Chief Information Security Officer

Location: Columbus State University

Full/Part Time: Full Time

Regular/Temporary: Regular

Great universities inspire the very best in us. They nurture new ideas, fresh perspectives, and creative problem-solving. They challenge students to discover their passions - and to turn those passions into thriving careers that improve our world.

Columbus State University is exactly that kind of place. With exceptional facilities, ideal class sizes, and unique field experiences, our students have room to create. Here, every faculty and staff member is part of the educational process, actively mentoring students and championing each new step in their journey.

Located just 100 miles southwest of Atlanta, CSU is part of the University System of Georgia and offers a variety of benefits to full-time benefits-eligible employees and some of our half-time (or more) employees. Benefits that may be elected could include health insurance, dental insurance, life insurance, Teachers Retirement System (or Optional Retirement Plan), as well as earned vacation time, sick leave, and 13 paid holidays (if applicable). Also, our full-time employees who have been employed with us successfully for more than 6 months can be considered for the Tuition Assistance Program. Consider applying with us today!

Department Information

University Information and Technology Services (UITS)

Job Summary

The Chief Information Security Officer (CISO) provides strategic leadership for Columbus State University's information security program, ensuring the confidentiality, integrity, and availability of institutional data and technology systems. Reporting to the Chief Information Officer, the CISO is a member of the UITS leadership team and serves a key role in University leadership. The CISO works closely with administration, academic leaders, faculty, staff, students, and the campus community to develop and deliver a comprehensive information security strategy aligned with the University System of Georgia (USG) IT Handbook and applicable state and federal regulations. The position leads governance, policy, compliance, risk management, incident response, and security awareness functions for the institution.

Responsibilities

Significant Duties & Responsibilities include: Strategic Security Leadership and Program Management (25%) - Provide strategic leadership for the University's information security program, including the development and execution of a multi-year security roadmap aligned with institutional priorities and the USG IT Handbook. Establish annual and long-range security goals, define strategy, develop maturity models, and create reporting metrics for continuous program improvement. Mentor security team members, advise the CIO and University Executive Leadership, and represent the University on committees and boards within USG and external consortia. Stay current on information security trends, regulatory developments, and threat landscape changes affecting higher education.;

Policy, Compliance, and Audit Coordination (20%) - Lead the development, implementation, and ongoing maintenance of information security policies, standards, and procedures consistent with the USG IT Handbook, FERPA, GLBA (including the FTC Safeguards Rule), HIPAA, FISMA, PCI DSS, NIST 800-171 and CMMC where applicable, and GDPR. Coordinate IT and security audits, including scope definition, stakeholder engagement, timelines, and findings remediation. Partner with University Internal Audit, USG Cybersecurity, the Board of Regents Office of Internal Audit, the Compliance Office, and external assessors. Manage Georgia Open Records Act (GORA) requests in coordination with University Legal, USG Legal Affairs, and Human Resources, including document retrieval and review for legal privilege and confidentiality.;

Risk Management and Incident Response (25%) - Develop, implement, and administer technical security standards and a portfolio of security services and tools to identify, mitigate, and monitor information security risk. Serve as the primary point of contact during significant security incidents, convene the Security Incident Response Team (SIRT), and lead breach response and notification activities in coordination with University Legal, USG Cybersecurity, Risk Management, and the Compliance Office. Evaluate the security implications of new technologies and establish review processes to ensure compliance with University standards. Maintain the institution's incident response, business continuity, and disaster recovery plans for information security functions.;

Governance and Stakeholder Engagement (15%) - Manage institution-wide information security governance, chair the Information Security Governance Committee, and lead the UITS Information Security Team in establishing program priorities. Build and maintain relationships with academic and administrative leaders, deans, faculty, staff, and students. Provide guidance to the CIO and Executive Leadership Team on resource investments, technology decisions, and organizational risk posture. Engage with USG Cybersecurity, peer institutions, and regional and national consortia to share information and align practices.;

Outreach, Education, and Training (15%) - Develop and deliver an enterprise security awareness, education, and training program for faculty, staff, students, and student employees. Advise operating units on security best practices, vulnerabilities, and emerging threats. Partner with academic units to support secure research environments, with student organizations to build a culture of security, and with external partners to advance community awareness around identity protection, mobile device security, and online safety.

Required Qualifications

Required Qualifications include: Bachelor's degree in information security, computer science, information systems, or a related field required.; Minimum of five years of progressively responsible experience in information security, with at least two years in a supervisory or management capacity.; Experience securing enterprise systems and infrastructure required.; Industry-recognized security certification such as CISSP, CISM, or GIAC GSEC required.

Preferred Qualifications

Preferred Qualifications include: Master's Degree preferred.; Higher education experience strongly preferred.; Experience with USG, public sector, or other regulated environments is highly desirable.; Familiarity with Microsoft 365 security tooling, identity platforms, and cloud security frameworks preferred.

Proposed Salary

The proposed annualized salary range for this position is $111,068 - $123,451 and includes full benefits.

Knowledge, Skills, & Abilities

Knowledge, Skills, & Abilities include: Demonstrated knowledge of information security principles, frameworks, and best practices including the NIST Cybersecurity Framework, NIST 800-53, NIST 800-171, ISO 27001, and CIS Controls.; Strong understanding of higher education compliance requirements including FERPA, GLBA and the FTC Safeguards Rule, HIPAA, FISMA, PCI DSS, GDPR, and applicable USG and Board of Regents policies.; Experience leading security operations including vulnerability management, threat detection, identity and access management, security architecture, and cloud security in Microsoft 365 and comparable enterprise environments.; Proven ability to lead and respond to security incidents, including breach notification, forensic coordination, and stakeholder communication under time-sensitive conditions.; Strong leadership and supervisory skills with the ability to build, develop, and mentor technical security staff and student assistants.; Excellent communication skills with the ability to translate complex security concepts for technical and non-technical audiences and to brief executive leadership and governance bodies.; Demonstrated ability to develop and execute information security strategy, governance structures, and policy frameworks across a complex, decentralized organization.; Familiarity with audit and risk management processes, control assessments, and regulatory examinations.; Knowledge of project management practices and the ability to manage multiple concurrent initiatives with competing priorities and deadlines.; Ability to maintain strict confidentiality regarding sensitive institutional, student, employee, and financial data.; Ability to work collaboratively with diverse constituencies including faculty, staff, students, vendors, USG partners, law enforcement, and external auditors.; This position requires the ability to sit for extended periods, use a computer, and occasionally lift materials up to 15 pounds.; Occasional travel to other USG institutions, system office meetings, conferences, and professional development events is required.; The CISO must be available for after-hours response during active security incidents.

Contact Information

If you have any questions, please contact Cole Maddox, Hiring Manager, via email at ***email_hidden***.

USG Core Values

The University System of Georgia is comprised of our 25 institutions of higher education and learning as well as the System Office. Our USG Statement of Core Values are Integrity, Excellence, Accountability, and Respect. These values serve as the foundation for all that we do as an organization, and each USG community member is responsible for demonstrating and upholding these standards. More details on the USG Statement of Core Values and Code of Conduct are available in USG Board Policy 8.2.18.1.2 and can be found on-line at

Additionally, USG supports Freedom of Expression as stated in Board Policy 6.5 Freedom of Expression and Academic Freedom found on-line at

Institutional Values

• Excellence: Actively engaging outstanding methods in teaching, academic discovery, creative pursuits, student success, cultural enrichment and the overall campus community.
• Creativity: Pursuing distinction through inquiry and innovation, challenging convention and focusing on solutions.
• Engagement: Dynamic civic involvement and participation of students, faculty, staff and alumni in the university experience.
• Sustainability: Advancing fiscal responsibility, well-being, innovation, lifelong learning and environmental stewardship.
• Inclusion: Cultivating and championing a campus environment that welcomes diverse backgrounds, ideas, perspectives and practices.
• Servant Leadership: Leading through ethical empowerment and service.

Conditions of Employment

Requirements

All selected candidates are required to submit and successfully pass a background investigation to include reference checks and verification of academic credentials (if applicable). Other additional requirements may be required based upon specific position duties:

• A credit check completed for Positions of Trust and or approved departmental Purchase Card usage;
• Pre-employment drug testing for positions with high-risk responsibilities.
• Motor vehicle reports are required for positions that are required to drive a Columbus State University fleet vehicle or other vehicle designated as a fleet vehicle. A successful drug screening will be required as a condition of employment a randomly thereafter.

*Applicants for positions of trust may be asked to disclose criminal record history during the initial screening process and prior to a conditional offer of employment. *

For Faculty Hires: Final candidates will be required to provide proof of completed academic degree(s) as well as post-secondary coursework in the form of original transcript(s). Those candidates trained by a foreign institution will also be required to provide an educational/credential evaluation.

All employees are responsible for ensuring the confidentiality, availability, and integrity of sensitive information by exercising sound judgment and adhering to cybersecurity and privacy policies during their employment and beyond. Additionally, all members of the USG community must adhere to the USG Statement of Core Values must also be aware of and comply with the Board of Regents policies on Freedom of Expression and Academic Freedom.

Equal Employment Opportunity

Columbus State University is proud to be an equal employment, equal access, and equal educational opportunity institution. It is the policy of our institution to recruit, hire, train, promote and educate persons without regard to race, color, national or ethnical origin, age, disability, gender, religion, sexual orientation, gender identity or veteran status as required by applicable state and federal laws.

Other Information

This is a supervisory position.

This position does not have any financial responsibilities.

This position will not be required to drive.

This role is considered a position of trust.

This position does not require a purchasing card (P-Card).

This position will not travel

This position does not require security clearance.

Background Check

• Position of Trust + Education

Special Applicant Instructions

Visit Columbus State University's online Careers portal to drive your career with us! The online applicant system provides you with the ability to review job opportunities and apply to those that you are interested in and feel qualified for. Each job posting has a summary description of the position and required qualifications. All job applications must be submitted through the online portal system.

To apply, visit

Copyright 2025 Jobelephant.com Inc. All rights reserved.

Posted by the FREE value-added recruitment advertising agency

jeid-247aacc117376a429b0437797a2db2cc