Director of Information Security
Founded in 1898, Northeastern is a global research university and
the recognized leader in experience-driven lifelong learning. Our
world-renowned experiential approach empowers our students,
faculty, alumni, and partners to create impact far beyond the
confines of discipline, degree, and campus.
Our locations—in Boston; Charlotte, North Carolina; London;
Portland, Maine; San Francisco; Seattle; Silicon Valley; Toronto;
Vancouver; and the Massachusetts communities of Burlington and
Nahant—are nodes in our growing global university system. Through
this network, we expand opportunities for flexible,
student-centered learning and collaborative, solutions-focused
Northeastern's comprehensive array of undergraduate and graduate
programs— in a variety of on-campus and online formats—lead to
degrees through the doctorate in nine colleges and schools. Among
these, we offer more than 195 multi-discipline majors and degrees
designed to prepare students for purposeful lives and
About the Opportunity:
This position is Eligible for Alternative Work Location
The Director of Information Security plays a critical role for the
Office of Information Security (OIS) by building and managing the
team responsible protecting the University's digital assets and
managing the information security program to ensure information
assets and technologies are adequately protected.
The Director of Information Security is responsible for overseeing
Identity and Access Management (IAM), Security Operations, Risk and
Compliance, Consulting and Awareness, and Privacy programs. They
work closely with program and project managers, Quality Assurance,
Enterprise Applications, and Customer experience team members to
ensure security compliance with project needs.
The Director of Information Security is an innovative,
collaborative, and creative problem-solver who understands the
value of a security program as an enabler for organizational
success. This role requires a person who can communicate security
and risk management concepts clearly to a diverse set of
constituents including senior executives.
The ideal candidate will be experienced in implementing practical
security programs that are forward thinking and able to incorporate
emerging digital technologies. They will act as a champion and
change agent in leading the organizational changes needed to secure
our environments, build resilience, and add value to the user
experience. They must be adaptable and comfortable in an
environment that thrives on innovation, flexibility and creativity
and ensure that the university is developing the digital assets and
capabilities that will be needed to survive and thrive in the
midterm and long term.
Coordinate, measure, and report on the technical aspects of
Lead security projects and provide expert guidance on security
matters for other IT projects.
- Assumes responsibility for planning, design, and implementation
of the information security program, risk and compliance, and
identity and access management
- Balances equally the challenges that weigh on the business and
the user, recognizing and communicating how each impacts risk,
usability, and user experience
- Initiates communication with members of other departments and
other members of development to ensure effective
- Meets with project leadership, and other stakeholders to
present and build support and agreement around their technical
- Assists in the strategy through estimation exercises, staffing
requests, and/or presentations
- Strong debugging and problem-solving skills
- Ability to work in a highly collaborative, team-based
- Effectively prioritize workload to meet deadlines and work
objectives. Uses resources effectively and efficiently. Is reliable
in work habits. Able to organize and self-direct execution of
- Manage outsourced vendors that provide information security
functions for compliance with contracted service-level
- Manages and provides ongoing coaching and mentoring to OIS
- Acts as the organizational change agent for improving OIS's
maturity and practices, in support of ITS and University goals and
- Sets and accomplishes challenging goals
- Develops plans that meet the architecture/technology needs of
the organization, incorporating business priorities, strategies,
goals, emerging technologies, industry trends and economic
Excellent oral and written communication skills. These skills
will be used to explain security concepts and technologies to
business leaders, and business concepts to technologists; and to
sell ideas and processes internally at all levels.
A strong understanding of the business impact of security
tools, technologies, and policies.
Experience with Identity and Access Management programs and
prior experience leading IAM teams.
- BS degree required in Computer Science, Information Systems,
Business, Management, or related field.
- Ten or more years of work experience, preferably in information
security or IT management and ideally a combination of the
- Five or more years of progressive leadership experience in
leading cross-functional teams and enterprise-wide programs,
operating and influencing, effectively across the organization and
within complex contexts
- Strong interpersonal skills. Ability to work across business
lines at senior levels to influence and effect change to achieve
- Demonstrated leadership. A proven track record of successfully
leading complex, multidisciplinary talent teams in new endeavors
and delivering solutions.
- Strategic technology planning experience. Experience in
strategic technology planning and execution, as well as policy
development and maintenance.
- Analytical skills. Outstanding analytical and problem-solving
- Ability to effectively guide and sustain people, process, and
technology change in a dynamic and complex operating
- Seriousness or presence ("gravitas") to develop a risk
management program, as well as to sell and embed it in all levels
of the business.
- Fearlessness in suggesting or backing big ideas. Tenacity in
focusing the information security process.
A criminal background check is required for this position.
This position is eligible to work from an alternate location.
Northeastern University is an equal opportunity employer, seeking
to recruit and support a broadly diverse community of faculty and
staff. Northeastern values and celebrates diversity in all its
forms and strives to foster an inclusive culture built on respect
that affirms inter-group relations and builds cohesion.
All qualified applicants are encouraged to apply and will receive
consideration for employment without regard to race, religion,
color, national origin, age, sex, sexual orientation, disability
status, or any other characteristic protected by applicable
To learn more about Northeastern University's commitment and
support of diversity and inclusion, please see
To apply, visit https://careers.pageuppeople.com/879/cw/en-us/job/508316