consequences of proposed actions, and implementing recommendations in support of goals;
Analyzing, interpreting, and understanding technical and statistical information;
Managing multiple projects and programs simultaneously;
Maintaining and operating various networks;
Using a computer and related software applications;
Communication, interpersonal skills as applied to interaction with subordinates, coworkers, supervisor, the general public, etc. sufficient to exchange or convey information and to give and receive work direction.

Physical:

Positions in this class typically require: reaching, standing, walking, grasping, feeling, talking, hearing, seeing and repetitive motions
Sedentary Work: Exerting up to 10 pounds of force occasionally and/or a negligible amount of force frequently or constantly to lift, carry, push, pull or otherwise move objects. Sedentary work involves sitting most of the time. Jobs are sedentary if walking and standing are required only occasionally and all other sedentary criteria are met
Facilitate an information security governance structure

Responsibilities:

Develop an Information Security vision and strategy that is aligned to the College priorities and facilitates the College’s business objectives.
Develop a comprehensive Information Security Program using a recognized Information Security Framework, e.g., National Institute of Standards and Technology (NIST)
Champion Security Awareness to the College at large
Provide guidance to the CIO
Establish annual and long-range security and compliance goals
Provide regular reporting on the current status of the information security program to enterprise risk teams and the executive management team as part of a strategic enterprise risk management program

These duties are a representative sample; position assignments may vary.		Potential Frequency
1.	Develop and implement security projects that address identified risks and business requirements	Daily 20%
2.	Develop and maintain an incident response program including both high level management communications plans and detailed runbooks for common scenarios	Daily 20%
3.	Create and manage cybersecurity and risk metrics for the organization.	Daily 10%
4.	Prepares, manages, and recommends changes to budget and project resources.	Daily 10%
5.	Plans, coordinates, and oversees maintenance and accuracy of policies and procedures that establish or maintain the strongest security posture for SPC.	20%
6.	Manages and provides collaborative leadership for support areas; determines best methods for providing service and support..	Daily 20%
7.	Performs other duties of a similar nature or level.	As Required

Equal Access/Equal Opportunity

The Board of Trustees of St. Petersburg College affirms its equal opportunity policy in accordance with the provisions of the Florida Educational Equity Act and all other relevant state and federal laws, rules and regulations. The college will not discriminate on the basis of race, color, ethnicity, religion, sex, age, national origin, marital status, pregnancy, sexual orientation, gender identity, genetic information, or against any qualified individual with disabilities in its employment practices or in the admission and treatment of students. Recognizing that sexual harassment constitutes discrimination on the basis of sex and violates this Rule, the college will not tolerate such conduct. Should you experience such behavior, please contact Dr. Devona Pierre, Executive Director, Organizational Culture and Engagement/Title IX Coordinator at 727-341-3261; by mail at P.O. Box 13489, St. Petersburg, FL 33733-3489; or by email at eaeo_director@spcollege.edu.