General Description/Primary Purpose
The Associate Director of Information Security provides leadership, technical direction, and day-to-day management for the Universitys information security program. Reporting to a Director or above, this role is primarily responsible for the tactical execution of the Universitys Information Security strategic plan, while also contributing to its ongoing development and evolution. The Associate Director ensures the protection of University information systems, data, and technology resources in support of administrative, academic, and research missions.
Job Function
Information Security Leadership and Program Execution
Provide leadership, coordination, and technical direction for the Universitys information security systems, services, and programs.
Execute and operationalize the Information Security strategic plan, translating strategy into measurable, day-to-day security initiatives and outcomes.
Contribute to the development, refinement, and maturation of the Universitys information security strategy, standards, and roadmaps.
Serve as a subject matter expert on information security risks, controls, and best practices within a higher education environment.
Security Operations and Risk Management
Direct and support security operations, including:
Incident response and cyberattack preparedness
Threat mitigation and vulnerability management
Risk assessments and compliance testing
Disaster recovery and cybersecurity training exercises
Implement and maintain security standards, audit processes, and monitoring capabilities to identify, assess, and remediate security risks.
Analyze existing security operations and recommend improvements to enhance protection, efficiency, and scalability of security services.
Team Leadership and Student-Led SOC Oversight
Lead, supervise, and mentor a team of security professionals, including security engineers, analysts, managers, and interns.
