Vacancy caducado!
- Lead teams of key University staff, data custodians and governance groups, coordinate and administer the Information Security Policy/Plan of the University through an awareness of current legislative, legal and regulatory actions and industry standards and best practices.
- Work closely and collaboratively with the OIT teams through upgrades of network hardware, software, systems and applications to ensure secure configurations.
- Lead the effort to collect, analyze, and monitor data, systems, and applications to identify anomalies and potential incidents. Provide recommendations and partner with internal and external stakeholders to remediate and appropriately address identified risks and issues.
- Define and develop appropriate enterprise wide IT project/program management practices, governance standards, processes and metrics. Ensures projects/programs are defined, tracked and communicated in a consistent and effective manner.
- Incorporates effective change and risk management controls. Partners with IT and business leadership and other key stakeholders to prioritize projects based on predefined criteria (return on investment, productivity, compliance).
- Partners with OIT staff and other University faculty and staff in the evaluation of technology solutions to ensure they meet the University’s security requirements, including contract evaluation.
- Develop and lead an information security awareness/education program for the University.
- Provide input to the planning and budgeting for information security initiatives and help develop a comprehensive information security budget.
- Lead and coordinate response to information security incidents including computer forensics and investigation in partnership with internal and external stakeholders.
- Serve as primary contact for technology audits and compliance activities.
- Maintain strong technical and tactical fluency in the information security field (e.g. current threats and best practices). Prepare informative presentations on best practice recommendations and enhancements to current information security practices, policies and procedures to leadership.
- Other duties as assigned
- Bachelor’s Degree in Information Systems, Business Administration, Computer Science, or related degree required.
- CISSP, GIAC/GSEC, SSCP, or CISM certification.
- 7 or more years of relevant knowledge and experience of technology, systems, hardware and software associated with information security.
- 5 or more years of relevant knowledge and experience with network and systems administration, firewalls, and IDS/IPS.
- 3 or more years of the following: Relevant knowledge of information security standards and federal, state and local regulations.
- Demonstrated ability to interpret and present information and ideas clearly and accurately in writing, verbally and through preparation of reports, presentations and other materials.
- Demonstrated ability to work collaboratively and form and sustain effective working
- Relevant knowledge and experience in project and program management.
- Masters Degree in Information Systems, Business Administration, Computer Science, or related degree strongly preferred.
- Significant (3-5 years) higher education experience.
- Extensive (8 – 10 years) information security experience and knowledge.
- Extensive (8 – 10 years) practical and relevant experience working in information technology, with at least 5 years of experience leading and supporting Information Security management program in an academic environment.