The Chief Information Security Officer (CISO) Project-Based Consultant is a senior business leader who will oversee all aspects of data privacy, compliance, and security for Higher Education institutions. You will leverage your expertise in cybersecurity and familiarity with established frameworks like NIST and CIS and regulations such as FERPA and GLBA to implement institution-aligned security, compliance, and data privacy programs. The CISO will facilitate a team approach to daily operations in support of these frameworks, providing strong risk management, control procedures, and incident response support for institutional operations. The successful candidate will form close relationships with executive leaders to determine acceptable levels of business risk and will foster strong working relationships with IT staff and business stakeholders to work collaboratively to improve an institution's security compliance and privacy posture.
Responsibilities
- Work with campus leadership to develop, implement, and monitor strategic, comprehensive, enterprise information security and IT risk management programs.
- Work with the information technology staff and other cybersecurity professionals in overall technology planning and define information security programs.
- Conduct security and privacy risk assessments to identify areas of unexpected risk to business and technology operations.
- Build and periodically test incident response programs based on business risk analysis.
Qualifications & Requirements
- 5 or more years of experience in a combination of risk management, information security, and IT roles.
- Minimum of 5 years of experience in a senior IT leadership role.
- Experience in Higher Education is strongly preferred.
- Successful track record of implementing security, privacy, and governance programs.
- Professional certifications such as CISSP, CISM, CISA, or GIAC certifications may be preferred or required.
- Deep and demonstrable knowledge of common information security management frameworks, such as SOC 2, ISO/IEC 27001, and NIST.
What We Do
Since our inception in 1999, CampusWorks has become a trusted partner of countless colleges and universities across the United States and Canada. We serve higher education exclusively, so we have a deep understanding of and appreciation for your institution's mission, vision, and values as well as the business and technical challenges you’re facing. Since we are not associated with any hardware or software vendors, institutions know they can count on us to listen to their needs, provide unbiased insights into their organizational challenges, and develop tailored solutions with their best interests in mind.
Our professional services team is comprised of senior-level technical and functional experts who have the experience and skill to take on your toughest challenges. Our services are rooted in systems thinking and reach across the institution—from Student Services to Human Resources to Finance to Academic Services—to remove obstacles standing in the way of success. We pride ourselves on the collaborative partnerships we form with our clients, and we value the opportunity to work alongside your team to implement change, achieve transformational results, and ensure lasting success.
Dedicated exclusively to higher education, CampusWorks’ capabilities include:
- Academic services
- Accreditation and compliance
- Assessments
- Business process optimization
- Cybersecurity
- Enterprise resource planning (ERP) support
- IT leadership
- Network and infrastructure services
- Project management
- Shared services and collaborative services
- Staff augmentation
- Strategic planning
Learn more at campusworksinc.com