Associate Vice Chancellor - Information Security - Chief Information Security Officer
Lone Star College System
The Woodlands, TX
Full-time
Information Services / Technology (IT)
Posted on April 2, 2024
Commitment to Mission
This job carries with it the obligation to uphold the Mission of Lone Star College (LSC) in carrying out the duties of the position. A commitment to positive interpersonal behaviors, professional communication, integrity, leadership, stewardship, respect and accountability to LSC students and employees is essential.
Cultural Beliefs
Lone Star College has been recognized in multiple categories.
Campus Marketing Statement
Lone Star College-System Office, University Park
Lone Star College offers high-quality, low-cost academic transfer and career training education to 80,000+ students each semester. LSC has been named a 2023 Great Colleges to Work For institution by the Chronicle of Higher Education.
LSC consists of eight colleges, seven centers, eight Workforce Centers of Excellence and Lone Star Corporate College.
Lone Star College-System Office employees are based at one of two System Office locations; The Woodlands and University Park. Both are the site for multiple administrative departments and system-wide training programs.
Location address is 20515 SH 249 (SH 249 and Louetta Road) Houston, Texas 77070-2607.
Job Description
PURPOSE AND SCOPE:
The Associate Vice Chancellor (AVC), Information Security is a strong, knowledgeable leader who, as Chief Information Security Officer (CISO), provides vision, strategy, and broad-based planning for information security College-wide. This position acts as an advocate for the Institution's total information security needs and is responsible for the development and delivery of comprehensive information security controls to optimize the security posture of the College. This position leads the development and implementation of a security program that leverages collaborations and campus-wide resources, facilitates information security governance, advises senior leadership on security direction and resource investments, and designs appropriate policies to manage information security risk. Works with leaders to balance between security strategies and other College priorities.
ESSENTIAL JOB FUNCTIONS:
· Excellent written and verbal communication skills, interpersonal and collaborative skills, and the ability to communicate information security and risk-related concepts to technical and nontechnical audiences at various levels, ranging from board members to technical specialists
· Strategic leader and builder of both vision and bridges, and able to energize the appropriate teams in the organization
· Ability to lead and motivate the information security team to achieve tactical and strategic goals
· Master of influencing entities and decisions in situations where no formal reporting structures exist
· Poise and ability to act calmly but with a sense of urgency in high-stress incident response situations
· Excellent analytical and problem-solving skills
PHYSICAL ABILITIES:
The work is sedentary. Typically, the employee sits comfortably to do the work. However, there may be some walking; standing; bending; carrying of light items, such as papers, books, or small parts; or driving an automobile. No special physical demands are required to perform the work.
WORK SCHEDULE AND CONDITIONS:
· Equipment used includes, PC workstation running on a LAN in a Microsoft Windows environment, calculator, phone and other general office equipment
· Interface with internal and external contacts as needed to carry out the functions of the position
· Work is performed in a climate-controlled office with minimal exposure to safety hazards
· May regularly travel to different LSC locations
· May be fully reassigned to other LSC locations if necessary
· May need to work weekends and outside of core business hours if necessary
REQUIRED QUALIFICATIONS:
· Bachelor's degree in a business administration or technology-related field and at least 10 recent years of IT management experience, or an equivalent combination of education and experience
· Experience must include at least 5 years in a manager- or director-level position
· Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) or other similar credentials
PREFERRED QUALIFICATIONS:
· Demonstrated experience and success in senior leadership roles in risk management and/or information security
· Certified Chief Information Security Officer (CCISO) certified or equivalent
Salary
Hiring salary is $141,856.
Lone Star College provides a hiring salary range for all posted full-time non-faculty positions. Where your salary offer would fall in that range is determined by your related experience and education. Should you receive an offer of employment from Lone Star College, the resume submitted in the application process will be utilized to calculate your salary offer. The information outlined below will provide the Office of Human Resources everything needed to determine an accurate starting salary.
Your resume should provide a complete picture of your work experience. The resume should include the following information for each position listed:
Benefits Marketing Statement
By joining our top-notch institution, you will enjoy being a part of an organization that offers a supportive, collegial work environment and excellent work/life balance. This includes a full comprehensive and competitive benefits package, a generous number of paid holidays and vacation days, wellness programs, tuition waiver, professional development opportunities and more.
Special Instructions
Go to the Job Search page, click on ‘My Activities' at the top of the page. Under My Cover Letters and Attachments you will click on ‘Add Attachment.' Please be sure to put the Job ID# in the title once you name your file for cover letters only, unless you attached your cover letter with your resume.
If you are applying for an Instructional position (i.e. Faculty, Adjunct Faculty, Instructor), please ensure you include the following to be considered: Resume/CV, Cover Letter, Teaching Philosophy, and unofficial transcripts.
You must limit your file name for any attachment to 40 characters or less.
How to Apply
ALL APPLICANTS MUST APPLY ONLINE ONLY
We will not accept application material received via fax, email, mail, or hand delivered.
Postings for part-time and adjunct positions are active for the academic year. By selecting the option to receive notifications on your profile, you will begin receiving electronic communication regarding new opportunities with Lone Star College (LSC).
If selected for an interview, a recruiter will contact you by phone, or email to schedule an interview.
Lone Star College participates in the E-Verify program, under which Lone Star College provides the federal government with information from each new employee's Form I-9 to confirm that the employee is authorized to work in the United States.
More information on the E-Verify program is available at www.dhs.gov/E-Verify.
Lone Star College is an EEO Employer. All positions are subject to a criminal background check.
This job carries with it the obligation to uphold the Mission of Lone Star College (LSC) in carrying out the duties of the position. A commitment to positive interpersonal behaviors, professional communication, integrity, leadership, stewardship, respect and accountability to LSC students and employees is essential.
Cultural Beliefs
- One LSC
- Student Focused
- Own It
- Advance Equity
- Cultivate Community
- Choose Learning
Lone Star College has been recognized in multiple categories.
Campus Marketing Statement
Lone Star College-System Office, University Park
Lone Star College offers high-quality, low-cost academic transfer and career training education to 80,000+ students each semester. LSC has been named a 2023 Great Colleges to Work For institution by the Chronicle of Higher Education.
LSC consists of eight colleges, seven centers, eight Workforce Centers of Excellence and Lone Star Corporate College.
Lone Star College-System Office employees are based at one of two System Office locations; The Woodlands and University Park. Both are the site for multiple administrative departments and system-wide training programs.
Location address is 20515 SH 249 (SH 249 and Louetta Road) Houston, Texas 77070-2607.
Job Description
PURPOSE AND SCOPE:
The Associate Vice Chancellor (AVC), Information Security is a strong, knowledgeable leader who, as Chief Information Security Officer (CISO), provides vision, strategy, and broad-based planning for information security College-wide. This position acts as an advocate for the Institution's total information security needs and is responsible for the development and delivery of comprehensive information security controls to optimize the security posture of the College. This position leads the development and implementation of a security program that leverages collaborations and campus-wide resources, facilitates information security governance, advises senior leadership on security direction and resource investments, and designs appropriate policies to manage information security risk. Works with leaders to balance between security strategies and other College priorities.
ESSENTIAL JOB FUNCTIONS:
- Responsible for the strategic leadership of the College's information security program; Provides guidance and counsel to the CIO and key members of the university leadership team, working closely with senior administration, academic leaders, and the campus community in defining objectives for information security, while building relationships and goodwill
- Manages institution-wide information security governance processes in the establishment and review of the information security program and project priorities; Collaborates with the data governance team to ensure data owners and data stewards are aware of and following data security policy and best practices; Promotes collaborative, empowered working environments across the college, removing barriers and realizing possibilities
- Develops, socializes and coordinates approval and implementation of effective and reasonable policies in an overarching information security policy and supporting information security standards/procedures; Ensures compliance with Texas state legal and regulatory requirements, including the Texas Administrative Code (TAC) chapter 202
- Keeps abreast of security incidents and act as the primary control point during significant information security incident event; Convenes a Security Incident Response Team as needed, or requested, in addressing and investigating security incidences that arise; Ensures effective communications during security events to the affected campus community
- Directs the creation of a targeted information security marketing and security awareness training program for all employees, contractors and approved system users, and establishes metrics to measure the effectiveness of this security training program for the different audiences; Provides just-in-time training to individuals in response to successful simulated phishing attempts
- Maintains a knowledge base about and interacts with related disciplines, either directly or through committees, to ensure the consistent application of policies and standards across all technology projects, systems and services, including privacy, risk management, compliance and business continuity management
- Maintains the institutional risk register to track institutional information security risks; Provides clear risk mitigating directives for projects with components in IT, including the mandatory application of controls; Prioritizes and addresses audit findings and identified institutional risks
- Provides regular reporting on the current status of the information security program and identified risks to enterprise risk teams, senior business leaders and the board of trustees as part of a strategic enterprise risk management program
- Works with Supply Management and the Office of the General Counsel to ensure that appropriate LSC information security requirements are included in vendor contracts
- Socializes privacy standards for management of Personally Identifiable Information (PII) in alignment with applicable laws and standards including FERPA, HIPAA, PCI-DSS and GDPR; Identifies appropriate data classification categories and provides higher levels of protection for sensitive data classifications in security policies and configurations
- Works with technical services leadership to ensure effective business continuity and disaster recovery plans are in place, including ensuring immutable backup and appropriate redundancy of supported services in support of data availability needs; Works with data owners and stewards to ensure data retention policies and configurations are in alignment with Texas state data retention policies
- Works with OTS and LSC leadership to identify the full inventory of devices, services and other information systems in use at the College; Prioritizes and schedules periodic device and service security configuration reviews
- Responsible for other reasonable, related duties as assigned
· Excellent written and verbal communication skills, interpersonal and collaborative skills, and the ability to communicate information security and risk-related concepts to technical and nontechnical audiences at various levels, ranging from board members to technical specialists
· Strategic leader and builder of both vision and bridges, and able to energize the appropriate teams in the organization
· Ability to lead and motivate the information security team to achieve tactical and strategic goals
· Master of influencing entities and decisions in situations where no formal reporting structures exist
· Poise and ability to act calmly but with a sense of urgency in high-stress incident response situations
· Excellent analytical and problem-solving skills
PHYSICAL ABILITIES:
The work is sedentary. Typically, the employee sits comfortably to do the work. However, there may be some walking; standing; bending; carrying of light items, such as papers, books, or small parts; or driving an automobile. No special physical demands are required to perform the work.
WORK SCHEDULE AND CONDITIONS:
· Equipment used includes, PC workstation running on a LAN in a Microsoft Windows environment, calculator, phone and other general office equipment
· Interface with internal and external contacts as needed to carry out the functions of the position
· Work is performed in a climate-controlled office with minimal exposure to safety hazards
· May regularly travel to different LSC locations
· May be fully reassigned to other LSC locations if necessary
· May need to work weekends and outside of core business hours if necessary
REQUIRED QUALIFICATIONS:
· Bachelor's degree in a business administration or technology-related field and at least 10 recent years of IT management experience, or an equivalent combination of education and experience
· Experience must include at least 5 years in a manager- or director-level position
· Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) or other similar credentials
PREFERRED QUALIFICATIONS:
· Demonstrated experience and success in senior leadership roles in risk management and/or information security
· Certified Chief Information Security Officer (CCISO) certified or equivalent
Salary
Hiring salary is $141,856.
Lone Star College provides a hiring salary range for all posted full-time non-faculty positions. Where your salary offer would fall in that range is determined by your related experience and education. Should you receive an offer of employment from Lone Star College, the resume submitted in the application process will be utilized to calculate your salary offer. The information outlined below will provide the Office of Human Resources everything needed to determine an accurate starting salary.
Your resume should provide a complete picture of your work experience. The resume should include the following information for each position listed:
- Length of time (specific months and years) of employment
- If the position was full time or part time
- If the position was paid or unpaid
- Level of degree completed including date earned.
- Unofficial transcript for highest earned degree
Benefits Marketing Statement
By joining our top-notch institution, you will enjoy being a part of an organization that offers a supportive, collegial work environment and excellent work/life balance. This includes a full comprehensive and competitive benefits package, a generous number of paid holidays and vacation days, wellness programs, tuition waiver, professional development opportunities and more.
Special Instructions
Go to the Job Search page, click on ‘My Activities' at the top of the page. Under My Cover Letters and Attachments you will click on ‘Add Attachment.' Please be sure to put the Job ID# in the title once you name your file for cover letters only, unless you attached your cover letter with your resume.
If you are applying for an Instructional position (i.e. Faculty, Adjunct Faculty, Instructor), please ensure you include the following to be considered: Resume/CV, Cover Letter, Teaching Philosophy, and unofficial transcripts.
You must limit your file name for any attachment to 40 characters or less.
How to Apply
ALL APPLICANTS MUST APPLY ONLINE ONLY
We will not accept application material received via fax, email, mail, or hand delivered.
Postings for part-time and adjunct positions are active for the academic year. By selecting the option to receive notifications on your profile, you will begin receiving electronic communication regarding new opportunities with Lone Star College (LSC).
If selected for an interview, a recruiter will contact you by phone, or email to schedule an interview.
Lone Star College participates in the E-Verify program, under which Lone Star College provides the federal government with information from each new employee's Form I-9 to confirm that the employee is authorized to work in the United States.
More information on the E-Verify program is available at www.dhs.gov/E-Verify.
Lone Star College is an EEO Employer. All positions are subject to a criminal background check.
Your Privacy Choices