Information Security Officer
Vacancy expired!
The University of Vermont is seeking a qualified candidate for the position
Information Security Officer. This senior-level position has both operational and strategic responsibilities for information security at the University. The Information Security Officer (ISO) is responsible for establishing and communicating the University's information security vision, policies, and programs to ensure that information assets entrusted to it are adequately protected. This position requires collaborative, hands-on leadership, with the ability to think strategically, plan to the strategy, and oversee execution of the plan.The ISO provides guidance and expertise to advance the operational mission of the Information Security Office. The position will lead efforts across the university, collaborate with multiple offices and officers at the university and with the university community as a whole. The ISO is involved in all forms of IT governance and is responsible for information security-related policy and procedure development and risk assessment work. The ISO will lead and contributes to UVM's information security awareness and outreach efforts. The ISO must maintain situational awareness using threat intelligence and leads incident response activities. The ISO will provide oversight and direction for the Information Security Office.The ISO is accountable for all aspects of staff management for the Information Security Office. The position must foster a positive, collaborative, and engaged team dynamic in the pursuit of ISO priorities. The ISO must be able to offer strong technical guidance as necessary. Communication and prioritization skills are essential, with a strong track record in information security as both practitioner and leader. In-depth expertise with Information Security tools and practices is important as the ISO must be able to advise on how to best use technology to enhance UVM's security posture.This is a senior-level position within Enterprise Technology Services and has University-wide responsibilities to provide information security leadership for the institution.Minimum qualifications include:Bachelor's degree in technology or related field and seven to ten years' related experience. Ability to comprehend and assess technical issues across information technology domains. Knowledge of applicable information security regulations and compliance standards.Technical skills required:- Experience as a practitioner in one of more of network engineering, systems administration, forensics, traffic analysis, and/or SOC operations
- Project planning, prioritization, management, implementation, and assessment skills
- Ability to establish rapport and maintain trust
- Ability to develop and administer policies across constituencies in a decentralized organizational environment
- Strong communications skills, including experience with:
- Communications to a diverse community, in both written and verbal forms
- Group facilitation
- Formal presentations
- Collaboration, problem-solving and negotiation skills