Deputy Chief Information Security Officer

## Posting Summary: The University of Virginia Information Technology Services (ITS) seeks an experienced, innovative Deputy Chief Information Security Officer to lead efforts to enhance the overall information security architecture of the University. The University of Virginia is heavily dependent on effective and innovative uses of information technology to accomplish its critical teaching, research, administrative, and outreach functions. However, as never before, the ability to use information technology safely and reliably to maximum effect is at risk due to the rapidly evolving Internet threat environment. In its reliance on the Internet, Higher Education in general and the University are subject to the same sophisticated attacks and the same classes of attackers (e.g., individuals pursuing a cause, organized crime, nation states) that plague the more global cyber environment. Dealing realistically with cybersecurity as the threat continues to change and expand represents a significant challenge. To address needs in this area, the University is embarking on a multi-year Program to enhance its overall information security architecture. The incumbent will report directly to the UVA Chief Information Security Officer, and support the efforts of the Information Security Policy and Records Management team and ITS by providing leadership as well as coordinating the day-to-day operations related to the planning and implementation of a number of security related enhancement projects. The incumbent will lead efforts to implement information security tools, including IDS/IPS, vulnerability management, two-factor authentication, and log correlation and analysis. The chosen candidate will also help lead the automation of the risk assessment program and incident response efforts. He/she will coordinate extensively with other units reporting to the CIO and with distributed units and unit leadership throughout the University. ## University Leadership Characteristics: *For Thomas Jefferson, learning was an integral part of life. The "academical village" was created around the assumption that learning is a lifelong and shared process, and that interaction between scholars and students enlivens the pursuit of knowledge.* University Human Resources strives to identify applicants who will contribute as high potential employees, leaders and managers. We employ individuals who foster and promote the University mission and purpose. Successful candidates exemplify uncommon integrity; they are honest, trusted, team-oriented and live the core values of the University. These candidates display great judgment, by practicing evidence-based decision-making. They are strategically focused by contributing to and achieving department goals and vision. They set high performance standards and hold themselves accountable by aggressively executing these standards. These employees also develop a deep passion for the University and the impact it has on students, faculty, alumni and community. Successful candidates identify their personal career goals and development opportunities, and as supervisors, help their staff do the same. They contribute to team success by leading talent, through their individual efforts and by leading and developing their teams. ## EO/AA Statement: The University of Virginia is an equal opportunity and affirmative action employer. Women, minorities, veterans and persons with disabilities are encouraged to apply. ## If degree or equivalent experience preferred, please specify:(Entries to the right will appear in the posting for this position.) A graduate degree in computer science, information systems management, business administration or related fields is preferred. ## If any experience is required, please specify kind of experience: Experience in creating opportunities for professionals from various disciplines or groups to collaborate and communicate. Experience in assisting with project oversight or initiatives under the direction of senior leadership or management. ## If any experience is preferred, please specify kind of experience: It is highly desirable that the candidate have experience in Advanced Windows and Linux system administration, identity and access management, and information security incident responses. Experience working in a higher education or a research environment. ## If yes, what is the preferred License or Certification. One or more professional security certifications such as Certified Information Security Systems Security Professional (CISSP) or Certified Information Security Manager (CISM) are strongly preferred. ## Required Knowledge, Skills and Abilities: Expert level knowledge of program/project management methodologies, information security concepts, and technology and implementation concerns. ## Preferred Knowledge, Skills and Abilities: Knowledge of information security concepts (e.g. Confidentiality, Integrity, Availability), information security frameworks (e.g. NIST, ISO, FISMA), and information security technologies (firewalls, IDS/IPS, SIEM, application whitelisting, OS, vulnerability management). Demonstrated ability to apply legal and regulatory requirements (e.g. HIPAA, FERPA, PCI, GLBA), PKI concepts, and threat modeling. *Required Applicant Documents:* CV / ResumeCover LetterContact information for 3 References - name, email, phone *Department:* Office of Information Technology and Communication *Closing Date:* Open Until Filled *FLSA Exemption Status:* Exempt *Is this position funded in whole or in part by the American Recovery & Reinvestment Act (Stimulus Package)?:* No *Posting Date:* 01-14-2016 *Location:* Charlottesville *Is this position eligible for an Alternate Work Schedule?:* Yes *Employment Posting Category:* Current UVA Employees Only *E-mail a Friend:* jobs.virginia.edu/applicants/Central?quickFind=78181 *Preferred EducationWhat level of education is preferred to successfully perform the duties and responsibilities of the position? Choose one.:* *Degree Preferred *If degree or equivalent experience required, please specify:(Entries to the right will appear in the posting for this position.)Degree Requirements Analysis:* Bachelor's degree *Number of Months/Year:* 12 *Drug Testing Required?(Typically positions involved in patient contact, mass transportation or law enforcement are included):* No *Position Type:* University Managerial and Professional Staff *Posting for UVA Employees Only:* Yes *Required Computer Applications:* No response. *Area of Interest:* Information Technology *Employment Conditions:* Criminal HistorySexual Offender RegistryInternational SearchDegree Validation *Shift:* Day *Type of Application:(required to apply for this posting):* Staff Application *Required ExperienceWhat is the minimum level of relevant experience required to successfully perform the duties and responsibilities of the position? Choose one.:* Considerable - 4 to 7 years *Posting Number:* 0618046 *Organization (Position Organization):* 22011 IT-Info. Sec'ty, Pol., & Recds *Is this position eligible for Telecommuting?:* Yes *Preferred ExperienceWhat is the minimum level of relevant experience preferred to successfully perform the duties and responsibilities of the position? Choose one.:* Extensive - 7 years plus *Number of Work Hours Per Week:(format: xx.xxxx):* 40 *Working Title:* Deputy Chief Information Security Officer *Preferred Computer Applications:* No response. *Required EducationWhat is the minimum level of formal education required to successfully perform the duties and responsibilities of the position? Choose one.:* *Degree Required

Expired, click here to search for relevant jobs

Around the Network