Texas Tech University - Lubbock, TX
posted 5 days ago
Full-time - Senior
Lubbock, TX
10,001+ employees
Educational Services
About the position
The Managing Director & Chief Information Security Officer (CISO) is responsible for overseeing the cybersecurity operations of the Texas Tech University System. This role involves strategic planning, policy development, and leadership to ensure the security and integrity of information resources across the institution. The CISO will lead teams, coordinate with various stakeholders, and ensure compliance with relevant laws and regulations while staying abreast of the latest trends in cybersecurity.
Responsibilities
- Research and stay updated on trends in cybersecurity affecting information resources and data.
- Develop system-wide regulations and policies in collaboration with leadership to reflect best practices in cybersecurity.
- Coordinate with peer groups and executive management to propose and implement technology-based solutions for cybersecurity improvements.
- Develop standards for secure operating systems, networks, and databases.
- Conduct password auditing, vulnerability scanning, virus management, and intrusion detection.
- Perform risk audits and assessments, providing recommendations for application design and cybersecurity levels.
- Monitor and analyze system access logs and security events for cybersecurity purposes.
- Provide insights for security backup planning and disaster recovery.
- Develop and implement cybersecurity awareness programs for compliance with state and federal requirements.
- Produce regular reports to executive leadership on the cybersecurity state and risk posture.
Requirements
- Bachelor's degree required; master's preferred.
- Seven years of progressively responsible management experience required.
- Knowledge of legal and regulatory requirements such as HIPAA, FERPA, and PCI DSS.
- Familiarity with information security management frameworks like ISO/IEC 27001, ITIL, COBIT, and NIST.
- Sound knowledge of business management and cybersecurity risk management.
- Up-to-date knowledge of methodologies and trends in business and IT.
Nice-to-haves
- 10+ years of progressive experience in information security roles such as Security Analyst, Network Administrator, or Incident Responder.
- Experience in vulnerability management, risk assessment, and incident response.
- Relevant cybersecurity certifications such as CISSP, CCISO, or CISM.
Benefits
- Competitive salary based on qualifications and experience.
- Comprehensive health insurance options.
- Retirement savings plan with employer contributions.
