The Chief Information Security Officer (CISO) reports to the University Chief Information Officer and serves as a senior advisor to executive leadership on information security vision, strategy and direction. The CISO works collaboratively with all university divisions and partners (e.g., Academic Affairs, Administrative Affairs, Health Sciences, Research, Athletics, partner health service organizations, etc.) to establish information security and IT risk management functions that support the University in fulfilling its strategic goals, business obligations and compliance requirements.
The CISO manages the University Information Security Program, which is composed of policies, processes and employee responsibilities. The Program provides administrative structure and direction to departmental heads and university administrators on protecting the information under their care. The CISO also manages the University's Information Security Awareness Program, which delivers educational activities and resources to the ECU community to develop campus awareness of current best practices in information security. The CISO coordinates the University IT Risk Management Program and advises university leadership on the identification and understanding of information and IT-related risks. The CISO oversees the University's response to and reporting of information security incidents, and provides guidance to incident investigations where appropriate.
The CISO also leads or contributes to compliance projects as assigned, such as for federal, international and state laws, as well as for contracts and other external requirements relevant to the handling of university information.
The CISO serves as the University point of contact for information security related requests from federal and state agencies, state auditors, and other external entities. The CISO collaborates with peers at UNC institutions as well as universities across the country to research, identify, and share solutions to common information security issues. The CISO is the official UNC Systems Information Technology Security Council (ITSC) representative for the University.
The CISO supervises the Information Security team, directs team projects and budget, and supports the implementation of CIO strategies and directives.
Special Instructions To Application:
East Carolina University requires applicants to submit a candidate profile online in order to be considered for the position. Candidates must also submit a cover letter, resume and a list of three references, including contact information, online.
Bachelor’s degree in Cybersecurity, Computer Science, Information Technology or a closely related field with 3 years of experience managing a comprehensive information security program or a Master’s degree and 1 year of experience.
Full time or Part time: Full Time
Position Location (city): Greenville
Position Number: 001599
Organizational Unit Overview:
Information Technology and Computing Services (ITCS) is the central agency that supports enterprise-wide computing at East Carolina University. ITCS, through innovative information technology initiatives and service, provides opportunities for the ECU community to excel in teaching, research, and service using state-of-the-market technology and collaborative environments. ITCS is first and foremost committed to providing excellent information technology support for faculty, staff, and students. ITCS partners with campus departments, other universities, and industry to make strategic investments in information technology infrastructure that will help maintain a competitive advantage in administrative applications, faculty research, and outreach to the state and nation. We will achieve this through increasing the core functions and deploying appropriate technology throughout the university.
The ITCS Information Security Office manages the ECU Information Security Program, which is composed of policies, processes and assigned responsibilities that collectively form an information security governance framework for the University. This governance framework provides an administrative structure that assists unit directors and administrators with protecting the information under their care, including the personal information of students, employees, clients, and healthcare patients. The Office works collaboratively with all University divisions and partners (e.g., Academic Affairs, Administrative Affairs, Health Sciences, Research and Graduate Studies, Athletics, etc.) to establish information security and information risk management functions that support the University in fulfilling its strategic goals, business obligations and compliance requirements.
To be a national model for student success, public service and regional transformation, East Carolina University uses innovative learning strategies and delivery methods to maximize access; prepares students with the knowledge, skills and values to succeed in a global, multicultural society; develops tomorrow's leaders to serve and inspire positive change; discovers new knowledge and innovations to support a thriving future for eastern North Carolina and beyond; transforms health care, promotes wellness, and reduces health disparities; and improves qualify of life through cultural enrichment, academics, the arts, and athletics. We accomplish our mission through education, research, creative activities, and service while being good stewards of the resources entrusted to us. East Carolina University delivers on the promise of opportunity. We open doors. We improve lives. We transform the present, and we discover the future. In these ways and more, we serve our community, our state, our nation and our world as together we reach toward our greatest potential. Tomorrow starts here.