Deputy Chief Information Security and Privacy Officer

About The Position

Requirements

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field
• At least seven years of experience in information security
• At least three years in a leadership role in information security
• Professional certification such as CISSP, CISM, or CISA
• Demonstrated strong knowledge of information security frameworks, standards, and best practices (e.g., NIST, ISO 27001) as evidenced by application materials
• Experience with security technologies such as firewalls, intrusion detection/prevention systems, and SIEM solutions

Nice To Haves

• Master’s degree in a related field
• Experience working in a higher education environment
• Additional certifications such as CIPT, CIPM, or CRISC
• Experience with multilateral federation and contemporary Identity and Access Management architecture
• Experience with cloud security and privacy.
• In-depth understanding of information security principles and practices
• Strong understanding of privacy laws and regulations
• High level of integrity and ethical conduct
• Strong analytical and problem-solving skills
• Excellent communication and interpersonal skills
• Excellent project management skills, with the ability to manage multiple projects simultaneously
• Ability to lead and motivate a team of security professionals
• Ability to communicate complex security concepts to non-technical stakeholders

Responsibilities

• Assist in the development and implementation of the university’s information security and privacy policies, procedures, and standards.
• Lead and manage the university’s security operations center (SOC) and incident response team.
• Conduct risk assessments and vulnerability analyses to identify and mitigate security risks.
• Oversee the implementation of security controls and technologies to protect university data and systems.
• Ensure compliance with federal, state, and local regulations related to information security and privacy.
• Develop and deliver security awareness training programs for faculty, staff, and students.
• Collaborate with internal and external stakeholders to address security and privacy concerns.
• Monitor and respond to security incidents and breaches, conducting investigations and coordinating remediation efforts.
• Prepare and present reports on the university’s security posture to senior leadership.
• Other duties as assigned.
• Regular, reliable, and non-disruptive attendance is an essential job duty, as is the ability to create and maintain collegial, harmonious working relationships with others.

Benefits

• The benefits package includes university contributions to health, dental, life and disability insurance, tuition waivers for employees and their families, 12 official holidays, immediate leave accrual, and a choice of retirement programs with university contributions ranging from 5 to 10% of employee salary.