Michigan State University (MSU) Information Technology provides primary leadership for strategic, financial, and policy initiatives affecting information technology (IT) across the university. We offer technology resources that support MSU's mission of providing education, conducting research, and advancing engagement.
Under the general direction of the Senior Vice President and Chief Information Officer (CIO) for Information Technology Services, the Chief Information Security Officer (CISO) is responsible for MSU's total information security needs and the development and delivery of a comprehensive information security strategy and privacy program to ensure university information assets are adequately protected.
The CISO is responsible for identifying, evaluating and reporting on information security risks in a manner that meets compliance and regulatory requirements, and aligns with and supports the risk posture of the university. The MSU CISO will work with key IT offices, data custodians, governance groups, and stakeholders in the development of security and application policies and best practices; oversees the effective dissemination of policies, standards, and procedures to the university community; establishes annual and long-range security and compliance goals; defines security strategies, metrics, reporting mechanisms, and services for continual program improvements; stays abreast of information security issues and regulatory changes affecting higher education at the state and national level and communicates to the campus community on a regular basis.
The CISO serves as the process owner of all assurance activities related to the availability, integrity and confidentiality of the customer, business partner, employee and business information in compliance with the organization's information security policies. A key element of this role is working with executive management to determine acceptable levels of risk for the organization. The CISO must be highly knowledgeable about the business environment and ensure that information systems are maintained in a fully functional, secure mode.
The ideal candidate is a thought leader, a consensus builder, and an integrator of people and processes. As the leader of the security program, the CISO must also be able to coordinate disparate drivers and constraints, while maintaining objectivity and an understanding that security is a major contributor to the universities' business's activities, and must align and support the university's ability to deliver its goals and objectives.
To apply for this position, navigate to https://careers.msu.edu/ and search for job number 625685.
Knowledge equivalent to that which normally would be acquired by completing a four year college degree program; five to eight years of related progressively more responsible or expansive work experience in project management, application design and programming, data center operations, system programming, database administration, office automation, production analysis, client computing, consulting services, financial management, long range planning, data security, educational technology, and/or management; or an equivalent combination of education and experience. Professional security management certification, such as a Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA} or other similar credentials.
Internal Number: 625685
About Michigan State University
Information Technology Services (IT Services) at Michigan State University (MSU) provides students, faculty, and staff with technology resources that support the University's mission of providing education, conducting research, and advancing engagement.
IT Services works in partnership with the staff located within MSU's schools, colleges, and administrative divisions.