Enterprise IT Security Director (Finance)

Department: UIT Security Salary: 115,000 - 132,250
Description:

Responsible for overseeing the development and administration of a comprehensive campus information security program ensuring strategies and services align with university mission, goals and objectives, including coordination with assigned UHS stakeholders. The administration of the Information Security program includes: Developing, documenting, implementing and maintaining the security policies, standards, and procedures for UHS. This position reports to the University of Houston System Chief Information Security Officer (CISO).

1. Manages the Information Security function with continuous development, implementation, and maintenance of a security management program for the assigned UHS University.

2. Develops and modifies information security policies and procedures in compliance with applicable UHS, state and federal information security, compliance and risk management policies, standards and guidelines.

3. Uses an integrated risk management approach to create high level perspectives on security risks the university faces.

4. In collaboration with the CISO, creates and documents an information risk management plan including risk assessment and analysis.

5. Establishes procedures necessary to monitor and ensure compliance with established security and risk management policies and procedures.

6. Ensures the University's critical, confidential and sensitive information resources are assigned ownership, and the duties of owners are prescribed.

7. Develops, maintains and tests a Service Continuity Plan for university information resources, including appropriate integration with key campus stakeholders against the potential effects of a disaster.

8. Oversees, evaluates and forecasts the need for IT security services, using industry-standard service delivery metrics and other assessment and reporting tools.

9. Assesses business requirements, conducts cost analysis and advises administration and campus personnel on IT security products, services and solutions.

10. Partners with users, committee and other service providers to coordinate IT security initiatives.

11. Performs other job-related duties as assigned.

MQ: Requires a thorough understanding of both theoretical and practical aspects of an analytical, technical or professional discipline; or the basic knowledge of more than one professional discipline. Knowledge of the discipline is normally obtained through a formal, directly job-related 4 year degree from a college or university or an equivalent in-depth specialized training program that is directly related to the type of work being performed.

Requires a minimum of seven (7) years of directly job-related experience.

Additional Posting Information:

• This position works in collaboration with the UHS CISO to mature the information security program and posture of the universities in the University of Houston System
• This position collaborates with and advises the university IT organizations and other stakeholders at the various UHS universities on information security related issues.
• Experience will be considered in lieu of education.
• Education will be considered in lieu of experience.
• This position is 100% remote.

All positions at the University of Houston-System are security sensitive and will require a criminal history check.

The University of Houston System and its universities are an Equal Opportunity Institution.