4,157 Chief Security Officer jobs in the United States

Equinix is the world's digital infrastructure company, operating over 260 data centers across the globe. Digital leaders harness Equinix's trusted platform to bring together and interconnect foundational infrastructure at software speed. Equinix enables organizations to access all the right places, partners and possibilities to scale with agility, speed the launch of digital services, deliver world-class experiences and multiply their value, while supporting their sustainability goals.

A leadership role at Equinix means you will drive and collaborate on work that impacts the world. We embrace diversity in thought and contribution and are committed to providing an equitable work environment that is foundational to our core values as a company and is vital to our success.

Job Summary

We seek a visionary and execution-focused Chief Information Security Officer (CISO) to lead Equinix's global cyber security strategy. This role is responsible for safeguarding the organization's systems and platforms, networks and data across all geographies, ensuring regulatory and operational compliance, and building a modern, resilient security architecture that enables innovation. The CISO will also play a strategic role in exploring opportunities to transform security into a differentiator and maybe become a potential revenue stream for Equinix in the future. This executive position will report directly to our Chief Digital and Innovation Officer (CDIO) and will be a key executive of Equinix.

Responsibilities

Enterprise Strategic Leadership

• Define and drive the enterprise-wide information and cyber security strategy across the company, with a vision to make Equinix one of the most secure and trusted global companies

• Oversee all aspects of security operations, governance, architecture, engineering and incident response to protect systems, networks, and our data

• Lead the modernization and simplification of the security environment to support Equinix's digital transformation agenda. Keep us secure but allow us to innovate

• Embed "secure-by-design" principles into software development, infrastructure provisioning, and vendor management

• Collaborate with technology and business leaders to integrate security considerations into digital initiatives, cloud strategies, emerging technologies, and operational processes

Risk and Compliance

• Fully own the global cyber risk management framework, aligning with regulatory requirements and business risk appetite

• Ensure compliance with international data privacy and security regulations across all operating regions

• Take leadership in policy compliance and policy setting working closely with leading regulators and authorities across the Digital industry

Security Culture & Stakeholder Engagement

• Champion a proactive security culture across Equinix's global workforce, including training, education, and executive engagement

• Work closely with product, engineering, legal, and operations teams to ensure security is embedded across the enterprise

• Serve as a key advisor to the executive leadership team and the Board of Directors on cyber resilience and emerging threats

Technology and Innovation

• Build a scalable, automated, cloud-native security architecture to support Equinix's digital and platform strategy

• Partner with the CTO/CDO functions to drive DevSecOps adoption and enable secure product delivery at speed

• Bring an innovation and techno-commercial mindset around security to help build our security solutions as. Platform with a potential to allow Equinix to monetise it in future, should we choose to

Qualifications

The Chief Information Security Officer must be a well-rounded, seasoned and proven strategic security leader capable of leading security in a complex, global environment with execution depth but also an innovative and techno-commercial mindset

• Demonstrated experience leading transformational security programs in high-growth, cloud-first or digital businesses

• Proven ability to operate at both strategic and operational levels, influencing across technical and executive audiences

• Deep knowledge of global cybersecurity regulations, cloud security architecture, identity management, and data protection

• Strong track record in building high-performing, globally distributed security teams. A security talent magnet!

• Experience with monetization or platform-level security differentiation is a plus

What Success Looks Like

• Equinix has a clear, robust, and adaptive security posture aligned with its digital ambitions

• Security is viewed as an enabler of innovation, not just a control function

• Executive stakeholders and customers have increasing confidence in Equinix's cyber resilience and we are considered as the safest and most trusted digital partner by our customers

• Security maturity improvements are measurable, and key risks are proactively managed and amongst the best in the industry

• A long-term foundation is laid for security to contribute to revenue generation via platform trust and differentiation

Equinix values an open, honest, and collaborative culture and advocates teams working together to create positive change. The company promotes personal, professional, and team fulfillment while focusing on the broader community. The ideal candidate will be a team builder, player, and coach. Personal drive, passion, industriousness, results orientation, and enthusiasm are essential. The Chief Information Security Officer must bring:

• Ability to anticipate the unknown by drawing on vast experiences, willingness to see past the present, and continually innovate and create new ways to remain at the forefront of security

• Leadership ability that attracts talent and creates loyalty, trust, and followership. One who can energize people and teams and make cross-functional and cross-business cooperation happen. Subordinates, peers, and superiors must highly respect this individual

• A combination of personality traits-collaboration, honesty, integrity, intensity, passion and a low ego-necessary to blend with the rest of the executive management team

• A compelling leadership style that includes exceptional people management skills, program management, business and technology expertise with a style that inspires confidence

• An effective communication style that is direct, structured, and succinct. One who can articulate complex concepts clearly and simply and can adjust communication based on the technical expertise of the audience. Must have experience effectively presenting to a seasoned audience including the senior leadership team and board of directors

• A hands-on and entrepreneurial style -one that looks to become personally involved in all elements of managing their functional responsibility, and someone who seeks to develop senior managers and experts with similar capabilities

• The intellect and the executive presence to become an enabler and true business partner across the corporation -someone who can contribute to broader business conversations beyond their functional expertise

• Organizational savvy to solicit the involvement of others to build a sense of ownership. Must have the confidence to act quickly and decisively when the environment requires such agility

Why Join Us? As the Chief Information Security Officer, you will have the opportunity to shape the future of our organization's security landscape. You will be at the forefront of protecting our digital infrastructure and ensuring the trust of our customers and stakeholders. Join us in our mission to deliver secure and innovative digital solutions that drive growth and connectivity worldwide.

The United States targeted pay range for this position in the following location is / locations are:

* San Francisco, CA / Bay Area: $332,000 to $498,000 per year

Our pay ranges reflect the minimum and maximum target for new hire pay for the full-time position determined by role, level, and location. Individual pay is based on additional factors including job-related skills, experience, and relevant education and/or training.

This position may be offered in other locations. Your recruiter can share more about the specific pay range for your preferred location during the hiring process.

The targeted pay range listed reflects the base pay only and does not include bonus, equity, or benefits. Employees are eligible for bonus, and equity may be offered depending on the position.

As an employee, you become important to Equinix's success. Details about our company benefits can be found at the following link:

USA Benefits eBook

Equinix is committed to ensuring that our employment process is open to all individuals, including those with a disability. If you are a qualified candidate and need assistance or an accommodation, please let us know by completing this form.

Equinix is an Equal Employment Opportunity and, in the U.S., an Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to unlawful consideration of race, color, religion, creed, national or ethnic origin, ancestry, place of birth, citizenship, sex, pregnancy / childbirth or related medical conditions, sexual orientation, gender identity or expression, marital or domestic partnership status, age, veteran or military status, physical or mental disability, medical condition, genetic information, political / organizational affiliation, status as a victim or family member of a victim of crime or abuse, or any other status protected by applicable law.

Chief Information Security Officer

About the Company

AI-driven financial technology (FinTech) company

Industry
Investment Management

Type
Privately Held

Founded
2008

Employees
201-500

Categories

• Financial Services
• Venture Capital
• Investment Management
• Investing
• Finance
• Financial Advisers
• Computers
• Professional Services
• Crisis Management
• Software Installation
• Consulting & Professional Services
• Hedge Fund
• Machine Learning
• Statistical Arbitrage
• The Voleon Group
• Voleon
• Voleon Capital
• Voleon Capital Management Lp

Business Classifications

• B2B
• SAAS
• Enterprise

About the Role

The Company is seeking a Chief Information Security Officer (CISO) to lead the protection of its intellectual property, trade secrets, and data assets. The CISO will be responsible for developing and enforcing security processes, policies, and procedures, as well as leading incident response, threat modeling, and threat hunting. This role requires a proven leader with a strong technical background in security, capable of maturing the existing information security management program and working cross-functionally with various teams. The successful candidate will have a track record of delivering high-quality security projects, be adept at integrating security risk management with business strategy, and have experience in engaging with external parties on security matters. Applicants for the CISO position at the company should have a minimum of 10 years' of information security technology experience, with at least 5 years' in a management role. The role demands a leader with a history of active partnership with senior technical leaders, particularly in the area of protecting the software development lifecycle. The CISO will be expected to have a degree in computer science, information technology, or a related field, and a strong background in risk-based security programs. The ideal candidate will be self-motivated, results-oriented, and passionate about security program development and management. High integrity, excellent judgment, and the ability to treat sensitive information with the utmost care are essential. The CISO will also be responsible for the professional development of the security team and must be adept at fostering a positive, innovative, and high-performing environment.

Hiring Manager Title
Chief Operating Officer

Travel Percent
Less than 10%

Functions

• Information Technology
• Engineering

Chief Information Security Officer

About the Company

Mission-driven online provider of musculoskeletal therapy

Industry
Health, Wellness and Fitness

Type
Privately Held, VC-backed

Founded
2015

Employees

Funding
$200+ million

Categories

• Health Care
• Medical
• Personal Health
• Therapeutics
• Wellness
• mHealth

Specialties

• digital health
• medical devices
• machine learning
• artificial intelligence
• physical therapy
• virtual physical therapy
• digital physical therapy
• fda-listed device
• biofeedback
• msk
• musculoskeletal
• and telemedicine
• telemedicine
• and healthcare

About the Role

The Company is seeking a Chief Information Security Officer (CISO) to join its mission of using AI to transform the lives of millions. The CISO will be responsible for developing and managing a global security strategy and program, with a focus on application security, compliance, and security operations. This role involves defining and driving the information security roadmap, architecting security programs, and ensuring the security of the company's perimeter. The successful candidate will also be tasked with leading security incident responses, participating in security audits, and continuously updating security policies to align with industry best practices. Collaboration with cross-functional teams, including engineering, product, operations, and HR, is essential to ensure that security is integrated into all aspects of the company's operations. Applicants for the CISO position at the company should have approximately 10 years' of experience in building and leading security teams, with a strong background in all aspects of cybersecurity. The role requires the ability to lead and motivate cross-functional teams, excellent communication skills, and a proactive approach to security. Experience with security standards and frameworks such as ISO 27001, COBIT, and NIST CSF is necessary, as is a proven track record in leading security audits and certifications. The ideal candidate will have a background in digital health and healthcare, a strong understanding of security in high-security environments, and experience in a high-growth company. Professional security certifications and a functional knowledge of ITIL and EMR systems are also preferred.

Hiring Manager Title
Chief Scientific Officer

Travel Percent
Less than 10%

Functions

• Information Technology
• Engineering

Chief Information Security Officer

About the Company

Mission-driven online provider of musculoskeletal therapy

Industry
Health, Wellness and Fitness

Type
Privately Held, VC-backed

Founded
2015

Employees

Funding
$200+ million

Categories

• Health Care
• Medical
• Personal Health
• Therapeutics
• Wellness
• mHealth

Specialties

• digital health
• medical devices
• machine learning
• artificial intelligence
• physical therapy
• virtual physical therapy
• digital physical therapy
• fda-listed device
• biofeedback
• msk
• musculoskeletal
• and telemedicine
• telemedicine
• and healthcare

About the Role

The Company is seeking a Chief Information Security Officer (CISO) to join its mission of using AI to transform the lives of millions. The CISO will be responsible for developing and managing a global security strategy and program, with a focus on application security, compliance, and security operations. This role involves defining and driving the information security roadmap, architecting security programs, and ensuring the security of the company's perimeter. The successful candidate will also be tasked with leading security incident responses, participating in security audits, and continuously updating security policies to align with industry best practices. Collaboration with cross-functional teams, including engineering, product, operations, and HR, is essential to ensure that security is integrated into all aspects of the company's operations. Applicants for the CISO position at the company should have approximately 10 years' of experience in building and leading security teams, with a strong background in all aspects of cybersecurity. The role requires the ability to lead and motivate cross-functional teams, excellent communication skills, and a proactive approach to security. Experience with security standards and frameworks such as ISO 27001, COBIT, and NIST CSF is necessary, as is a proven track record in leading security audits and certifications. The ideal candidate will have a background in digital health and healthcare, a strong understanding of security in high-security environments, and experience in a high-growth company. Professional security certifications and a functional knowledge of ITIL and EMR systems are also preferred.

Hiring Manager Title
Chief Scientific Officer

Travel Percent
Less than 10%

Functions

• Information Technology
• Engineering

Chief Information Security Officer

About the Company

Mission-driven online provider of musculoskeletal therapy

Industry
Health, Wellness and Fitness

Type
Privately Held, VC-backed

Founded
2015

Employees

Funding
$200+ million

Categories

• Health Care
• Medical
• Personal Health
• Therapeutics
• Wellness
• mHealth

Specialties

• digital health
• medical devices
• machine learning
• artificial intelligence
• physical therapy
• virtual physical therapy
• digital physical therapy
• fda-listed device
• biofeedback
• msk
• musculoskeletal
• and telemedicine
• telemedicine
• and healthcare

About the Role

The Company is seeking a Chief Information Security Officer (CISO) to join its mission of using AI to transform the lives of millions. The CISO will be responsible for developing and managing a global security strategy and program, with a focus on application security, compliance, and security operations. This role involves defining and driving the information security roadmap, architecting security programs, and ensuring the security of the company's perimeter. The successful candidate will also be tasked with leading security incident responses, participating in security audits, and continuously updating security policies to align with industry best practices. Collaboration with cross-functional teams, including engineering, product, operations, and HR, is essential to ensure that security is integrated into all aspects of the company's operations. Applicants for the CISO position at the company should have approximately 10 years' of experience in building and leading security teams, with a strong background in all aspects of cybersecurity. The role requires the ability to lead and motivate cross-functional teams, excellent communication skills, and a proactive approach to security. Experience with security standards and frameworks such as ISO 27001, COBIT, and NIST CSF is necessary, as is a proven track record in leading security audits and certifications. The ideal candidate will have a background in digital health and healthcare, a strong understanding of security in high-security environments, and experience in a high-growth company. Professional security certifications and a functional knowledge of ITIL and EMR systems are also preferred.

Hiring Manager Title
Chief Scientific Officer

Travel Percent
Less than 10%

Functions

• Information Technology
• Engineering

Chief Information Security Officer

About the Company

Well-known international investment firm

Industry
Financial Services

Type
Privately Held, Private Equity-backed

Founded
1981

Employees

Categories

• Consulting & Professional Services
• Financial Services

Specialties

• multi-asset solutions
• investment management
• fiduciary management / investment outsourcing
• consulting and investment advice
• implementation services
• defined benefit
• defined contribution
• non-profit organizations
• financial advisors
• and healthcare systems

About the Role

The Company is seeking a Chief Information Security Officer (CISO) to take on the pivotal role of developing and executing a global information security and cyber risk strategy. The CISO will be the senior executive responsible for the protection of data, systems, applications, and infrastructure, ensuring alignment with business objectives, risk appetite, and regulatory expectations. This includes strategic leadership in cybersecurity governance, directing operational security activities, and fostering a security-first culture. The successful candidate will have full accountability for cyber governance, incident response, regulatory compliance, data protection, and third-party risk, with a strong emphasis on proactive defense, resilience planning, and secure innovation. Candidates for the CISO position at the company should have a Bachelor's degree in cybersecurity, computer science, or a related discipline, with an advanced degree preferred. A minimum of 10 years' experience in cybersecurity, including at least 5 years in a senior leadership role within a regulated environment, is required. The role demands deep familiarity with financial industry regulations and global security frameworks, as well as proven experience in managing cybersecurity programs in complex, hybrid environments. The ideal candidate will be a strategic, transparent, and resilient leader with a growth-oriented mindset, capable of influencing cross-functional leaders and fostering a culture of security. Relevant certifications such as CISSP, CISM, CISA, CRISC, CCSP, or equivalent are also preferred.

Hiring Manager Title
CTO

Travel Percent
Less than 10%

Functions

• Information Technology
• Engineering

Chief Information Security Officer

About the Company

Mission-driven online provider of musculoskeletal therapy

Industry
Health, Wellness and Fitness

Type
Privately Held, VC-backed

Founded
2015

Employees

Funding
$200+ million

Categories

• Health Care
• Medical
• Personal Health
• Therapeutics
• Wellness
• mHealth

Specialties

• digital health
• medical devices
• machine learning
• artificial intelligence
• physical therapy
• virtual physical therapy
• digital physical therapy
• fda-listed device
• biofeedback
• msk
• musculoskeletal
• and telemedicine
• telemedicine
• and healthcare

About the Role

The Company is seeking a Chief Information Security Officer (CISO) to join its mission of using AI to transform the lives of millions. The CISO will be responsible for developing and managing a global security strategy and program, with a focus on application security, compliance, and security operations. This role involves defining and driving the information security roadmap, architecting security programs, and ensuring the security of the company's perimeter. The successful candidate will also be tasked with leading security incident responses, participating in security audits, and continuously updating security policies to align with industry best practices. Collaboration with cross-functional teams, including engineering, product, operations, and HR, is essential to ensure that security is integrated into all aspects of the company's operations. Applicants for the CISO position at the company should have approximately 10 years' of experience in building and leading security teams, with a strong background in all aspects of cybersecurity. The role requires the ability to lead and motivate cross-functional teams, excellent communication skills, and a proactive approach to security. Experience with security standards and frameworks such as ISO 27001, COBIT, and NIST CSF is necessary, as is a proven track record in leading security audits and certifications. The ideal candidate will have a background in digital health and healthcare, a strong understanding of security in high-security environments, and experience in a high-growth company. Professional security certifications and a functional knowledge of ITIL and EMR systems are also preferred.

Hiring Manager Title
Chief Scientific Officer

Travel Percent
Less than 10%

Functions

• Information Technology
• Engineering

Business Unit:
Global Technology
Salary Range:
$220,000 USD - $300,000 USD

Specific compensation will be based on candidate's experience, skills, qualifications, commercial considerations, and other job-related factors permitted by law. At Russell Investments, salary is just one part of our compensation package. Our total rewards approach includes an annual performance bonus (subject to eligibility criteria) in addition to participation in our competitive benefits programs including healthcare, retirement, vacation, and wellbeing programs.

Job Description:

The Chief Information Security Officer (CISO) serves as the senior executive responsible for developing and executing the organization's global information security and cyber risk strategy. Reporting to the CTO and working closely with the Operational Risk and executive leadership team, the CISO ensures the protection of data, systems, applications, and infrastructure across the enterprise.

As a business-aligned and board-facing leader, the CISO will guide the firm's cybersecurity maturity, direct operational security activities, and foster a security-first culture. The role includes full accountability for cyber governance, incident response, regulatory compliance, data protection, and third-party risk, with emphasis on proactive defense, resilience planning, and secure innovation.

Your Responsibilities

Strategic Leadership & Governance

• Define and implement a global cybersecurity strategy aligned with business objectives, risk appetite, and regulatory expectations.
• Serve as the primary advisor to executive leadership and the Board's Risk Committee on cybersecurity posture, key risks, and emerging threats.
• Develop and oversee a multiyear investment plan for cybersecurity capabilities, technology, staffing, and risk mitigation initiatives.
• Participate in governance forums and contribute to enterprise risk management (ERM) efforts through integrated cyber risk metrics and dashboards.

Cybersecurity Operations & Threat Management

• Direct daily operations of the Information Security Office, including threat detection, incident response, security monitoring, and 24/7 SOC oversight.
• Lead enterprise incident response planning, simulations, forensics, and crisis communications.
• Manage insider threat and user behavior analytics programs to detect and respond to anomalous activities.
• Integrate external threat intelligence from sources such as FS-ISAC, law enforcement, and regulatory bodies.

Secure Architecture, Cloud & DevSecOps

• Ensure the integration of security in technology development via DevSecOps, secure SDLC practices, and code scanning.
• Lead the security architecture strategy, including secure-by-design principles, Zero Trust adoption, and identity governance.
• Oversee the protection of cloud-native and hybrid environments across AWS, Azure, and GCP platforms.
• Ensure appropriate security controls and encryption strategies are applied across applications, APIs, and distributed systems.

Data Security, Privacy & Classification

• Collaborate with Data Governance and Privacy to implement data classification, protection, and lifecycle strategies.
• Govern technologies and policies supporting DLP, tokenization, data masking, and breach response.
• Ensure compliance with global and regional data protection regulations (e.g., GDPR, NYDFS, GLBA, SEC, MAS).

Third-Party & Supply Chain Cyber Risk

• Lead the end-to-end lifecycle of vendor cybersecurity assessments, onboarding, and continuous monitoring.
• Implement a scalable third- and fourth-party risk program, including tiering, scoring, and reporting of external service providers.
• Drive SaaS and cloud service provider due diligence processes and enforce compliance with internal security standards.

Cyber Resilience & Business Continuity

• Co-lead business continuity planning and recovery efforts for cyber-specific scenarios in alignment with enterprise DR planning.
• Conduct and refine cyber tabletop exercises involving business, technology, compliance, and board observers.
• Partner with Internal Audit and Risk to ensure appropriate response and remediation to vulnerabilities and audit findings.

Metrics, Reporting & Performance Management

• Define and track key performance indicators (KPIs) and key risk indicators (KRIs) for the cybersecurity program.
• Produce executive-level dashboards and reports for internal leadership and board consumption.
• Ensure maturity assessments, such as NIST CSF scoring and gap analysis, are conducted regularly.

Talent Development & Culture Building

• Build, inspire, and lead a high-performing global team of security professionals across disciplines.
• Promote a firmwide culture of security through ongoing training, phishing simulations, and awareness campaigns.
• Develop the next generation of cybersecurity leaders and contribute to organizational succession planning.

Innovation & Emerging Tech Oversight

• Advise on security implications of emerging technologies including artificial intelligence, quantum computing, blockchain, and IoT.
• Establish governance for the secure adoption of AI/GenAI and maintain alignment with evolving regulatory guidance.

Your Expertise

• Bachelor's degree in Cybersecurity, Computer Science, or related discipline; advanced degree (MBA, MIS) preferred.
• 10+ years of progressive experience in cybersecurity with 5+ years in a senior leadership capacity in a regulated environment.
• Deep familiarity with financial industry regulations and global security frameworks (NIST, ISO 27001, SOC 2, COBIT).
• Proven experience managing cybersecurity programs in complex, hybrid environments, including public cloud.
• Demonstrated success in influencing cross-functional leaders, boards, and external stakeholders.
• Proficiency in managing budgets, cybersecurity investments, and resource planning.
• Relevant certifications preferred: CISSP, CISM, CISA, CRISC, CCSP, or equivalent.

Leadership Attributes

• Strategic and growth-oriented mindset with the ability to anticipate and address complex risks.
• Transparent communicator, capable of engaging technical and non-technical audiences alike.
• Resilient and adaptive leader, comfortable with ambiguity and change.
• High integrity, ethical judgment, and a collaborative style.
• Demonstrated ability to build trust, attract talent, and foster an inclusive and high-performance culture.

Equal Employment Opportunity

Russell Investments is committed to providing equal employment opportunities for all associates and employment applicants regardless of race, religion, ancestry, creed, color, gender (including gender identity which refers to a person's actual or perceived sex, and includes self-image, appearance, behavior or expression, whether or not different from that traditionally associated with a person's biological sex), age, national origin, citizenship status, disability, medical condition, military status, veteran status, marital status, sexual orientation, past or present unemployment status , or any other characteristic protected by law.

Posting Details

Position Information
Position/Classification Title
Chief Campus IT Security Administrator

Working Title
Chief Information Security Officer

Position Number


FLSA
Exempt

Appointment Type
Permanent - Full Time

Tenure Track
No

FTE
1 = 40 hours/week, 12 months

If time limited, duration date

Department Hiring Range
$51,000 - $119,361

EEO-1 Category
Professionals

SOC Code
- Computer and Information Systems Managers

Position Overview
Be an Eagle - Where Purpose Takes Flight!
Are you ready to make an impact? At North Carolina Central University (NCCU), we are more than an institution-we are a community rooted in a legacy of excellence and transformation. A historically Black university located in Durham, North Carolina, also known as 'The City of Medicine,' NCCU has been a cornerstone of education since 1910, fostering innovation and progress.

Join our team and enjoy a comprehensive benefits package and exclusive perks designed to support your work-life balance. At NCCU, your professional growth will be nurtured, and your contributions will help shape the future for our students and the community we serve. Become part of a legacy that drives change and achievement.

An opportunity awaits you at NCCU, where your purpose can take flight.
Visit NCCU.edu.

Primary Function of Organizational Unit
North Carolina Central University's Information Technology Services (ITS) provides information technology services to schools and departments, administrators, staff, students and the growing population of on-line and distance education students. The objectives of ITS is to Improve the operational effectiveness and efficiency of the administrators, faculty and staff at NCCU through the use of technology, enhance the teaching, learning and research process through the use of technology and to provide adequate support of the technology that is deployed.

Primary Purpose of Position
The Chief Information Security Officer (CISO) reports to the Chief Information Officer CIO), is a member of the CIO leadership team and serves a key role in university leadership, working closely with senior administration, academic leaders, and the campus community. The CISO is an advocate for North Carolina Central University's overall information security technology needs and awareness planning. This position will provide vision and leadership for developing and supporting security initiatives. The Chief Information Security Officer directs the planning and implementation of enterprise IT systems, business operations, and facility defenses against security breaches and vulnerability issues. This individual is also responsible for auditing existing systems, while directing the administration of security policies, activities, and standards.

Required Knowledge, Skills, and Abilities
The emphasis of this position is on IT Security and Compliance leadership and judgment, with a sophisticated ability to work with other leaders and to set the best balance between security strategies and other priorities at the campus level. Experience as an Information Security Officer, developing and administering an information security program including policies and procedures in a complex higher education environment is highly desirable. The position requires an intelligent, articulate, consensus-building, and persuasive leader who can work effectively with senior administration, academic leaders, and the campus community and communicate information security-related concepts to a broad range of technical and non-technical staff. Demonstrated experience advising and collaborating with senior management is required. The ability to work in a team/collaborative environment with a broad range of constituencies is essential. Proven leadership ability is essential to success in this role. Excellent knowledge of technology environments, including information security, building security, and defense solutions. Experience in planning and executing security policies and standards development. Good understanding of computer systems characteristics, features, and integration capabilities. Knowledge of COBIT, ISO, ITIL, CMS, NIST and other standards is essential
Ability to exhibit maturity, reliability, composure, and stability under pressure as required for handling on-the-job challenges is essential. Must be able to give and receive constructive criticism and feedback. Demonstrated success in working with Internal Audit, System Auditors, outside consultants and/or Office of the State Auditor in a lead capacity to coordinate representation of institutional technology systems and practices is highly desired. Significant experience in computing and information security, network security issues, and security incident response and recovery in a higher education environment is highly desirable. Working knowledge and experience in the policy and regulatory environment of information security, particularly in higher education, is highly desirable.

Minimum Education/Experience
A bachelor's degree in Management Information Science or other related field and/or an advanced degree is preferred. Professional certification such as CISSP or CCISO is highly desirable. Candidates lacking such certification may be competitive if they present comparable credentials or involvement in continuous professional development.

Licenses or Certification required by Statute or Regulation
Yes

Equal Opportunity Employer
North Carolina Central University is an equal opportunity and affirmative action employer. All qualified applicants will receive consideration for employment without regard to age, color, disability, gender, gender expression, gender identity, genetic information, national origin, race, religion, sex, sexual orientation, or status as a protected veteran.

Primary Responsibilities and Duties
Function
Strategic Analysis and Planning

Describe the specific tasks and responsibilities related to the function.

• Participate as a member of the University's senior management team in governance processes of the organization's security strategies.
• Lead information security planning processes to establish an inclusive and comprehensive information security program for the entire institution in support of academic, research, and administrative information systems and technology.
• Establish annual and long-range security and compliance goals, define security strategies, metrics, reporting mechanisms and program services; and create maturity models and a roadmap for continual program improvements.
• Stay abreast of information security issues and regulatory changes affecting higher education at the state and national level, participate in national policy and practice discussions, and communicate to campus on a regular basis about those topics.
• Develop and provide ongoing IT Security Awareness initiatives and communication for students, faculty and staff.
• Lead ongoing development and review of Information Technology security policies and procedures, disaster recovery planning/testing and risk assessments.
• Provide leadership, direction and guidance in assessing and evaluating information security risks, monitor compliance with security standards and policies, and make recommendations to the CIO and IT Security Council.
• Develop a strategy for cohesively dealing with audits, compliance checks and external assessment processes for internal / external auditors, PCI, NIST, HIPAA and other applicable standards.

Function
Operations Management

Describe the specific tasks and responsibilities related to the function.

• Work with campus leadership to oversee the formation and operations of university-wide information security resources and policies organized toward a common cause in information security.
• Oversee the office of IT Security & Compliance and staff.
• Examine impacts of new technologies on North Carolina Central University's overall information security.
• Works closely with the IT department on corporate technology development to fully secure information, computer, network, and processing systems.
• Responsible for the cyber security of North Carolina Central University's information systems and their corresponding or associated software, including firewalls, intrusion detection systems, cryptography systems, and anti-virus software.
• Develop, implement and administer technical security standards, as well as a suite of security services and tools to address and mitigate security risk.
• Keep abreast of security incidents and act as primary control point during significant information security incidents.
• Maintain and convene the Security Incident Response Team (SIRT) as needed, or requested, in addressing and investigating security incidents.

Function
Instructional

Describe the specific tasks and responsibilities related to the function.

• Recommend and implement changes in security policies and practices in accordance with changes in local or federal law and industry best-practices frameworks.
• Responsible for working with agencies, coordinating and tracking all information technology and security related audits including scope of audits, colleges/units involved, timelines, auditing agencies and outcomes
• Represent the university on committees and boards associated with the University of North Carolina consortia and in national and regional consortiums and collaborations.

Posting Detail Information
Posting Number
EPA02825P

Open Date
04/11/2023

Date desired for closing or initial review
04/24/2023

Close Date

Open Until Filled
Yes

Date Position Available

Special Instructions to Applicants
Pre-Employment Requirements:

• You must complete and submit an electronic application for employment to be considered. Resumes will not be accepted in lieu of completing an electronic application.
• Applicants seeking Veteran's Preference must attach a DD 214 form or those seeking National Guard Preference must attach as NG23A form. Certificate of Release or Discharge from Active Duty with your application during the process of applying to the job posting.
• Final candidates are subject to criminal background checks, and education/license verification prior to employment.
• North Carolina Central University participates in E-Verify. Federal law requires all employers to verify the identity and employment eligibility of all persons hired to work in the United States.

Employee Benefits available to NCCU permanent employees include the following and more:

• Accrued Vacation and Sick Leave
• Community Service Leave
• NC State - Health Benefits
• NCFlex - Vision, Dental, Flexible Spending Account, Life Insurance and more
• 11-12 Paid Holidays
• Teachers and State Employees Retirement System (TSERS)
• Optional Supplemental Plans - 401k, 403b, 457b and 457
• Employee Assistance Program (EAP)
• Campus Recreation Center Discount
• University Bookstore Discount and more.