Manager, Information Security Officers (ISO)

About The Position

Requirements

• 7 years in a technical support and operations or design and engineering role within information technology.
• 3 years in information security in an advisory/internal consultant/subject-matter expert capacity.
• 3 years in a management role.
• A bachelor’s degree or combined experience and education as substitute for minimum education.
• Relevant professional certifications or working towards attainment (e.g., GCIH/GSEC, CISM, CISA, CISSP, CRISC).
• Possesses comprehensive understanding of the cybersecurity landscape (e.g., trends, risks, best practices for risk management).
• Proficient in information technology infrastructure and various cybersecurity tools and programs.
• Has excellent capacity to communicate complex security matters to different audiences, from team members to executive leadership.
• Possesses sound analytical and problem-solving skills with an ability to make quick decisions in emergency situations.
• Has experience with security audits and compliance with industry security standards and regulations.
• Possesses exceptional leadership skills, capable of managing a team and collaborating with various departments within an organization.
• Has strong ethical standards and a solid understanding of privacy laws, confirming confidential information will be handled with integrity.
• Has excellent project management skills, with experience in planning, implementing, and overseeing security-related projects.

Nice To Haves

• 7 years of related experience, with 3 years in an information security role
• Exceptional leadership skills, experience managing a cross-functional, high-performing team and collaborating with various departments within an organization.
• Deep understanding of security controls, architecture, and advisory
• Demonstrated experience conducting risk assessments
• Bachelor’s degree preferred (combination of education and experience acceptable)
• In addition, the successful candidate must also demonstrate, through ideas, words and actions, a strong commitment to USC’s Unifying Values of integrity, excellence, community, well-being, open communication, and accountability.

Responsibilities

• Develops, implements and maintains department, school and/or unit cybersecurity standards and procedures.
• Oversees the setup and hardening of departmental information systems to protect against unauthorized access or attacks.
• Responsible for reviews of control effectiveness.
• Ensures performance of regular risk assessments to identify potential vulnerabilities and implements security measures accordingly.
• Manages emergency procedures, in conjunction with relevant partners and existing cyber emergency plans, for handling security incidents, data breaches, and other critical situations.
• Responds promptly to security events, supporting incident response and contributing to investigations as required.
• Supports resiliency efforts in coordination with DSUs across the university to support the ability to respond and recover from a cyber-related event.
• Implements training and awareness programs for department, school and/or unit staff to foster understanding and adherence to cybersecurity protocols.
• Maintains currency with latest trends, threats and best practices in cybersecurity.
• Maintains compliance with all relevant cybersecurity laws, regulations, and policies.
• Provides specific technical information security expertise for development of centralized cybersecurity program.
• Supports development and implementation of the cybersecurity strategy.
• Supports security incident response and investigation.
• Conducts reviews to identify root causes of information security incidents and develops corrective action plans.
• Provides oversight and coaching to staff for daily activities and responsibilities.
• Encourages a workplace culture where all employees are valued, value others and have the opportunity to contribute through their ideas, words and actions, in accordance with the USC Code of Ethics.

Benefits

• To support the well-being of our faculty and staff, USC provides benefits-eligible employees with a broad range of perks to help protect their and their dependents’ health, wealth, and future. These benefits are available as part of the overall compensation and total rewards package. You can learn more about USC’s comprehensive benefits here.