Distinguishing Features of the Class:
Under the direction of the CIO and Director of Network and Systems Administration, the Information Security Officer is responsible for the development and delivery of a comprehensive information security and privacy program. This program is college-wide and includes all formats of information communication for all authorized users. Protecting information and infrastructure from internal or external threats and ensuring the compliance of all statutory and regulatory requirements regarding information access, security and privacy is of the utmost concern.
Typical Work Activities:
Development of information security policies, standards and procedures and ensures the College is in compliance. Performs ongoing security risk assessments. Develops procedures for auditing and incident prevention and response. Serves as the official Campus contact for information security and privacy along with law enforcement entities, external auditors and agencies. Maintain breach insurance coverage policy and supporting information security policy. Development and delivery of an education and training program on security and privacy matters for the College. Maintain security devices such as routers, firewalls and other networking hardware/software.
Knowledge, Skills and Abilities:
The ISO supports all security related hardware, software and policies of the College. Experience in developing and administering an information security program is desirable. Excellent project management, written and oral communication skills desirable. Experience with risk management and auditing.
Graduation from a regionally accredited college or university with Bachelor’s in Engineering Technology, Computer Information Systems, Computer Science or Mathematics. Knowledge of networking protocols and communications. Minimum five years of experience in information security, information technology or related field. Security certifications are preferred.