AMVETS Jobs

Job ID 12433 Location Case Main Campus Full/Part Time Full-Time Regular/Temporary Regular Job Description POSITION OBJECTIVE As a member of the IT leadership team, the Chief Information Security Officer (CISO) provides dynamic and visionary leadership to secure our information assets and systems. The CISO reports directly to the Chief Information Officer (CIO) and collaborates with other senior executives, faculty, staff, and external stakeholders to develop and execute a strategic and comprehensive information security program that aligns with our academic and research mission and objectives. The position requires a proven track record of leading information security initiatives in a complex and diverse environment, a deep understanding of the higher education and research landscape and its unique challenges and opportunities, and excellent analytical and communication skills. The CISO must demonstrate strong executive function and strategic planning abilities, as well as a passion for innovation and continuous improvement. ESSENTIAL FUNCTIONS Risk Management: Continually evaluate risks and act expeditiously in making mitigation decisions and recommendations, while considering the technology environment as well as the varying needs and viewpoints of the university community and its unique requirements. Maintain and report regularly on the university information security risk tolerance levels. Develop security plans to support information protection needs across the complete system lifecycles from design and architecture to disaster recovery and potential system retirement. (20%) Strategy Development: Using the established security governance committees, develop and promulgate a strategic vision for information security services and support of the university and UTech missions, notably through the respective strategic plans. Assure that security initiatives address all aspects of university information technology including academic, research, and administrative efforts. (15%) Staff Development: Develop, implement, and maintain information security technical staff. Manage, guide, and coach information security managers and leadership, ensuring that team members are properly trained and responsive to organizational and campus needs. (15%) Security Management and Operations: Oversee and direct university wide technology incident management program to effectively defend the university brand from cyber, physical loss, and network-based threat sources. Use established incident response mechanisms and policies to advise university leadership in management actions in response to information security events and incidents. Train and support team members in the established methods and best practices for use of security tools and services. (15%) Campus Leadership: Serve as a program leader for development of information security, data protection, and risk management activities in the university enterprise. As part of the CIO's Leadership Team, advise CIO on security impact on IT operations and strategy. Serve as chair of the Information Security Committee and the Identity and Access Management Committee and play a key leadership role in the University Compliance, Cloud Governance, PCI Compliance, Data Governance committees. Also serve as UTech representative to University Emergency Management Operations group and as a member of the VP UTech Cabinet and provide invited participation on Faculty Senate Committee on Information and Communications Technology and the IT Executive Committee. (10%) Policy Development: Develop and maintain both IT and information security policies that promote responsible stewardship of information assets and provide practical, economical, and workable solutions to emerging policy questions. Serve as a resource for interpreting and establishing university policies with impact on IT operations and governance through the Un