Information Security Officer (ITS)

About The Position

Requirements

• 4 years of experience in IT, cybersecurity and leadership roles.
• A bachelor’s degree or combined experience and education as substitute for minimum education.
• Comprehensive understanding of the cybersecurity landscape (e.g., trends, risks, best practices for risk management).
• Proficiency in information technology infrastructure and various cybersecurity tools and programs.
• Demonstrated capacity to communicate security matters to different audiences.
• Sound analytical and problem-solving skills with an ability to make quick decisions in emergency situations.
• Experience with operational technology environments and security requirements to secure OT environments.
• Experience with security audits and compliance with industry security standards and regulations.
• Strong ethical standards and a solid understanding of privacy laws, confirming confidential information will be handled with integrity.
• Relevant professional certifications or working towards attainment (e.g., GCIH/GSEC, CISM, CISA, CISSP, CRISC).

Nice To Haves

• 7 years in IT, cybersecurity and management
• Leadership experience
• Project management skills, with experience in planning, implementing, and overseeing security-related projects.
• Bachelor's degree (or equivalent combination of education and experience)
• Demonstrated ability to lead or coordinate cybersecurity policy implementation
• Familiarity with audit processes and regulatory frameworks (e.g., NIST, HIPAA, FERPA)
• In addition, the successful candidate must also demonstrate, through ideas, words and actions, a strong commitment to USC’s Unifying Values of integrity, excellence, community, well-being, open communication, and accountability.

Responsibilities

• Assists in the development, implementation and maintenance of the department, school and/or unit cybersecurity standards and procedures.
• Supports resiliency efforts in collaboration with university departments, schools and units to support response and recovery from cyber-related events.
• Participates in the setup and hardening of departmental information systems to protect against unauthorized access or attacks.
• Responsible for reviews of control effectiveness.
• Performs regular risk assessments.
• Assists in emergency procedures, in conjunction with relevant partners and existing cyber emergency plans, for handling security incidents, data breaches, and other critical situations.
• Assists in responding to security events, supporting incident response and contributing to investigations as required.
• Contributes to training and awareness programs for department, school/unit staff to foster understanding and adherence to cybersecurity protocols.
• Maintains professional currency (e.g., all relevant cybersecurity laws, regulations, policies).
• Encourages a workplace culture where all employees are valued, value others and have the opportunity to contribute through their ideas, words and actions, in accordance with the USC Code of Ethics.

Benefits

• To support the well-being of our faculty and staff, USC provides benefits-eligible employees with a broad range of perks to help protect their and their dependents’ health, wealth, and future.
• These benefits are available as part of the overall compensation and total rewards package.
• You can learn more about USC’s comprehensive benefits here.