Director of Information Security

Job Title: Director of Information SecurityLocation: Georgia Gwinnett CollegeRegular/Temporary: RegularFull/Part Time: Full-TimeJob ID: 292747About UsSince our founding in 2005, Georgia Gwinnett College (GGC) has been dedicated to providing an exceptional educational experience to our students. At GGC, we believe that our students' success is our success, and we are committed to creating a culture that supports and uplifts them throughout their academic journey.As a member of our faculty or staff, you will become part of a dedicated and passionate community of educators and professionals. Together, we work towards a common goal of empowering our students to achieve their full potential, both academically and personally. We take pride in our student body, which represents a multitude of backgrounds, perspectives, and experiences. Whether you are involved in teaching or providing essential services, your contribution will make a significant impact on the lives of our students and the broader community.In addition to our commitment to student success, we also value the well-being and professional growth of our employees. We offer a comprehensive benefits package, designed to support the needs of our faculty and staff. From competitive compensation to health and wellness programs, and professional development opportunities to work-life balance initiatives, we strive to create an environment where everyone can thrive and feel valued.Located in the thriving community of Gwinnett County, GGC offers a rich cultural and social landscape that enhances the overall college experience. Our backdrop is a beautiful, modern 260-acre campus located just 30 miles northeast of downtown Atlanta. Our students and employees benefit from the close proximity to various local amenities, including shopping, dining, entertainment, and outdoor recreational opportunities. This vibrant community serves as an extension of our campus, providing a stimulating environment for personal and professional growth.Join GGC and become part of a dynamic team that plays a pivotal role in shaping the lives and celebrating the achievements of our students. Together, let's make a positive impact and empower the next generation of leaders.Job SummaryBased on industry standards and best practices, the Director of Information Security sets the vision and leads the strategy for a comprehensive enterprise cybersecurity and IT risk management program. The Director will provide direction and oversight to ensure confidentiality, integrity, and availability of data, systems, and services; manage organizational risk; and ensure alignment with GGC's mission, goals, and business needs. This position reports to the Chief Information Officer (CIO) and serves as a member of the IT Leadership Team. The Director is responsible for developing and executing security governance, incident response, and awareness programs, and for fostering a culture of security throughout the college. This position collaborates with colleagues frequently and regularly interacts with internal and external stakeholders. This position leads and develops one or more direct reports.Working outside standard business hours will be required on an as-needed basis.ResponsibilitiesLead and develop a comprehensive information security and IT risk management program that ensures the confidentiality, integrity, and availability of GGC data and infrastructure.Lead and develop education, training, and awareness programs for all college constituents on institutional policy, guidelines, federal and state laws and regulations, and best practices in information security. Serve as a spokesperson for cybersecurity and provide guidance to college leaders and other stakeholders. Regularly share data, reports, and updates with stakeholders.Lead the development and implementation of the college's security governance, including policies and procedures, in consultation with IT leadership, technology professionals, and other stakeholders.Lead security information and event management, security operations, and other related functions. Lead, mentor, and develop security operations staff and related personnel, fostering a collaborative and high-performing team.Collaborate with ITS, audit, public safety, and academic and business units to comply with USG security policies, regulations, and college standards; collaborate with Legal Affairs and Purchasing to embed risk assessment and data security in supplier agreements and renewals.Proactively lead incident management and response by systematically detecting, analyzing, containing, and eradicating threats, restoring systems,and coordinating communication and documentation of incidents. Employ a 24/7/365 on-call schedule as needed. Conduct post incident analysis and propose cost-effective solutions to prevent or mitigate future incidents.Collaborate with colleagues inside and outside IT to embed cybersecurity best practices in technical solutions.Use standard tools and processes to lead projects to successful completion through effective planning for user experiences, change management, communication, and documentation.Additional duties as assigned.Required Qualifications4 Year / Bachelor's Degree in a related field8+ years of relevant experience5+ years of supervisory experiencePreferred QualificationsGraduate degree in a related fieldProfessional security management certification, such as a Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified InformationSystems Auditor (CISA) or similar credential.Knowledge of auditing, information security and regulatory standards, best practices, and assessment methodologies.Experience with service management, project management, change management processes and procedures, and well-honed documentation skills.Experience directing, leading, and mentoring IT professionals.Experience working in higher education, preferably a campus in the University System of Georgia.Proposed Salary109,000 - 139,000Salary offer will be dependent on candidate's experience and qualifications, internal equity considerations, budget availability, and salary administration guidelines.Knowledge, Skills, & AbilitiesAbility to develop and propose solutions in a clear, concise, and organized manner.Excellent presentation and communication skills, both verbal and written, with the ability to convey complex technology concepts clearly to non-technical audiences.Ability to handle the pressures of work, maintain composure, and demonstrate good judgment.Broad technical knowledge and experience administering enterprise technologies.Up to date knowledge of federal, state, and other applicable compliance requirements.Effective customer service skills.Knowledge of, and experience in, using modern endpoint management platforms; knowledge of, and experience with, Active Directory/Microsoft Entra ID (formerly Azure Active Directory).Knowledge of, and experience with, Windows Administration including Office 365, Privileged Identity Management, Microsoft Defender and Sentinel, Identity Governance and Administration, and Information Protection.Knowledge of, and experience with, Vulnerability Scanning and Management Solutions, such as Tenable Nessus and BitSight Technologies.Ability and initiative to engage in continuous professional development.Knowledge of enterprise level networking and security best practices.Knowledge and application of cybersecurity best practices.Skills in change leadership as well as project, time, and change management.Ability to develop, implement, and scale solutions.Ability to foster a work environment based on trust, respect, and competence.Ability to forge effective collaborations with a wide range of internal and external stakeholders.Ability to lead productive meetings and produce deliverables and outcomes that meet organizational needs.Ability to demonstrate attention to detail and manage competing priorities effectively.Ability to manage relationships with vendors for quotes, maintenance renewals and other activities.USG Core ValuesThe University System of Georgia is comprised of our 26 institutions of higher education and learning as well as the System Office. Our USG Statement of Core Values are Integrity, Excellence, Accountability, and Respect. These values serve as the foundation for all that we do as an organization, and each USG community member is responsible for demonstrating and upholding these standards. More details on the USG Statement of Core Values and Code of Conduct are available in USG Board Policy 8.2.18.1.2 and can be found on-line at https://www.usg.edu/policymanual/section8/C224/#p8.2.18_personnel_conduct.Additionally, USG supports Freedom of Expression as stated in Board Policy 6.5 Freedom of Expression and Academic Freedom found on-line at https://www.usg.edu/policymanual/section6/C2653.Conditions of EmploymentHiring is contingent upon eligibility to work in the United States and proof of eligibility will be contemporaneously required upon acceptance of an employment offer. Offers of employment are contingent upon completion of a background investigation including a criminal background check demonstrating your eligibility for employment with Georgia Gwinnett College (GGC). Eligibility of employment is determined by GGC in its sole discretion, and includes but is not limited to confirmation of credentials and employment history reflected in your application materials; and, if applicable, a satisfactory credit check. Applicants may be subject to a pre-employment drug test.Offers are subject to the applicable federal laws, state laws, statutes, rules and regulations of this institution, and to the bylaws and policies of the Board of Regents (BOR) of the University System of Georgia (USG), which are available for your inspection upon request.Equal Employment OpportunityGeorgia Gwinnett College is an equal employment, equal access, and equal opportunity employer. It is the policy of Georgia Gwinnett College to recruit, hire, train, and promote persons without regard to race, color, national or ethnic origin, age, disability, gender, religion, sexual orientation, gender identity or veteran status as required by applicable state and federal laws (including Title VI, Title VII, Title IX, Sections 503, and 504, ADEA, ADA, E.O. 11246, and Rev. Proc. 75-50).For individuals requiring disability-related accommodations for participation in any event including the application, interview process, or to obtain print materials in an alternative format, please contact HR at (678) 407.5746 or email hr@ggc.edu.Background CheckPosition of Trust + EducationOther InformationDue to the volume of applications, applicants may not receive a reply from the College unless an applicant is selected for an interview. Review of applications will continue until positions are filled. Georgia is an open records state.