What are the responsibilities and job description for the Deputy Chief Information Officer/ Chief Information Security Officer (CISO) position at Elizabeth City State University?
Posting Details
Posting Summary
| Position Number | 6086-0000-0000-628 |
|---|---|
| Classification Title | Deputy Chief Information Officer/ Chief Information Security Officer |
| Working Title | Deputy Chief Information Officer/ Chief Information Security Officer (CISO) |
| Division | Business & Finance |
| Department/Unit | Information Technology |
| Section | Information Technology (section) |
| Primary Purpose of Organizational Unit | The CIO provides IT vision for the university and ensures that it aligns with institutional strategic goals. Under his leadership, the unit provides services delivery and support for information technology infrastructure that is integrated into and meets the needs of the business and academic functions of the campus. The infrastructure services and support are provided through the Administrative Computing, IT Client Services, and Network Services departments. |
| Description of Work | Reporting to the Chief Information Officer (CIO) of the Department of Information Technology (DIT), the Deputy Chief Information Officer/ Chief information Security Officer is responsible for planning, managing, administering and organizing all projects and computer-related operations. The Information Security Officer is a critical member of the Information Technology Services (ITS) senior leadership team, serves a key role in university leadership, and works closely with senior administration, academic leaders, and the campus community. The Information Security Officer is as an advocate for ECSU's total information security needs, and is responsible for development and delivery of a comprehensive, institution-wide information security strategy to optimize ECSU's information security posture. In the absence of the CIO, the DCIO will serve in his place and will oversee DIT operations. |
| Competencies/Knowledge Skills, and Abilities Required in this Position | Possess a knowledge of program review, planning, and evaluation processes; development, implementation, and evaluation of goals and objectives; staff supervision, evaluation, and training; and team development strategies. Possess a broad understanding of critical human relation principles in relation to a diverse clientele. Demonstrate sensitivity to and respect for a diverse population. Possess the ability to exercise independent judgment; plan, direct, and supervise a wide variety of programs and services; manage personnel to accomplish the established departmental goals, including assignment of duties and evaluation of staff; plan and organize large, complex tasks. Possess excellent interpersonal and communication skills, effective planning and problem-solving abilities and strong technical expertise. Possess the ability to work effectively with multiple constituencies to provide high quality services and establish consensus. Work in an atmosphere of collegial decision-making and demonstrate consensus-building skills. Possess a clear vision of current and emerging trends in technology. This position requires an intelligent, articulate, consensus building, and persuasive leader who can work effectively with senior administration, academic leaders, and the campus community and communicate information security-related concepts to a broad range of technical and non-technical staff. Possess excellent leadership skills and sound judgment. Possess the ability to work with senior university leaders to establish the best balance between information security strategies and other priorities at an institution-wide level. Possess experience in developing and administering an information security program in a complex higher education environment. Possess demonstrated experience advising and collaborating with senior management. Possess experience in information security policy formation and implementation. Possess the ability to work in a team/collaborative environment with a broad range of constituencies. Possess the capacity to lead in a highly decentralized environment, without reliance on line authority. For this reason, excellent communication and social skills are essential. Possess the ability to work with Internal Audit, System Auditors, outside consultants and/or Office of the State Auditor in a lead capacity. Possess knowledge of intrusion prevention and detection technology and processes. Possess maturity, reliability, composure, and stability under pressure, and ability to objectively offer and receive constructive criticism. |
| Minimum Training and Experience | Possess a Master's degree in Management Information Science or other related field preferred with five to ten years of IT management experience with a background in IT security is preferred. Experience with and knowledge of regulatory requirements and compliance issues as applied to technology (e.g. PCI, HIPAA, FISMA, FERPA, etc.). IT security certifications such as SANS Global Information Assurance Certifications: ISO 27002, Information System Security Certification Consortium (ISC)2, Certified Information Systems Security Professional (CISSP), Information Systems Audit and Control Association (ISACA) or Certified Information Systems Auditor (CISA), preferred. |
| License or Certification Required by Statute or Regulation | |
| Management Preferences | |
| Position Recruitment Range | |
| Position Category | Staff |
| Position Status | Permanent Full Time |
| FLSA | Exempt |
Posting Detail Information
| Posting Number | EHRA00430P |
|---|---|
| Job Open Date | 03/11/2024 |
| Job Close Date | 03/27/2024 |
| Open Until Filled | No |
| Special Instructions to Applicant | * Please ensure your full range of knowledge, skills, abilities, experience, and education are listed on your application. Do not write 'see resume' on your application when completing the job duties section. * If you answer the supplemental questions at the end of the application, please ensure your application reflects the knowledge, skills, abilities, and experiences to support your answers. |
| EHRA OSHR Statement | This position is Exempt from the State Human Resources Act. |
| AA/EEO Statement | Elizabeth City State University is an Affirmative Action/Equal Opportunity Employer. The University does not discriminate in access to its educational programs and activities, or with respect to hiring or the terms and conditions of employment, on the basis of race, color, national origin, religion, sex, gender identity and expression, political affiliation, age, disability, veteran status, genetic information or sexual orientation. |
| Background Check Statement | Any offer of employment to a successful candidate will be conditioned upon the University's receipt of a satisfactory criminal background report. |
| Eligibility for Employment | Proper documentation of identity and eligibility for employment will be required before the hiring process can be completed. ECSU is an E-Verify participant. |
| Quicklink for Posting |
Senior Manager, Chief Information Officer (CIO) Communications
Hilton -
Portsmouth, VA
Information Systems Security Officer (ISSO)
H2 Performance Consulting -
Norfolk, VA
Information Systems Security Officer (ISSO)
CACI -
Norfolk, VA
