A sensitive position requires a fingerprint-based criminal history check.
Campus Security Authority
Campus Security Authority Statement
This position is designated as a Campus Security Authority. A Campus Security Authority (or CSA) is defined as an “official of the institution with significant responsibility for student and campus activities”. A CSA is required to immediately report any crime that is reported to them to the University Police who will then review, evaluate, and investigate the reported crime. Annual training is required by the Department of Education for all personnel who have been designated as a Campus Security Authority.
Designated Personnel Statement
This position is a “designated position” meaning this position could potentially be required to work (depending on the event) during an emergency closing.
Statement of Economic Interest
Statement of Economic Interest Statement
This position may require a Statement of Personal Economic Interest.
Restricted Position Statement
A restricted position would be subject to availability of funding.
Chief Objective of Position
To assist in maximizing the value derived from the University’s information security environment by designing, implementing, and supporting all facets of information security with an emphasis on systems and network security, providing security training, and working with the campus community to maximize the security of all information resources.
• Using independent judgment and discretion, is responsible for the development and delivery of a comprehensive, university-wide information security and privacy program for Christopher Newport University. • Develops and maintains data protection standards for data created and stored in electronic, print and other formats, both in a stand-alone, enterprise or hosted environment. • Ensures information created, acquired or maintained by CNU and its authorized users, is used and accessed in accordance with its intended purpose. • Works to protect CNU information and IT Services infrastructures from external and internal threats, by implementing a risk management framework for information security priorities, actions, and investments. • Actively monitors all IT environments for external and internal cyber threats and works with IT staff or contract employees to eliminate them. • Ensures CNU complies with statutory and regulatory requirements regarding information access, security and privacy. Participates or leads in the creation, modification or ongoing review of federal, state and local IT policies, standards, guidelines and processes. • Assists in the security aspects of the design, development, enhancement, implementation, and testing of highly complex systems that have the potential to impact the entire campus. • In conjunction with system owners, the position is responsible for the review of and mitigation of threats for the overall security development, test and production environments. • Manages crisis situations, which may involve complex information security issues and leads events through completion including overseeing and reporting all forensic activity. • Assists in the development of a comprehensive continuity of operations and disaster recovery plans. • Attends technology conferences and seminars when relevant to current work specialty area. • Participates in the University Change Management process and evaluates changes for security risks. • In the absence of and at the designation of the Chief Information Officer is the ITS representative at internal and external meetings and functions. • Conducts initial information security training for University employees, and manages ongoing security awareness and role-based security training for existing employees. • Develop and maintain very positive and professional customer service and/or relations within the office/department and with all constituencies to include students, faculty, staff, guests, and employees. Demonstrates a positive and professional attitude and treats everyone with dignity and respect. Fully support the “Student’s First” value at CNU and routinely goes the extra mile in providing service. • This position is designated as a “responsible employee” who has the authority to redress sexual violence, who has the duty to report incidents of sexual violence or other student misconduct, or who a student could reasonably believe has this authority or duty. • Safety issues are reviewed and communicated to ensure a safe and healthy workplace and a reduction in work-related absence. • Other duties as assigned.
Knowledge, Skills, Abilities (KSA's) required
Possesses general working knowledge of all areas within IT Services, including systems, network infrastructure, identity management, application development, and desktop security. Significant knowledge of up-to-date security trends and continued awareness of federal, national and local legislation. Must be able to provide interpretation of current policies related to specific situations as they arise. Knowledge of IT networking and IT systems security best practices. Deep understanding of up to date information security threats, weaknesses and vulnerabilities and good working knowledge of zero-day exploits. Must be able to produce and manage IT security corrective action plans. Demonstrated ability to model professional integrity and behavior. Excellent organization and planning skills. Ability to write complex technical documentation. Ability to operate in high stress environments related to emergency events.
Knowledge, Skills, Abilities (KSA's) preferred
Proven ability to serve as an effective member of senior management. Proficient in data analysis, including Google Sheets/Excel and building analytical tools. Ability to quickly learn existing complex systems. Ability to learn and gain a deep understanding of all facets of enterprise applications. Facilitation and team-building skills at all levels. Ability to influence, train, mentor and leverage the skills of others, including business partners and technical team. Demonstrated skills in managing vendor relationships.
Master’s Degree in Systems, Computer Science, Computer Engineering or a related field, or a Bachelor’s Degree in Information Systems, Computer Science, or Computer Engineering and work experience at a level which equates to an advanced degree.
Experience leading, supervising, and facilitating technical security teams, with a focus on enterprise environment information security monitoring tools and techniques. Experience building Information Security Programs. In-depth experience overseeing incident response planning and security breach investigations. Experience serving as incident commander during information security incidents. Demonstrated experience designing, developing and delivering security awareness and training programs. Experience evaluating, administering and executing enterprise security programs. Substantial experience managing a variety of technical teams in an enterprise environment.
Significant information technology experience including management experience with solid background in information security and privacy protection. Familiarity with national security standards, experience with continuity of operations, disaster recover, risk and vulnerability assessments and cyber-security and incident management. Extensive experience with all facets of systems security tools and techniques and the ability to quickly recognize and take action to alleviate abnormal systems activity as a result of internal and external cyber-attacks. Higher Education leadership and management experience in an Information Technology environment.
Selected by The Princeton Review to be included in The 381 Best Colleges: 2017 Edition, Christopher Newport University is a public school offering a private school experience — great teaching, small classes, and a safe, vibrant campus. A “student-first, teaching-first” community, CNU is dedicated to the ideals of scholarship, leadership and service. The University is located in Newport News, Virginia and enrolls 5,100 students. Academic programs at CNU encompass more than 90 areas of study, from biology to business administration and political science to the performing arts. The University has recently completed over $1 billion in capital construction on its 260-acre campus, generated over 7,000 applications for a freshmen class of 1,290 and has been ranked by U.S. News & World Report’s America’s Best Colleges guide as fourth among public regional universities in the South and 11th among all regional universities in the South. In addition, CNU is ranked third among all public schools for having "the highest proportion of classes with fewer than 20 students.” Christopher Newport University is committed to ensuring that all people are welcomed, honored and fully engaged in the life of our academic community. We seek exceptional and diverse candidates and encourage applications from individuals who are underrepresented in their profession. For further details and information about Christopher Newport, visit www.cnu.edu.
Number of Vacancies
Interested parties are requested to submit a cover letter; current resume; and the names, addresses, and telephone numbers of at least three professional references at the time of application. Review of applications will begin May 27, 2018. Applications received after May 27, 2018, will be accepted but considered only if needed. Search finalists are required to complete a CNU sponsored background check.