Unfortunately, this job is expired as of 8/24/2016.
To continue in your search through the appropriate job categories, click either Administrative Staff, Higher Education Executives, Faculty, Post-Doc and Graduate Assistants, . You can also utilize "guess-free" keyword search tools with up to eight pre-defined criteria. Search for and Apply to academic postings directly from the site. Post your background either confidentially or overtly. Stand out and be discovered!
The Information Security Officer (ISO) is responsible for developing and maintaining the University’s policies related to information security of both electronic and paper formats; ensuring that information created, acquired, or maintained by the University and its authorized users will be used in accordance with its intended purpose, and protects university information and its infrastructure from external or internal threats; ensuring that the University complies with statutory and regulatory requirements regarding information access, security and privacy; working collaboratively with university leadership as well as technical and administrative staff across the University; developing and leading outreach, communication and education efforts to raise University-wide awareness of information security risks, requirements, and solutions; providing strategic and technical guidance and assistance in the design and implementation of appropriate security processes for University-wide information systems; recommending and monitoring computing practices to prevent and recover from security breaches; designing and maintaining critical University security infrastructure, and coordinating the handling of security incidents.
1. Lead teams of key University staff, data custodians and governance groups, coordinate and administer the Information Security Policy/Plan of the University through an awareness of current legislative, legal and regulatory actions and industry standards and best practices. Work closely and collaboratively with the OIT teams through upgrades of network hardware, software, systems and applications to ensure secure configurations.
2. Lead the effort to collect, analyze, and monitor data, systems, and applications to identify anomalies and potential incidents. Provide recommendations and partner with internal and external stakeholders to remediate and appropriately address identified risks and issues. Define and develop appropriate enterprise wide IT project/program management practices, governance standards, processes and metrics. Ensures projects/programs are defined, tracked and communicated in a consistent and effective manner. Incorporates effective change and risk management controls. Partners with IT and business leadership and other key stakeholders to prioritize projects based on predefined criteria (return on investment, productivity, compliance).
3. Partners with OIT staff and other University faculty and staff in the evaluation of technology solutions to ensure they meet the University’s security requirements, including contract evaluation.
4. Develop and lead an information security awareness/education program for the University.
5. Provide input to the planning and budgeting for information security initiatives and help develop a comprehensive information security budget.
6. Lead and coordinate response to information security incidents including computer forensics and investigation in partnership with internal and external stakeholders.
7. Serve as primary contact for technology audits and compliance activities.
8. Stay abreast of trends in the information security field (e.g. current threats and best practices). Prepare informative presentations on best practice recommendations and enhancements to current information security practices, policies and procedures to leadership.
9. Other duties as assigned
Bachelors Degree in Information Systems, Business Administration, Computer Science, or related degree required. CISSP, GIAC/GSEC, or CISM certification. 7 or more years of relevant knowledge and experience of technology, systems, hardware and software associated with information security. 5 or more years of relevant knowledge and experience with network and systems administration, firewalls, and IDS/IPS. 3 or more years of the following: Relevant knowledge of information security standards and federal, state and local regulations; Demonstrated ability to interpret and present information and ideas clearly and accurately in writing, verbally and through preparation of reports, presentations and other materials; Demonstrated ability to work collaboratively and establish effective working relationships; Relevant knowledge and experience in project and program management
Masters Degree in Information Systems, Business Administration, Computer Science, or related degree strongly preferred. Significant (3-5 years) higher education experience; Extensive (8 – 10 years) information security experience and knowledge; Extensive (8 – 10 years) practical and relevant experience working in information technology
The hiring range for this position is dependent upon qualifications and departmental equity. Benefits of employment include a comprehensive health and welfare plan, tuition remission program for employee, spouse and dependent children and a generous 10% contribution to the University’s 403B retirement plan.
The selection committee would like to have you discuss some of your top information security challenges and how you overcame them.
You were inactive for over twenty minutes. To protect you, we have logged you out. Any unsaved data has been lost.