The Director of Information Security is a senior leader in the Technology division responsible for establishing and maintaining a University-wide information security management program to ensure that information assets are adequately protected. This position is responsible for identifying, evaluating and reporting on information security risks in a manner that meets compliance and regulatory requirements, and aligns with and supports the risk posture of the enterprise. The Director of Information Security position requires a visionary leader with a sound working knowledge of information security technologies. The Director of Information Security will proactively work with University departments and schools to implement practices that meet defined policies and standards for information security. He or she will also oversee a variety of IT-related risk management activities.
The Director of Information Security serves as the process owner of all assurance activities related to the availability, integrity and confidentiality of customer, business partner, employee and business information in compliance with the organization's information security policies. A key element of the Director of Information Security's role is working with executive management to determine acceptable levels of risk for the organization. The Director of Information Security must be highly knowledgeable about the business environment and ensure that information systems are maintained in a fully functional, secure mode.
The ideal candidate is a thought leader, a consensus builder, and an integrator of people and processes. While the Director of Information Security is the leader of the security program, he or she must also be able to coordinate disparate drivers, constraints and personalities.
Competencies, Knowledge, Skills, and Abilities Required in this Position
Minimum of five years of experience in a combination of risk management, information security and IT jobs. At least two must be in a senior leadership role. Employment history must demonstrate increasing levels of responsibility.
Excellent written and verbal communication skills, interpersonal and collaborative skills, and the ability to communicate security and risk-related concepts to technical and nontechnical audiences.
Proven track record and experience in developing information security policies and procedures, as well as successfully executing programs that meet the objectives of excellence in a dynamic environment.
Poise and ability to act calmly and competently in high-pressure, high-stress situations.
Must be a critical thinker, with strong problem-solving skills.
Certification (CISSP, CISM, CRISC) or training in information security standards.
Exhibit excellent analytical skills, the ability to manage multiple projects under strict timelines, as well as the ability to work well in a demanding, dynamic environment and meet overall objectives.
Ability to lead and motivate cross-functional, interdisciplinary teams to achieve tactical and strategic goals.
Master’s degree in business administration or a technology-related field, or equivalent work- or education-related experience.
Knowledge of common information security management frameworks, such as ISO 27001/2, ITIL, COBIT and ones from NIST.
High level of personal integrity, as well as the ability to professionally handle confidential matters, and show an appropriate level of judgment and maturity.
High degree of initiative, dependability and ability to work with little supervision.
About University of North Carolina School of the Arts
The University of North Carolina School of the Arts provides gifted emerging artists with the experience, knowledge, and skills needed to excel in their disciplines and in their lives, and it serves and enriches the cultural and economic prosperity of the people of North Carolina and the nation. UNCSA is the state’s unique professional school for the performing, visual, and moving image arts, trai...ning students at the high school, undergraduate, and master’s levels for professional careers in the arts.