South Orange County Community College District · 2 days ago
Director of Information Security
Wonder how qualified you are to the job?
EducationPersonal Development
Insider Connection @South Orange County Community College District
Responsibilities
Provide strategic direction and oversight for the existing information security program.
Lead, mentor, and manage the information security team, ensuring continuous professional development and operational excellence.
Collaborate with senior management to establish and maintain a security posture that aligns with organizational goals and risk tolerance.
Establish and maintain security governance frameworks and structures to ensure effective oversight and accountability.
Oversee the development, implementation, and enforcement of security policies, procedures, and associated plans aligned with industry-standard best practices and regulatory requirements.
Ensure compliance with existing and emerging regulations and laws, including but not limited to GLBA, PCI-DSS, HIPAA, FERPA.
Act as the primary point of contact for all information security matters, including incident response, forensic analysis, and resolution of security incidents.
Develop and maintain relationships with external security organizations, law enforcement, and other relevant entities.
Drive a culture of security awareness throughout the District, conducting regular workshops, training sessions, and communications on security topics.
Evaluate and recommend security technologies, tools, and services to enhance the District's security posture.
Coordinate regular security assessments, audits, and penetration tests to identify vulnerabilities and ensure remediation.
Report on the status of the information security program to senior management and the Board, providing insights, trends, and recommendations.
Ensure the security team is equipped with the necessary tools and training to detect, investigate, respond to and recover from security incidents effectively.
Perform other duties as assigned that support the overall objective of the position and the District's mission and philosophy.
Report to work on a regular and consistent basis, as scheduled, to assigned job.
Qualification
Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.
Required
Bachelor's degree from an accredited college or university with major course work in information security, cybersecurity, computer science, or a closely related field
Five years of increasingly responsible technical work experience in technology service operations with demonstrated information security responsibilities
Experience in incident response procedures and computer forensics
Commitment to equity and diversity
Knowledge of information security principles, best practices, and emerging technologies including but not limited to Servers, LAN and WAN networks, virtualization, and cloud computing and storage
Knowledge of GLBA, PCI-DSS, FERPA, and HIPAA compliance
Oral and written communication skills, including public speaking and presentations
Principles of administration, supervision, and training
State and federal laws and District policies affecting information security
Experience in organizing, leading, and supporting audit compliance initiatives
Assure compliance with state and federal laws, and District policies
Communicate clearly both orally and in writing about information security concepts to users with varying degrees of technical ability
Encourage professional excellence among the staff and promote an organizational culture of customer service, innovation, and quality services
Establish and maintain cooperative and effective working relationships with those contacted in the course of work
Evaluate emerging information security technologies and make recommendations relating to their use within the District
Identify, evaluate, and resolve complex information security problems
Interpret, apply, and explain District policies and legal regulations and requirements
Lead and facilitate group meetings effectively
Lead special projects related to developing new or improved information security systems
Maintain confidentiality of personnel, student, and security information
Maintain current knowledge of technological advances in the field
Monitor the work of external contractors and assure conformance to contract requirements
Plan, organize, and direct complex information security projects
Prepare and present reports and recommendations
Effectively and collaboratively work in a complex multi-college environment, as well as within a system of community college districts
Use independent judgment to plan and accomplish goals
Work independently with minimum direct supervision
Work with and exhibit sensitivity to and understanding of the varied racial, ethnic, cultural, sexual orientation, academic, socio-economic, and disabled populations of community college students
A valid California driver’s license
Proof of Certified Information Systems Security Professional (CISSP) certification or equivalent (active and in good standing)
Preferred
Experience in public sector higher education
Payment Card Industry Professional (PCIP) certification
Benefits
Health Insurance
Dental Insurance
Vision Insurance
Retirement Plan
Company
South Orange County Community College District
South Orange County Community College District is an educational institution that offers academic and personal development programs.