Overview

Information Services Central Administration is recruiting for a Information Security Program Manager. This is a full-time 1.0 FTE, 12-month, fixed term professional faculty position. Reappointment is at the discretion of the Chief Information Security Officer.
Reporting to the Chief Information Security Officer, the Information Security Program Manager assists in managing a comprehensive information security program for Oregon State University. This position provides highly specialized expertise to manage risk and compliance for a complex world class land, sea, space and sun grant university. Responsibilities include collaborating with business entities to determine information security requirements, development and implementation of new security initiatives, tracking and maintaining new initiatives that meet the stated risk appetite of OSU.

Works under general supervision of the CISO. Works with OSU stakeholders to develop recommendations to close identified gaps. Works
closely with stakeholders to implement key information security initiatives.
Position Duties:
40% Institutional and Business Risk: Collaborate and coordinate with OSU business entities and stakeholders to determine institutional and departmental information security risks and needs. Define the risks found in a large complex land grant research university environment, where activities include the conduct of original research, innovative teaching and learning delivery methods, maintenance of sensitive regulated data, to information technology operations, such as provisioning an award winning campus-wide WiFi network.

Develop information security requirements and business cases that address identified risks and gaps, that meet institutional risk appetite. Assist in determining budget and resource needs to provide new capabilities. Develop non-material solutions as appropriate to address risks and gaps.
Assist in developing OSU Information Security Risk Profile and Target Profile.

30% Information Security Program coordination: Coordinate implementation of information security programs and initiatives within the OSU community. Support major security product implementation for University IT/Information Services and OSU business units and stakeholders, support information security training and awareness training and events, and support information security workforce development.
Provide security expertise as required to OSU business units for departmental projects such as cloud services, instructional technology or research activities to aid in successful protection of the confidentiality, integrity and availability of OSU data and systems.
Assist in developing a program plan to achieve OSU Target Information Security Risk Profile.

25% Disaster Recovery and Business Continuity Planning: Support disaster recovery planning, and the development of processes and procedures to ensure critical systems and data can recover from information security events, such as ransomware attacks, breaches and natural or man-made disasters.

5%—Other duties as assigned.

Minimum/Required Qualifications:
A bachelor’s degree is required.
Information security related training or certifications such as CISSP, CISM or CRISC, or the ability to obtain within 1-year.
Strong communication and writing skills
Independent problem solving abilities, and the ability to be self-directing.
Experience in information security risk management frameworks and compliance practices.
Experience in securing network technologies, client and server operating systems.

Preferred (Special) Qualifications:

Experience performing project management or business analyst functions. PMP or similar certification a plus.
Experience in planning disaster recovery or business continuity functions.
Experience in information security workforce development frameworks such as the National Initiative for Cybersecurity Education (NICE).
Experience in policy development and coordination.

To apply for this job please visit our website: https://jobs.oregonstate.edu/postings/79120  Closing Date: 7/21/19

Commitment to Diversity:

OSU commits to inclusive excellence by advancing equity and diversity in all that we do. We are an Affirmative Action/Equal Opportunity employer, and particularly encourage applications from members of historically underrepresented racial/ethnic groups, women, individuals with disabilities, veterans, LGBTQ community members, and others who demonstrate the ability to help us achieve our vision of a diverse and inclusive community.

About Oregon State University

OSU’s main campus is located in Corvallis, a community of 58,000 people in the heart of western Oregon's Willamette Valley, located about 90 miles south of Portland, 36 miles south of Salem, the state capital, and one hour from the Pacific Coast and the Cascade Mountains. Corvallis is a vibrant college town, and is consistently ranked among the best and safest cities to live in the United States. Recently, WalletHub ranked Corvallis the fourth best overall college city in America. Known for being an environmentally responsible town, Corvallis sits within easy access to Oregon’s finest recreational and scenic areas: ocean beaches, lakes, rivers, forests, high desert, and the rugged Cascade and Coast Ranges are all within a short driving distance. OSU has a presence in every county of the state, including 15 Agricultural Experiment Stations, 36 county Extension offices, the Hatfield Marine Science Center in Newport and OSU-Cascades in Bend.