Chief Information Security Officer (Information Technology Services) Non Civil Service

About The Position

Requirements

• Knowledge of common information security management frameworks, such as ISO/IEC 27001, and NIST.
• Knowledge of public administration, IT Management, and business management
• Knowledge of IT infrastructures and limitations.
• Knowledge of personnel and project management.
• Ability to lead and think innovatively with an ability to motivate cross-functional, interdisciplinary teams
• Ability to negotiate and manage contract and vendor related services.
• Ability to support and direct software development or other best in class development practices.
• Ability to work with Cloud computing/Elastic computing across virtualized environments.
• Communicating effectively verbally and in writing.
• Establishing and maintaining effective working relationships.
• 10 Years' of IT management and security, building and implementing IT infrastructures, identifying risk, or related.
• Certification as a Certified Information Systems Security Professional (CCISP) or a Certified Information Security Manager (CISM) is required.
• Bachelor's Degree in IT Management, Computer Science, or Technology related field.

Nice To Haves

• Demonstrated ability to obtain and maintain a U.S. Government Secret Security Clearance through a sponsoring federal partner organization.

Responsibilities

• Directs, develops, oversees, and supports a strategic, comprehensive enterprise information security and IT risk management program for the City and its departments; identifies and determines areas of weakness in security procedures and addresses as needed.
• Works directly with the business units, departments, and management to facilitate risk assessment and risk management processes; supports identification of risk through evaluation of processes, programs, and protocols.
• Assists, supports, and provides lead direction with the overall business technology planning, providing a current knowledge and future vision of technology and systems.
• Develops, creates, updates, and enhances an information security management framework for the safety and benefit of the City and its departments; makes broad scale changes and updates to systems to mitigate risk and foster security.
• Understands and interacts with related disciplines through committees to ensure the consistent application of policies and standards across all technology projects, systems, and services.
• Provides leadership, direction, and chief oversight to the enterprise's information security organization; provides technical insight on systems and programs to ensure effective use of resources.
• Partners and collaborates with business stakeholders across the organization to raise awareness of risk management concerns; provides training, education, and support for information security initiatives.
• Performs any and all other work as needed or assigned.