Associate Chief Information Security Officer (0592) 11296

Associate Chief Information Security Officer (0592) 11296 About Berkeley

At the University of California, Berkeley, we are committed to creating a community that fosters equity of experience and opportunity, and ensures that students, faculty, and staff of all backgrounds feel safe, welcome and included. Our culture of openness, freedom and belonging make it a special place for students, faculty and staff.

The University of California, Berkeley, is one of the world's leading institutions of higher education, distinguished by its combination of internationally recognized academic and research excellence; the transformative opportunity it provides to a large and diverse student body; its public mission and commitment to equity and social justice; and its roots in the California experience, animated by such values as innovation, questioning the status quo, and respect for the environment and nature. Since its founding in 1868, Berkeley has fueled a perpetual renaissance, generating unparalleled intellectual, economic and social value in California, the United States and the world.

We are looking for equity-minded applicants who represent the full diversity of California and who demonstrate a sensitivity to and understanding of the diverse academic, socioeconomic, cultural, disability, gender identity, sexual orientation, and ethnic backgrounds present in our community. When you join the team at Berkeley, you can expect to be part of an inclusive, innovative and equity-focused community that approaches higher education as a matter of social justice that requires broad collaboration among faculty, staff, students and community partners. In deciding whether to apply for a position at Berkeley, you are strongly encouraged to consider whether your values align with our Guiding Values and Principles, our Principles of Community, and our Strategic Plan.

Departmental Overview

The Information Security Office (ISO) coordinates the risk management process for UC Berkeley's information systems and directs campus-wide efforts to adequately secure Institutional data. We are a team of talented and high-performing Information Security professionals dedicated to reducing institutional risk through our comprehensive Information Security and Identity services. ISO is led by the Chief Information Security Officer (CISO) and our portfolio includes IT Policy, Outreach and Engagements, Identity and Access Management, Security Operations, and Security Assessments.

The CISO reports to the Associate Vice Chancellor for IT & Chief Information Officer (CIO), and the ISO is a key department in the Office of the CIO, a central IT organization with broad campus impact.

The Office of the CIO and Information Services & Technology (OCIO/IST) believe in and foster a workplace environment where people can bring their diverse skills, perspectives and experiences toward achieving our goals through a process of critical inquiry, discovery, innovation, while simultaneously committing to making positive contributions towards the betterment of our world.

In addition, members of the OCIO/IST community have created and endorse the following values for our organization to augment and amplify the campus principles:

We champion diversity.
We act with integrity.
We deliver.
We innovate.

Diversity, Inclusion, and Belonging are more than just suggestions for us. They are the guiding principles underlying how we come together, develop leaders at all levels of the organization, and create an environment that unites us. We affirm the dignity of all individuals, call upon our leaders to address critical issues with integrity and intention, respect our differences as well as our commonalities, and strive to uphold a just community free from discrimination and hate.

Responsibilities

The Associate CISO is a leader in the Information Security Office with responsibility for direct oversight in three key strategic areas: Security Operations, Identity and Access Management, and Security Assessments. Through a deep understanding of the University's highest information security risks and its mission of teaching, learning and research, the Associate CISO will assist with strategy and planning, drive the information security multi-year roadmap, and coordinate project management and communications. In partnership with the CISO and the ISO management team, this position will set the vision for the broader information security program, and will have a significant and meaningful impact on supporting the mission of a world-class research institution.

Key responsibilities include:

• Through the direct supervision of subordinate managers, provide oversight of departmental operational programs to ensure effective delivery of services, meaningful collaboration, project management, and communications
• Development and implementation of our department workforce strategy, including effective and inclusive recruitments for vacant positions, staff development and growth, and fostering a culture of engagement and connection
• Development of the ISO Service Management strategy, including identification of service delivery gaps, implementing resources to improve service management, and ensuring all ISO services are aligned with the needs of the campus community
• Ensuring the delivery of key initiatives within ISO aligned to the campus IT Strategic Plan, and communicating progress to campus and senior management
• Participation in the ISO Management team for operational oversight and strategic planning of ISO functions and services
• Representing ISO in campus-wide strategic planning meetings, projects, and other critical initiatives, as needed to support the CISO and ISO management team
  

Required Qualifications

• Significant (typically 4-10 years) experience managing technical staff and service delivery in an information technology organization
• In-depth knowledge of information technology security in at least two functional areas relevant to higher education, including: student data, health information, research, finance, identity and access management, privacy and security regulations, and management of IT resources
• Understanding of, and ability to apply, privacy and security regulations and best practices, including federal and state laws and policies and standards relevant to higher education
• Proven excellent communication and interpersonal skills to work collaboratively and effectively with project teams, stakeholders, senior management, and external contacts including both technical and non-technical audiences
• A demonstrated track record of providing effective leadership and coordinating the differing skills, outlooks, and experiences of highly technical teams to achieve shared goals
• Demonstrated experience and success in coaching and mentoring professional staff in their performance, development, and growth
• Experience with and commitment to developing team cohesion through the principles of inclusivity, diversity, and equity
• Experienced in leading change management activities and managing their impact across multiple units or departments
• Experience in the management of ongoing technology infrastructure acquisition and expansion, to include the identification and integration of suitable emerging technologies
• Experience in managing and resolving IT operational issues, and significant incidents involving the confidentiality, integrity, and availability of IT resources
• Possess political acumen and the ability to navigate complex and matrixed organizational structures, and demonstrated ability to negotiate effectively both inside and outside the organization
• Critical thinking and problem solving skills to adapt, integrate, modify programs and services to meet the needs of a diverse community and align with organizational goals

Preferred Qualifications

• Advanced degree and/or professional information security certifications
• FERPA, PCI, HIPAA, FISMA compliance
• Cloud and vendor security standards and assessment frameworks (CSA, SOC 2), including vendor and contract management issues
• Organizational policies and standards within Higher Education and/or Research environments, such as policies and standards defined for the University of California and the UC Berkeley campus

Salary & Benefits

For information on the comprehensive benefits package offered by the University visit:

https://ucnet.universityofcalifornia.edu/compensation-and-benefits/index.html

Other Information

Application review will begin in early November 2020.

Conviction History Background

This is a designated position requiring fingerprinting and a background check due to the nature of the job responsibilities. Berkeley does hire people with conviction histories and reviews information received in the context of the job responsibilities. The University reserves the right to make employment contingent upon successful completion of the background check.

Equal Employment Opportunity

The University of California is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or protected veteran status. For more information about your rights as an applicant see:

https://www.eeoc.gov/sites/default/files/migrated_files/employers/poster_screen_reader_optimized.pdf
For the complete University of California nondiscrimination and affirmative action policy see:
http://policy.ucop.edu/doc/4000376/NondiscrimAffirmAct



To apply, visit https://careerspub.universityofcalifornia.edu/psp/ucb/EMPLOYEE/HRMS/c/HRS_HRAM.HRS_APP_SCHJOB.GBL?Page=HRS_APP_JBPST&Action=U&FOCUS=Applicant&SiteId=21&JobOpeningId=11296&PostingSeq=1

jeid-660053350e4e4f40ad6b0b84fd2e32bc