Director, Information Security Management

Job No : 537852; 4 / 2 / 2024

DIRECTOR, INFORMATION SECURITY MANAGEMENT

California State University, Los Angeles, invites applications for the above Administrator II position.

The University : California State University, Los Angeles (Cal State LA) is one of 23 campuses within the California State University system.

The University is the premier comprehensive public university in the heart of Los Angeles. We offer nationally recognized programs and our faculty have a strong commitment to scholarship, research, creative pursuits, and service.

As a federally recognized Hispanic-serving (HSI) and Asian-American, Native American, and Pacific Islander-serving institution (AANAPISI), Cal State LA recognizes the transformative power of education and embraces its duty to identify and serve the needs of all of its students.

The University is committed to creating a community in which a diverse population of students, faculty, and staff can thrive.

The Position : In accordance with CSU and University policies and procedures, the incumbent is responsible for developing and administering University policy related to information technology security and compliance, which includes protecting student, faculty, and staff data and information, technology systems, and services.

• The incumbent works under the direction of the Chief Information Security Officer to develop security and compliance plans, user guidelines, and security procedures;
• participates in projects to ensure security and compliance requirements are met; helps directing the implementation and upgrade of existing security practices and systems;
• promotes awareness of security policies to the campus; assesses and develops solutions to reduce ongoing system security threats and vulnerabilities;

monitors system and application compliance with security guidelines and standards; participates in directing the IT security and compliance audits activities.

The incumbent oversees the enforcement and the compliance of CSU Information Security Policies and Standards, campus security guidelines, and security controls to support regulatory compliance with federal, state, or city laws or ordinances.

Responsibilities include, but not limited to, security assessments, security awareness and training, coordination of audit activities, and subsequent remediation plans.

The incumbent is accountable for the implementation of core functional components of the Security and Compliance programs under NIST Cybersecurity Framework.

Required Qualifications & Experience : BA or BS in Business Administration, Computer Science, Business Systems, or other related field from an accredited four-year college or university or equivalent of years of experience working in the Information Technology field.

Minimum of seven years in IT role in one or more of the following areas : Cybersecurity, IT audit, network support; server support;

systems analysis; systems architecture; database management; communication systems; application programming, and support.

• A minimum 3-year supervision experience in IT domains. The incumbent must have working experience in building security and / or compliance programs;
• responding to IT audits; implementing NIST 800 security controls, SAN CIS 20 controls, or security controls in other security control frameworks;
• Data Classification, Data Lifecycle Management, and Data Protection; System Development Life Cycle and software development;

implementing Security Awareness Training Program; and in managing complex, long-term projects in IT and project management responsibilities for cross-division / department system implementations.

• The incumbent must have working knowledge of e-discovery; Intrusion Detection Systems (IDS) and Intrusion Protection Systems (IPS), firewalls, network security policies, anti-virus, and anti-spam applications;
• Oracle or equivalent relational databases; data privacy standards, requirements, and policies; current state and federal laws and regulations regarding information security or knowledge of where to locate the information electronically;
• and of the change management process for systems and applications. The incumbent must have the ability to comprehend strategic plans and directions and integrate them into daily operations through information technology application implementations;
• attention to details; comprehend institution needs and requirements through preparation of needs analysis and feasibility studies that reflect desired outcomes;
• work with external vendors; communicate effectively both orally and in writing, as well as possess solid listening and constructive feedback skills;
• coordinate multiple projects and tasks without the loss of integrity to work, as well as organizing, monitoring, and guiding others to ensure desired outcomes are achieved;

act decisively under stressful situations; and to organize documents and records and make them easy to discover. The incumbent must have a demonstrated interest and / or ability to work in a multicultural / multiethnic environment.

A background check (including a criminal records check) must be completed satisfactorily before any candidate can be offered a position with the California State University.

Failure to satisfactorily complete the background check may affect the application status of applicants or continued employment of current California State University employees who may apply for the position.

California State University, Los Angeles, as part of the CSU system, is a State of California Employer. As such, the University requires all employees upon date of hire to reside in the State of California.

As of January 1, 2022 the prohibits the hiring of employees to perform CSU-related work outside the state of California.

Desired Qualifications : An advanced degree from an accredited four-year college or university in cybersecurity. IT work experience in higher education.

Regulatory compliance program implementation experience (., GLBA, PCI, HIPAA). CISSP or similar security certification. Systems security certification.

Network security certification. Knowledge of PeopleSoft instances and student data security or equivalent ERP system, including knowledge of the process to gain access to the data or equivalent.

Software design and development experience.

Compensation : Salary is commensurate with experience and qualifications. Salary range is $4,812 - $15,449 / monthly. (Budgeted Hiring Salary Range $10,700 - $11,666 / Monthly).

A comprehensive benefits package is provided.

Appointment : The Administrator II appointment will be made under the guidelines for management and supervisory employees of the California State University.

All rights and benefits associated with this appointment are governed by the Management Personnel Plan.

Closing Date : Review of applications will begin on April 16, 2024 and will continue until the position is filled; however, the position may close when an adequate number of qualified applications are received.

A completed online Cal State University, Los Angeles employment application is required. Resumes will not be accepted in lieu of a completed application.

This position is a "designated position" in the California State University's Conflict of Interest Code. The successful candidate accepting this position is required to file Conflict of Interest forms subject to the regulations of the Fair Political Practices Commission.

In addition to meeting fully its obligations under federal and state law, California State University, Los Angeles is committed to creating a community in which a diverse population can live and work in an atmosphere of tolerance, civility and respect for the rights and sensibilities of each individual.

To that end, all qualified individuals will receive equal consideration without regard to economic status, race, ethnicity, color, religion, disability, national origin or cultural background, political views, sex or sexual orientation, gender, or other personal characteristics or beliefs.

Candidates must demonstrate ability and / or interest in working in a multicultural / multiethnic environment. Certain positions require fingerprinting.

The University actively encourages qualified minorities, women and persons with a disability to apply. Upon request, reasonable accommodation will be provided to individuals with protected disabilities to (a) complete the employment process and (b) perform essential job functions when this does not cause an undue hardship.

We are an Equal Opportunity / Title IX Employer.

To obtain employment information for the impaired call :

TDD Line (323) 343-3670

24-hour Dial-A-Job Line (323) 343-3678