Sr. Information Security & Compliance Manager

Job description

Sr. Information Security & Compliance Manager

Stanford University

Job Number:

Job Code: 4793
Grade: K

Stanford Graduate School of Business

Residing in Silicon Valley, the heart of innovation, Stanford GSB has built a global reputation based on its immersive and innovative management programs. We provide students a transformative leadership experience, push the boundaries of knowledge with faculty research, and offer a portfolio of entrepreneurial and non-degree programs that deliver global impact like no other. We strive to change lives, change organizations, and change the world.

The Digital Solutions Department of the Stanford GSB seeks an experienced security professional to fill the role of Sr. Information Security Compliance Manager (Sr. ISC) reporting to the Director of Information Security and Compliance (ISC). As a key member of the ISC Team, the Sr. ISC Manager will lead the initiatives to establish the information security policies, procedures and processes using a risk-based approach. The ISC Manager will work with various teams within Digital Solutions team and GSB departments. Establish a deep understanding for protecting the application and systems that handles the data of GSB community of students, faculty and staff.

Working in close collaboration with the Stanford University's IT, Information Security and Privacy Office, the Manager will develop and maintain policies and procedures for all aspects of Information Security and Compliance of the GSB's applications, infrastructure and systems stack. Key areas include, but not limited to, Risk Management, Access Management, Identity Management, Vulnerability Management, Secure Software Development, Privacy and Compliance. Sr. ISC Manager will lead efforts to raise GSB wide awareness of information security risk. S/he will also provide strategic and technical guidance and assistance in the design and implementation of appropriate, comprehensive security processes for school-wide information systems.

The position requires a combination of strong leadership, deeper ability to understand the various technical and functions processes to develop and implement security programs; broad technical knowledge and subject-matter expertise in information security risk management and compliance.

Your primary responsibilities include:

  • Lead and develop the GSB's Information Security framework to safeguard the application, network and systems configurations against accidental or unauthorized modification, destruction or disclosure and to meet the minimum security standards.
  • Participate in and lead internal security assessments, develop appropriate criteria needed to assess the level of new/existing applications and/or technology infrastructure elements for compliance with the University security standards.
  • Perform security risk assessment and mitigation. Where relevant, inspect application, system and network data for computer and network usage policy compliance, system integrity and incident response.
  • Develop and deliver security training and awareness program to system administrators and users. Lead the development and documentation of information security standards, best practices and guidelines.
  • Develop, implement and manage policies and procedures related to IT security and operational support systems in collaboration with the Information Security Office.
  • Develop and implement ongoing test plans to ensure compliance with standards and processes (selecting sample, verifying documentation and other requirements).
  • Research, design and advocate new technologies, architectures and security products.
  • Mentor and train team members and peers on cyber security solutions and actively participate on system and application improvement project teams.
  • Maintain a state-of-the-art awareness of information security issues, incidents, problems, privacy and legal requirements and solutions for all major information system platforms in use at Stanford GSB.
  • Be flexible to completing any other additional assigned duties.

    To be successful in this position, you will bring:

  • Bachelor's degree plus five years relevant experience, or a combination of education and relevant experience.
  • In-depth knowledge and understanding of IT industry trends and emerging technologies and an ability to relate them to Stanford GSB and its objectives.
  • Advanced knowledge and understanding of networking protocols, principles and devices.
  • In-depth architecture and configuration knowledge.
  • Extensive experience with security standards, guidelines and procedures.
  • In-depth knowledge of access management, authorization, identity management and encryption methodologies.
  • Strong knowledge and understanding of industry standard information security practices.
  • Excellent communication skills and the ability to explain complex technical ideas to non-technical audience and work with individuals at all levels.
  • Demonstrated experience in leading/mentoring team members and providing technical guidance to customers and stakeholders.
  • High level of integrity and excellent judgment concerning proprietary and privacy issues.

    In addition, our preferred requirements include:

  • Certification relevant to IT security (CISA, CISM, CISSP, GIAC/GSEC, etc.)
  • Experience working with IT security laws and regulations applicable in Higher Education
  • Experience providing IT security services in a university setting with a distributed technology environment
  • Experience building coalitions and professional relationships with internal and external constituencies to achieve results.

    *Consistent with its obligations under the law, the University will provide reasonable accommodation to any employee with a disability who requires accommodation to perform the essential functions of his or her job.

    Why Stanford is for You

    Stanford's dedicated 16,000 staff come from diverse educational and career backgrounds. We are a collaborative environment that thrives on innovation and continuous improvement. At Stanford, we seek talent committed to excellence, driven to impact the future of our legacy, and improve lives on a global sphere. We provide competitive salaries, excellent health care and retirement plans, and a generous vacation policy, including additional time off during our winter closure. Our generous perks align with what matters to you:

  • Freedom to grow. Take advantage of career development programs, tuition reimbursement, or audit a course. Join a Ted Talk, film screening, or listen to a renowned author or leader discuss global issues.
  • A caring culture. We understand the importance of your personal and family time and provide you access to wellness programs, child-care resources, parent education and consultation, elder care and caregiving support.
  • A healthier you. We make wellness a priority by providing access to world-class exercise facilities. Climb our rock wall, or participate in one of hundreds of health or fitness classes.
  • Discovery and fun. Visit campus gardens, trails, and museums.
  • Enviable resources. We offer free commuter programs and ridesharing incentives. Enjoy discounts for computers, cell phones, recreation, travel, entertainment, and more!

    We pride ourselves in being a culture that encourages and empowers you.

    How to Apply

    We invite you to apply for this position by clicking on the “Apply for Job” button. To be considered, please submit a cover letter and resume along with your online application.


    Location: Graduate School of Business, California, United States
    Classification Level:

    To be considered for this position please visit our web site and apply on line at the following link:

    Stanford is an equal opportunity employer and all qualified applicants will receive consideration without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, or any other characteristic protected by law.

    Copyright ©2017 Inc. All rights reserved.

    Posted by the FREE value-added recruitment advertising agency





    Diversity Profile: University



    View more

    Learn more on Inside Higher Ed's College Page for University

    Arrow pointing right
    Job No:
    Posted: 12/11/2018
    Application Due: 2/11/2019
    Work Type: