Chief Information Security Officer (CISO)

Location
Saint Paul, Ramsey County
Posted
Aug 04, 2014
Administrative Jobs
Technology, IT Support & Training
Executive Administration Jobs
C-Level & Executive Directors
Employment Type
Full Time
Minnesota State Colleges and Universities (MnSCU) invites applications for Chief Information Security Officer (CISO). Minnesota State Colleges and Universities system (MnSCU) seeks a visionary collaborative leader to provide leadership in the development and maintenance of the enterprise vision, strategy, and services to ensure that enterprise IT systems and information are adequately protected. Relocation expenses of up to $10,000.00 have been approved for this position. CHARACTERISTIC DUTIES AND RESPONSIBILITIES: * Providing Information Security leadership and vision through the continued development and implementation of the enterprise information security program designed to protect the enterprise mission critical IT system, information and processes against potential threats. * Building a comprehensive enterprise security strategy which includes implementing, directing, and overseeing the governance, assessment, consulting, monitoring, and reporting functions. * Leading and managing a team of information security professionals; coordinate enterprise-wide security efforts; develop and implement security policies and standards; prepare an annual security budget; and advise and collaborate with campuses and the system office on security and compliance related issues. Provide ITS leadership as a member of the Leadership Team. * Advise the Vice Chancellor for Information Technology as a member of the MnSCU ITS Senior Leadership Team. * Develop and maintain vision and strategy for IT security for enterprise IT systems and information that includes implementing, directing, and overseeing the governance, assessment, consulting, monitoring and reporting functions for MnSCU information security. * Provide leadership in identifying, developing, implementing and maintaining processes across the MnSCU system to: - Reduce information technology risks - Respond to security incidents - Establish appropriate security standards and controls * Provide leadership in the development and implementation of Board of Trustees policy, system procedure, system guidelines, and system security architecture. * Provide leadership in the development and implementation of new information security initiatives. * Provide leadership in identifying, developing, implementing and maintaining information security awareness and training strategies. * Provide leadership to the Information Security Team. * Collaborate with other members of the ITS Senior Leadership Team to ensure that division vision, strategy, priorities, and resources are aligned and used effectively and efficiently on all MnSCU ITS efforts. * Develop and manage the information security budget. * Advise and collaborate with MnSCU campus CIOs and IT security staff on security and compliance-related issues. * Collaborate with leadership in the system office on business continuity planning, disaster recovery planning, risk management, and audit compliance. Minimum Qualifications: * Bachelor degree in Computer Science, Business or related field. Compliance and/or security related certifications is/are required. * A minimum of seven years total experience with information security, five of which are in a leadership role. * Demonstrated ability to implement general security concepts and methods such as vulnerability and risk management, privacy, incident response, policy creation, and enterprise security strategies. * Experience with information security regulatory and compliance management. * Experience developing and administering information security standards, guidelines and best practices. * Evidence of excellent writing, speaking, and interpersonal and intercultural communication skills. * Ability to manage multiple projects or priorities with complex contracts and relationships. * Demonstrated ability to foster participation of others and to work effectively and collaboratively with faculty, senior administrators, board, and staff. * Demonstrated experience advancing diversity and the creation of inclusive work environments. Preferred Qualifications: * Experience in higher education * One or more of the following certifications: Certified Information System Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Security Auditor (CISA), Certified Risk and Information Security Control (CRISC) Application Procedure: To apply for this position please submit a cover letter, resume and at least three professional references by August 22, 2014 by email to: Marilyn Myles-Newman Senior Human Resources Officer Email: marilyn.mylesnewman@so.mnscu.edu Phone: (651) 201-1837 Links: Employment for this position is covered by the MnSCU Administrators plan which can be found at: http://www.hr.mnscu.edu/contract_plans/index.html MnSCU Posting: http://www.mnscu.edu/jobs/viewPosting.php?pid=11831