Chief Information Security Officer (CISO)
- Employer
- North Carolina Central University
- Location
- Durham, NC
View more
- Executive Administration Jobs
- C-Level & Executive Directors
- Administrative Jobs
- Institutional & Business Affairs, Safety & Security
- Employment Type
- Full Time
- Institution Type
- Four-Year Institution
Job Details
The Chief Information Security Officer (CISO) reports to the Chief Information Officer, is a member of the CIO leadership team and serves a key role in university leadership, working closely with senior administration, academic leaders, and the campus community. The CISO is an advocate for North Carolina Central University’s overall information security technology needs and awareness planning. This position will be responsible for developing a comprehensive information security strategy and for conducting ongoing policy and procedure reviews to meet IT compliance requirements. The CISO leads the development and implementation of a security program that leverages collaborations and campus-wide resources, facilitates information security governance, advises senior leadership on security direction and resource investments, and designs appropriate policies to manage information security risk. This position must also be knowledgeable in a variety of IT Security technologies. The complexity of this position requires a leadership approach that is engaging, innovative, and collaborative, with a sophisticated ability to work with other leaders to set the best balance between security strategies and other priorities at the campus level.
Primary Purpose of PositionThe primary purpose of this position is to provide strategic leadership for the University’s information security program. Work with campus leadership to oversee the continual operations and improvement of university-wide information security program. This includes resources, governance and policies organized toward a common cause in information security. Lead information security planning processes to establish an inclusive and comprehensive information security program for the entire institution in support of academic, research, and administrative information systems and technology. Establish annual and long-range security and compliance goals, define security strategies, metrics, reporting mechanisms and program services; and create maturity models and a roadmap for continual program improvements. Stay abreast of information security issues and regulatory changes affecting higher education at the state and national level, participate in national policy and practice discussions, and communicate to campus on a regular basis about those topics. Represent the university on committees and boards associated with the University of North Carolina consortia and in national and regional consortiums and collaborations. Develop and provide ongoing IT Security Awareness initiatives and communication for students, faculty and staff. Provide leadership, direction and guidance in development assessment and evaluation of information security risks and monitor compliance with security standards and appropriate policies and make appropriate recommendations. Responsible for working with appropriate agencies, coordinating and tracking all information technology and security related audits including scope of audits, colleges/units involved, timelines, auditing agencies and outcomes. Develop a strategy for cohesively dealing with audits, compliance checks and external assessment processes for internal / external auditors, PCI, ITAR, HIPAA, FISMA and other applicable standards. Keep abreast of security incidents and act as primary control point during significant information security incidents. Convene a Security Incident Response Team (SIRT) as needed, or requested, in addressing and investigating security incidents. Develop, implement and administer technical security standards, as well as a suite of security services and tools to address and mitigate security risk. Examine impacts of new technologies on North Carolina Central University’s overall information security. Establish processes to review implementation of new technologies to ensure security compliance. Use appropriate technologies to monitor, mitigate and respond to security and compliance events.
Required Knowledge, Skills, and AbilitiesThe successful candidate must possess knowledge of Internal Audit, System Auditors, outside consultants and/or Office of the State Auditor in a lead capacity to coordinate representation of institutional technology systems and practices is highly desired; knowledge of laws and standards governing Information Security compliance for example, ISO27002, ISO27005, NIST 800, FERPA, PCI, NC Identify Theft Protection Act, ediscovery, ADA, DMCA, GDPR; knowledge and experience in the policy and regulatory environment of information security, particularly in higher education, is highly desirable; knowledge of computes and information security, network security issues, and security incident response and recovery in a higher education environment is highly desirable; ability to exhibit maturity, reliability, composure, and stability under pressure as required for handling on-the-job challenges is essential; ability to give and receive constructive criticism and feedback; ability to advise and collaborate with senior management is required; ability to work in a team/collaborative environment with a broad range of constituencies is essential. The position requires an intelligent, articulate, consensus-building, and persuasive leader who can work effectively with senior administration, academic leaders, and the campus community and communicate information security-related concepts to a broad range of technical and non-technical staff.
Minimum Education/ExperienceA Bachelor’s Degree in Management Information Science or other related field and/or an advanced degree is preferred.
Professional certification (e.g., CISSP) is highly desirable. Candidates lacking such certification may be competitive if they present comparable credentials or involvement in continuous professional development.
Licenses or Certification required by Statute or RegulationN/A
Equal Opportunity EmployerNorth Carolina Central University is an equal opportunity and affirmative action employer. All qualified applicants will receive consideration for employment without regard to age, color, disability, gender, gender expression, gender identity, genetic information, national origin, race, religion, sex, sexual orientation, or status as a protected veteran.
Posting Detail Information Posting Number EPA01632P Open Date 04/09/2019 Date desired for closing or initial review Close Date Open Until Filled Yes Date Position Available 04/30/2019 Special Instructions to Applicants Applicant Documents Required Documents- Resume/CV
- Cover Letter
Required fields are indicated with an asterisk (*).
Organization
North Carolina Central University is the first publicly supported liberal arts college for African-Americans, and this year, U.S. News & World Report ranked NCCU among the top ten HBCUs in the country. As NCCU celebrates its Centennial Year, a diverse student body of more than 8,500 students is enrolled in programs such as law, business, library science, nursing, education, criminal justice and biotechnology.
Since 1910, the mission of NCCU has been to prepare students academically and professionally to become leaders. NCCU is a comprehensive institution, offering bachelor’s degrees in more than 100 fields of study and master’s degrees in an estimated 40 disciplines. The university has two state-of-the-art biotechnology research institutes, which collaborate with universities and biotech companies in N.C.’s much-touted Research Triangle Park, where the university is located.
The NCCU School of Law offers the juris doctorate and joint degrees in business administration and library science, and includes the option of evening classes. In 2008 and again in 2009, the National Jurist magazine ranked the Law School the Best Value Law School in the Nation. These accolades were based on affordability, bar passage rate, and job placement. NCCU Law offers students opportunities for experiential learning in an environment with low student-to-professor ratios, making it a top-20 school in the country with regard to clinical training. During the 2008-2009 academic year, 502 students participated in pro bono and clinical internships and externships, providing 9,767 hours in free legal assistance to approximately 93 legal organizations.
Teaching, supported by research, is the primary focus of the university. The university encourages its faculty to pursue intellectual development and rewards effective teaching and research. The university also recognizes the mutually reinforcing impact of scholarship and service. Hence, NCCU encourages and expects faculty and students to engage in service activities related to their academic disciplines. NCCU was the first public university in North Carolina to make community service a prerequisite for graduation. Our Academic Community Service Learning Progr
am (ACSLP) is designed to raise the quality of life in surrounding communities and help instill a sense of service in our students that they will take with them wherever they go.
AT NCCU
- We’re the highest rated public HBCU in the country according to the 2009 rankings by U.S. News & World Report.
- The National Jurist magazine ranked NCCU’s Law School the Best Value Law School in the nation.
- In 2009, we enrolled 30 percent more freshman than the year before, making the freshman class the largest ever.
- NCCU will rejoin the Mid-Eastern Athletic Conference (MEAC) July 1, 2010.
- Our student newspaper, the Campus Echo, has received numerous awards, including the Mark of Excellence Award from the Society of Professional Journalists.
- NCCU’s Marching Sound Machine has been selected to perform at the 2011 Tournament of Roses Parade.
- The Commission on Colleges of the Southern Association of Colleges and Schools accredits North Carolina Central University to award baccalaureate and master’s degrees.
Get job alerts
Create a job alert and receive personalized job recommendations straight to your inbox.
Create alert