Chief Information Security Officer - Cal State LA

Another SourceLos Angeles, CA
2h$180,000
Match Resume

About The Position

Another Source is partnering with Cal State LA- a mission-driven, highly diverse public university in the heart of Los Angeles- to recruit a Chief Information Security Officer (CISO). This is a high-visibility leadership role responsible for shaping and advancing the university’s enterprise information security, risk management, and privacy program. The CISO will work closely with executive leadership, IT, and campus stakeholders to protect institutional data while enabling teaching, learning, research, and student success. Another Source’s client, California State University Los Angeles, is recruiting for a Chief Information Security Officer to join their team in Los Angeles. California State University, Los Angeles (Cal State LA) is one of 23 campuses within the California State University system. The University is the premier comprehensive public university in the heart of Los Angeles. We offer nationally recognized programs and our faculty have a strong commitment to scholarship, research, creative pursuits, and service. As a federally recognized Hispanic-serving (HSI) and Asian-American, Native American, and Pacific Islander-serving institution (AANAPISI), Cal State LA recognizes the transformative power of education and embraces its duty to identify and serve the needs of all of its students. The University is committed to creating a community in which a diverse population of students, faculty, and staff can thrive. Reporting directly to the Vice President, this pivotal role entails exercising enterprise-wide authority to ensure compliance with university information security policies and IT risk management practices, consistent with industry standards and governmental regulations. The Chief Information Security Officer (CISO) also serves as a strategic advisor to the university's executive leadership on information security matters. As an advocate for Cal State LA's overall information security needs and awareness planning, the CISO provides vision and leadership for developing and supporting security and compliance initiatives. The CISO serves as the campus security and compliance liaison on various committees including the CSU Information Security Advisory Committee (ISAC) and CSU system-wide information security initiatives.

Requirements

  • Bachelor's degree in information security, computer science, or a related field.
  • Minimum of 8-10 years of progressive experience in information security, cybersecurity, or a related field.
  • Proven experience in a leadership role, overseeing comprehensive information security programs, and managing security initiatives in a complex organizational environment, preferably in higher education.
  • Strong communication skills with the ability to effectively convey complex security concepts to both technical and non-technical stakeholders.
  • Experience collaborating with executive management and presenting to governing boards.
  • In-depth knowledge of information security principles, cybersecurity technologies, and risk management frameworks.
  • Experience with the implementation and management of security operations centers (SOCs) and security monitoring systems.
  • Familiarity with industry-accepted information security standards, frameworks, and best practices.
  • Expertise in developing, implementing, and maintaining information security policies, procedures, and standards.
  • Experience with information security governance and ensuring compliance with applicable industry standards and governmental regulations.
  • Strong background in conducting risk assessments and implementing risk management strategies.
  • Experience managing relationships with security-related vendors and overseeing security services.
  • Knowledge of vetting and reviewing security practices and controls of third-party service providers.
  • Experience with overseeing compliance efforts, including audits and assessments related to FERPA, GLBA, HIPAA, and other relevant regulations.
  • Ability to align information security initiatives with organizational goals.
  • Demonstrated commitment to staying abreast of the latest trends, emerging threats, and best practices in information security.
  • Participation in professional organizations, conferences, and networking events in the cybersecurity field.
  • Experience in leading and developing a diverse team of information security professionals.
  • Ability to foster a collaborative and inclusive team culture.
  • Understanding of legal and regulatory requirements related to information security, particularly in the context of higher education.

Responsibilities

  • In collaboration with the university's executive leadership, the CISO plays a pivotal role in defining acceptable levels of information security risk, aligning cybersecurity strategies with institutional objectives, and ensuring the university's overall resilience against cyber threats and regulatory compliance requirements.
  • Identify risks and IT security and compliance requirements and priorities: Collaborate with executive management to establish acceptable risk profiles, balance security measures with operational needs and business objectives, identify and remediate security-related compliance gaps, establish security and compliance governance processes to ensure security and compliance solutions are appropriate, and resources are allocated based on the priorities of the university business objectives.
  • Protect the information assets and reputation of the university from cyberattacks: Design, implement, and maintain a comprehensive campus-wide information security management program, encompassing policies, procedures, practices, and capabilities to safeguard sensitive data and critical infrastructure. Conduct security awareness program to educate Cal State LA user community to protect themselves from phishing and/or cyberattacks.
  • Detect cyber threats, attacks, system vulnerabilities, and security-related non-compliance issues: Enhance technical capabilities to improve cyber threat detection effectiveness. Develop IT security talents to identify symptoms of cyberattacks. Establish security threat detection processes to monitor cyber risks and vulnerabilities. Lead the assessments and security health check efforts on regulatory compliance mandates including FERPA, PII, GLBA, GDPR, PCI DSS, and HIPAA.
  • Respond to security incidents and cyberattacks: Maintain up-to-date Incident Response Management Plans and improve the university's incident response readiness via CSIRT training and tabletop exercises. Lead the incident response efforts, perform investigation, coordinate remediation activities, and ensure effective communication with stakeholders during and after security breaches or cyberattacks. Collect evidence for the cyber incidents to enable post­ incident activities.
  • Restore disrupted systems and business capabilities after cyber incidents: Coordinate with Infrastructure Team to back up critical systems and sensitive data to enable quick and comprehensive restoration of systems after cyber-attacks or system disruption.
  • Strategic Planning and Prioritization: Actively participate in IT strategic planning initiatives, projects, and resource allocation decisions, prioritizing security investments and aligning cybersecurity strategies with the university's evolving needs.
  • IT Audit Oversight: Oversee IT-related audit responses, ensuring adherence to internal controls, regulatory compliance requirements, and industry best practices.

Benefits

  • The CSU system offers a comprehensive benefits package designed to meet you where you're at in life and typically adds 30-35% to your total compensation package.
  • Emphasis on maintaining a healthy work-life balance with ample PTO and flexibility, which includes up to 24 vacation days per year (based on employee group/or services).
  • Enjoy the vibrant campus life with access to athletic and gym facilities, renowned sporting events, artist events, and world-renowned speakers.
  • Numerous professional development opportunities to advance your career including tuition waivers for yourself, a spouse, registered domestic partner or an eligible dependent child across any of the 23 CSU campuses.
  • Two different retirement plans catered to fit your personal saving goals: CalPERS Retirement Plan or 403(b) Supplemental Retirement Plan (Similar to a 401k plan)
  • Medical benefits tailored to support various life stages
  • We recognize that transportation to and from work can be expensive and we are here to help support you with pre-tax commuter benefits.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume

What This Job Offers

Job Type

Full-time

Career Level

Executive

Number of Employees

11-50 employees

Job Search Resources

Similar Chief Information Security Officer - Cal State LA job opportunities

Deputy State Chief Information Security Officer
State of Florida
State of Florida9d • Onsite
Chief Information Security Officer
City of New York
City of New York • New York City, NY9d
Chief Information Security Officer
City of New York
City of New York • New York City, NY8d
Chief Information Security Officer
Mayo Clinic
Mayo Clinic • Rochester, MN3d • Onsite
🔥 New JobChief Information Security Officer
Cherry Bekaert
Cherry Bekaert • Raleigh, NC1d
Chief Information Security Officer
Mayo Clinic
Mayo Clinic • Rochester, MN2d • Onsite
Explore More Jobs

Tools

Career Hubs

Guides

Company

© 2024 Teal Labs, Inc
Privacy PolicyTerms of Service