Director of IT Information Security - Information Technology

Company: Azusa Pacific University
Location: Azusa
Posted on: May 23, 2023

Job Description:

Job Description

APU is seeking employees who desire to engage in our thriving culture by cultivating community through professional interactions, demonstrating a posture of lifelong learning, and modeling Christ-like character. Working together, employees at APU commit to establishing a university atmosphere that is pleasing to God and edifying to one another.

The Director of Information Technology (IT) Security will be responsible for developing, implementing and monitoring a strategic, comprehensive enterprise cybersecurity and IT risk management program. You will be expected to take a hands-on approach, leading proactive vulnerability assessments and the implementation of effective procedures and technical safeguards to mitigate information security risks. The Director of Information Security will provide the vision and leadership necessary to manage the risk to the university and will ensure business alignment, effective governance, system and product availability, integrity and confidentiality.

This position requires someone who excels in teamwork and leadership through informed and caring influence rather than control. These teams are cross functional and centered around the products they create and maintain. The end goal is to empower these product teams to measurably embrace the standards of reliability, stability, supportability, and sustainability.

The Director of Information Security will lead approximately three staff. You will also act as a coach who encourages engineers to develop personally and professionally, accomplishing this by finding and providing the resources and tools they need to fulfill their personal development goals. You do this by partnering with the IT Leadership team and Council of Culture to develop innovative methods for professional development, scheduling, employee accountability, event planning, and communication.

Required Education

• A Bachelor's degree in Business, MIS, Computer Science, Engineering, or related field, or equivalent combination of education and professional experience in the field of Information Technology.
• Master's degree in business administration or IT related field desired.
• CISSP, CCSP, or CISM desired.
  
  Required Experience
  
  • 5-7 years of demonstrated technical management/supervisory experience in the field of Information Technology.
  • Minimum of 5-7 years of experience working in the information security/cybersecurity industry.
    
    Primary Duties/Essential Functions
    
    • Develops information security strategy, security awareness programs, security architecture, and IT security incident response.
    • Manage, implement, and maintain information security platforms such as IPS/IDS, firewalls, VPN, perimeter switching/routing, system monitoring logs, and other security appliances and platforms to strengthen defenses and optimize campus security.
    • Lead, develop and implement a continuous regiment of vulnerability scans and penetration tests and adopt measures to address security deficiencies effectively and to optimize threat detection.
    • Review and analyze the configuration of network and systems security architecture, procedures and technologies (e.g. IPS/IDS, firewalls, server/host protection, network access control, and encryption) and provide ongoing recommendations for achieving optimal security and performance.
    • Develop, implement, maintain, and test access controls necessary to protect network perimeter, host systems, software applications, and sensitive data in accordance with security requirements (e.g. FERPA, HIPAA, PCI-DSS privacy requirements and university data retention and destruction policies).
    • Develop and promote effective information security awareness training and educational resources.
    • Orchestrate IT Security-related projects from inception through implementation to ensure timely and effective completion in compliance with established security protocols and best practices.
    • Design, implement, and manage a comprehensive strategic information security and IT risk management program that ensures to mitigate of system vulnerabilities and reduce attack surface vectors identified through risk assessment and threat modeling.
    • Evaluates potential security breaches, coordinates response, and recommend corrective actions.
    • Define and report on information security metrics.
    • In collaboration with IT leadership, generate semesterly security compliance attestation report documenting security risks and recommendations.
    • Review, recommend, and drafts policies, procedures, standards in accordance with overall university policy and evolving industry best practices.
    • Plan and manage the IT Information Security team budget.
    • Stay current on, investigate, and test new technologies that can benefit APU by providing operation cost savings, increased efficiency, enhanced services, etc.
    • Work with staff to create professional development plans and systems for growth and promotion in the IT department.
    • Performs other duties as assigned by the Chief Information Officer.
      
      Skills
      
      • Excellent team building skills and demonstrated ability to work with other team members in a co-operative and trusting manner.
      • Must be a self-starter, bringing innovative ways of adding value to IT's offerings and helping the team to deliver.
      • Must be able to attract and motivate talented technical staff and guide them to design for the future as well as support the present.
      • Able to gather requirements from representative customers and match with product offerings or acta as a solutions analyst to find new solutions to round out our portfolio.
      • Ability to liaise with executives, IT customers, stakeholders and external suppliers in the appropriate manner.
      • Excellent oral and written communication of complex technical details in a clear and concise manner to both technical and non-technical staff.
      • Technical presentation skills and the ability to speak in front of large groups required.
        
        Mental Demands
        
        • Must be highly adaptable and able to juggle and prioritize between many activities.
        • In agreement with the purpose and goals of Azusa Pacific University in providing a Christian-based higher education for its students.
          
          Physical Demands
          
          • Intermittent sitting and standing.
          • Requires telephone usage.
          • Requires repetitive motion and sitting at a computer keyboard.
          • Meetings may require walking and/or driving to various University locations.
          • Ability to pull, push, bend, grasp, reach and lift up to 20 lbs.
          • Must be able to climb stairs multiple times in a work day.
            
            Visual Demands
            
            • Reading, writing notes, and computer monitor.
              
              Environment
              
              • Pleasant office, comfortable temperature.
                
                Technologies
                
                • Proficient in Google Apps and Microsoft Office.
                • CroudSrike or similar security systems.
                • Work/project tracking systems (e.g. Zendesk, JIRA).
                • Team collaboration tools (e.g. Wiki, Slack, etc.)
                  
                  Compensation
                  
                  • Grade 23: $134,848 to $175,303 is the annual salary for this role and reflects what Azusa Pacific University reasonably expects to pay for this position. Actual compensation may vary based on the qualifications, experience, and internal equity. In addition to compensation, APU offers a competitive benefits package.
                    
                    Azusa Pacific University is a Christ-centered, multicultural community that values and seeks faculty and staff who are committed to diversity, work effectively with diverse populations, and engage others in ways that honor our rich cultural mosaic and biblical foundation. Please click the links to learn more about 'what we believe', our 'mission statement', and our 'statement of faith'.
                    
                    You can learn more about APU by watching the stories of faculty, staff, and alumni as they carry out our mission here: http://www.apu.edu/stories/
                    
                    Azusa Pacific University will conduct a background check on all final candidates.
                    
                    Review of applications will begin immediately, and the position will remain open until filled unless otherwise stated. Azusa Pacific University does not discriminate on the basis of race, color, national origin, sex, age, disability, or status as a veteran in any of its policies, practices, or procedures. Women and minorities are encouraged to apply.

Keywords: Azusa Pacific University, Azusa , Director of IT Information Security - Information Technology, Executive , Azusa, California