Information Resources & Technology (IRT) provides essential information technology services for campus operations and innovative technology solutions to facilitate the accomplishment of strategic campus goals.
The Information Security Officer (ISO) reports to the Vice President and Chief Information Officer and serves as member of the IRT senior leadership team and actively participates in planning, projects, prioritization, and continuous improvement of IRT operations and customer service.
The ISO will lead and manage all aspects of the campus-wide information security and privacy program including awareness, training, intrusion prevention, incident response, and compliance. The ISO leads and manages a small, high performing team of information security professionals and student workers. The ISO will serve as campus-wide advocate and liaison for compliance, intrusion prevention, incident response, and information security awareness. The ISO will collaborate with campus stakeholders to mature the information security program and the other programs and services in his/her purview.
The ISO will stay informed about current and emerging risks and trends through participation in professional organizations such as REN-ISAC and networking with CSU ISOs and other peers.
The ISO will collaborate with campus constituents to develop campus security policies and standards to ensure confidentiality, integrity, and availability of information assets. System-wide information security policies are documented in ICSUAM Section 8000. The ISO will take a balanced approach to managing risk and enabling our faculty, staff, and students to perform mission critical activities.
The ISO will be responsible for metrics/reporting needs in his/her purview including periodic risk reports and audits.
The ISO position requires the highest level of confidentiality and integrity; successfully completing a background investigation will be required for this position of trust.
EDUCATION 1. Bachelor’s degree in a relevant field or discipline. EXPERIENCE 2. Demonstrated experience effectively leading and managing an enterprise information security program including security awareness, training, intrusion prevention, incident response, and compliance. 3. Demonstrated experience serving in an IT leadership role such as director including experience with supervision, delegation, and performance management. 4. Demonstrated experience providing excellent service to diverse faculty, staff, and students, cultivating partnerships, and maintaining collegial relationships throughout the organization. 5. Demonstrated experience with leading change/effective change management. 6. Demonstrated experience with evaluation and continuous improvement of services and processes. 7. Demonstrated experience successfully managing complex projects, prioritizing based on strategic goals, and meeting deadlines. Familiarity with agile project management concepts desired.
KNOWLEDGE, SKILLS, ABILITIES 8. Demonstrated excellence in writing, speaking, and presentation skills. 9. Demonstrated ability to own, manage, and solve complex problems in a creative and timely manner. 10. -Demonstrated knowledge of laws and standards relevant to higher education and the ISO position such as HIPAA, PCI, and FERPA.
For more information visit: https://csus.peopleadmin.com/postings/2448
Additional Salary Information: Starting salary for very well qualified candidates will typically be near the mid-point of the salary range