Director, Cyber Governance

About The Position

Requirements

• 10 years of experience in governance, risk and compliance, team management and security frameworks.
• A bachelor’s degree in information science or computer science or computer engineering or in related field(s); or combined experience/education as substitute for minimum education.
• In-depth knowledge of industry standards, regulations, and new industry developments/trends (e.g., ISO 27001, NIST CSF).

Nice To Haves

• 15 years of related experience.
• Ability to gain government and/or university security clearance (as required).
• Understanding and technical knowledge of key cybersecurity governance concepts (e.g., security training/awareness, policy management) and key security risk management concepts (e.g., cybersecurity consulting, third-party management, software security, security architecture).
• Experience with formation/execution of cybersecurity governing bodies to support broader cybersecurity efforts in an enterprise environment.
• Demonstrated management skills (e.g., ability to coach, mentor and effectively communicate with personnel, up to C-level).
• Ability to coordinate and work efficiently with managed and professional service teams
• Relevant experience in large or university-like federated enterprises, with the ability to provide consulting guidance and build relationships within university schools, units, and hospitals.
• Ability to design, evaluate, and continually improve security functions and review processes.
• Possesses strong management skills (e.g., delegation, provision of clear implementation guidance).
• Proficient in executing and managing Governance and Risk Management (GRM) technologies and processes.
• Ability to balance multiple responsibilities, demonstrate strong problem-solving skills and possesses a customer centric mindset.

Responsibilities

• Oversees the management of the team's operations, allowing that the procedures, resources, and services provided effectively support staff, faculty and student success and align with university goals.
• Oversees planning, budgeting and directing.
• Provides oversight of metrics gathering and reporting across the cybersecurity domains and monitoring the effectiveness of the cybersecurity function.
• Determines alignment to defined industry standard frameworks along with any university established frameworks in an effort to monitoring continuous improvement of services and capabilities within the function.
• Directs the development, delivery, and approval coordination of security training and campaign materials across university business functions.
• Manages the policy, standards and policy exceptions management process.
• Coordinates and collaborates with professional and managed service teams across the cybersecurity function.
• Oversees and directs Information Security Officers team and foster collaboration with university stakeholders on cross-functional cybersecurity engagement.
• Defines the roles and responsibilities of individuals and teams involved in cybersecurity governance (e..g, establishing of a governance committee/board to oversee cybersecurity initiatives).
• Serves as a representative on governance councils where applicable.
• Provides security risk management consulting and structure from a cyber governance perspective for key stakeholders across the university.
• Manages integration and alignment of security initiatives within the business objectives.
• Accountable for all aspects of staff management, (e.g., hiring, coaching, training, performance reviews, pay actions, and promotions within the Cyber Governance organization).
• Provides technical leadership and mentorship to ensure a high performing Cyber Governance team.
• Encourages a workplace culture where all employees are valued, value others and have the opportunity to contribute through their ideas, words and actions, in accordance with the USC Code of Ethics.

Benefits

• To support the well-being of our faculty and staff, USC provides benefits-eligible employees with a broad range of perks to help protect their and their dependents’ health, wealth, and future. These benefits are available as part of the overall compensation and total rewards package.
• You can learn more about USC’s comprehensive benefits here.
• Join the USC cybersecurity team within an environment of innovation and excellence.