Job Purpose Towson University is currently accepting applications for a Director of Information Security in the Office of Technology Services (OTS). The Director of Information Security provides strategic vision and operational leadership for university-wide IT security operations, staff, policy development, incident response, and a collaborative approach to cybersecurity awareness. This position will have oversight for IT support for audits and monitoring, incident response, and software application security and compliance to protect university information assets and mitigate institutional risk.
Description The Director of Information Security provides leadership, strategic direction and coordination for Towson University (TU) security strategies to ensure a secure IT environment; oversees and coordinates security efforts across the enterprise, including IT, human resources, communications, legal, facilities management and other groups, to identify security initiatives and standards. Creates, implements and maintains Strategic IT Security Plan and Architecture. Provides advisory and consultative services to senior management on INFOSEC issues and events. Serves as TU representative to designated committees to provide technical advice and professional consultation on security issues and policies. Reviews, evaluates and recommends systems related to information security. Recruits, manages and evaluates INFOSEC staff. Conducts and leads comprehensive assessment of TU INFOSEC and privacy policies and procedures. Defines and advocates security best practices for data and IT systems. Establishes, maintains and enforces INFOSEC policies, standards and procedures in compliance with federal, state, and USM security policies, standards and guidelines.
The Director of Information Security provides direction for the TU Cybersecurity awareness program; prepares and presents routine INFOSEC education to campus personnel. Prepares and presents routine INFOSEC education to campus personnel. Oversees routine maintenance and testing of IT disaster recovery plan and incident handling procedures. Advises campus staff on preparation and testing of business contingency policies, plans, and procedures. Leads investigation of any actual or potential INFOSEC violations. Creates and manages formal risk management program. Manages execution of risk analysis, vulnerability assessments, penetration tests and report results back to management. Oversees the mitigation of security risks and identifies improvements. Identifies high-risk threats to campus community. Performs risk analysis of new IT technologies. Coordinate INFOSEC efforts with auditors. Prepares routine reports to CIO and other agencies on the status of the TU INFOSEC program.
Qualifications Bachelor's degree and five or more years' of related experience. Excellent knowledge of and experience with current INFOSEC best practices. Knowledge and experience in performing risk assessments and implementing effective countermeasures. Experience in development, implementation and administration of INFOSEC policies, practices, standards and programs. Experience in conducting security awareness training. Strong knowledge of INFOSEC auditing and compliance. Knowledge of federal INFOSEC laws (such as HIPAA, FERPA, GLBA, CALEA) and accepted industry practice. Knowledge of contemporary hardware, software and network security (firewall, IDS, etc.) architectures. Excellent documentation and communication skills. Strong project management and organizational skills. Higher education work experience preferred.
A criminal background investigation is required for the hired candidate and the results may impact employment.
Salary and Benefits Competitive salary and full University benefits that include 22 days of annual leave, up to 14 holidays, personal and sick days; excellent health, life, and retirement plans; and tuition remission. To learn more about our benefits, click here.
This position will be open for a minimum of 14 days. Cover letter and resume are requested, but not required.
Apply To view and apply to current job openings please visit www.towson.edu/jobs.
Office of Human Resources 8000 York Road Towson, Maryland 21252-0001
Towson University is an Equal Opportunity Employer and has a strong institutional commitment to diversity. Women, minorities, persons with disabilities, and veterans are encouraged to apply. If you need a reasonable accommodation for any part of the employment process due to a physical or mental disability, please send an email to: email@example.com.