University of Oklahoma

Apply for this job

*Information Security Services Director (Project Management)



The Information Security Services Director is responsible for developing, implementing, and monitoring a strategic, comprehensive enterprise cyber security and IT risk management program. This position manages the risk to the University and ensures business alignment, effective governance, system and product availability, integrity, and confidentiality, as well as, manages all production systems and infrastructure in support of all University customers and affiliates.

Duties:

  • Develops, maintains, and implements an information security program including policy and strategy development.
  • Responsible for information security related issues involving identity and access management, intrusion detection, forensics, incident management, risk management and auditing.
  • Evaluates and provides guidance on information security software and hardware acquisitions, IT services, cloud-based solutions, and mobility.
  • Develops and manages an information security awareness and training program.
  • Responsible for information security and compliance related issues, to include but not limited to FERPA, HIPAA, copyright, and software piracy.
  • Manages and negotiates vendor contracts and agreements.
  • Manages a team that detects, diagnoses, reports and troubleshoots server, network performance and network access issues. Audit systems and network recourses for compliance with organizational security standards and policies.
  • Develops strategies based on trends, metrics and desired business outcomes related to security. Develops a business plan to achieve short-term and long-term goals.
  • Performs related duties as assigned to successfully fulfill the functions of the position.

Required Education: Bachelor's degree in a related field, AND:

  • 120 months responsible management experience in information security, network administration, or related field which includes 36 months supervisory/leadership experience.  

Equivalency/Substitution: Experience or a combination of education and related experience can be considered in lieu of degree. A one-to-one ratio is used to determine the number of years of experience required in place of a degree. 

Skills:

  • Advanced knowledge of system auditing, vulnerability scanning and mitigation, intrusion detection systems, and how to properly secure servers and infrastructure devices.
  • Advanced knowledge of security assessment and testing tools.
  • Advanced knowledge of information risk concepts and principles as a means of relating business needs to security controls.
  • Advanced knowledge of HIPAA, FERPA, copyright, and software piracy.
  • Advanced knowledge of security architecture and operational principles.
  • Ability to manage employees.
  • Ability to communicate verbally and in writing.
  • Ability to work independently and as a team member.

Advertised Physical Requirements:

  • Physical: Sits for prolonged periods of time. Use of computer. Manual dexterity. Communicate effectively and listens.
  • Environmental: Standard Office Environment.

Why You Belong at the University of Oklahoma: The University of Oklahoma fosters an inclusive culture of respect and civility, belonging, and access, which are essential to our collective pursuit of excellence and our determination to change lives. The unique talents, perspectives, and experiences of our community enrich the learning, and working environment at OU, inspiring us to harness our innovation, creativity, and collaboration for the advancement of people everywhere.

Equal Employment Opportunity Statement: The University of Oklahoma, in compliance with all applicable federal and state laws and regulations, does not discriminate based on race, color, national origin, sex, sexual orientation, genetic information, gender identity, gender expression, age, religion, disability, political beliefs, or status as a veteran in any of its policies, practices, or procedures. This includes, but is not limited to, admissions, employment, financial aid, housing, services in educational programs or activities, and health care services that the University operates or provides.

Apply
Apply Here done