Chief Information Security Officer

Chief Information Security Officer University of Central Florida – Department: UCF IT Information Security Office. Executive, full-time. Overview UCF sits on a mission to foster a conducive educational environment for faculty, staff, students and the broader community. This role leads the campus‑wide information security program, ensuring alignment with regulatory standards and industry best practices. The Opportunity The UCF IT Department within Facilities and Business Operations seeks a Chief Information Security Officer (CISO). The CISO will develop, implement, and oversee the university’s enterprise‑wide information security strategy, policies, and procedures. The position will also manage incident response, forensic investigations, risk management, compliance, and security awareness initiatives. Responsibilities Develop and implement the university’s enterprise‑wide security strategy, policies, and procedures. Align security initiatives with institutional goals such as digital transformation, research excellence, and compliance with FERPA, HIPAA, NIST, GLBA, and Florida state laws. Introduce modern security tools and capabilities, cultivate a skilled workforce, and stay ahead of emerging threats from nation‑state and criminal actors. Conduct regular risk and vulnerability assessments and audits to identify and mitigate threats. Partner with the Board of Trustees’ VP for Compliance and Risk and the Chief Audit Executive to ensure audit readiness. Oversee compliance with federal, state, and industry standards, and manage domain integrity, SSL certificate management, and posture management across cloud, on‑premises, and federated systems. Direct daily security operations, including SIEM, CASB, DLP, MFA, endpoint protection, and threat intelligence. Lead incident detection, response, and remediation efforts for cybersecurity events. Develop and maintain disaster recovery and business continuity plans tailored for a large R1 research institution. Design and deliver security awareness and training programs for faculty, staff, students, and researchers. Foster collaboration with distributed IT teams, academic departments, and research groups to embed security into operations. Provide leadership for the university’s network operations and ongoing modernization efforts. Develop and track performance metrics to ensure optimal network performance, reliability, and security. Oversee real‑time issue resolution and long‑term capacity planning. Advise the CIO, President, Provost, and Board of Trustees on emerging threats, risks, and mitigation strategies. Build partnerships with federal agencies (FBI, DHS, DoD), vendors, and higher‑education consortia to strengthen threat intelligence and response capabilities. Communicate technical risks in clear, actionable terms for non‑technical audiences. Supervise and mentor cybersecurity professionals, including managers and analysts. Manage budgets, staffing, and vendor relationships to maximize the impact of security investments. Safeguard research environments, including intellectual property, classified data, and collaborative platforms. Support secure high‑performance computing, AI/ML initiatives, and grant compliance. Enhance protections that advance UCF’s R1 research status. Minimum Qualifications Bachelor’s or Master’s degree and 12+ years of relevant experience with at least 5+ years of leadership experience. Equivalent combinations per Fla. Stat. 112.219(6) also acceptable. Preferred Qualifications Master’s degree or Doctorate in Information Security, Computer Science, Information Technology, or related discipline. 10+ years of progressive experience in information security leadership, including enterprise‑level strategic planning and operations. Professional certifications such as CISSP, CISM, CISA, CRISC, or equivalent. Experience working in higher education, research‑intensive (R1) institutions, or large complex organizations. Expertise in securing research data, intellectual property, and compliance with grant and funding agency requirements. Familiarity with advanced technologies, including AI/ML, cloud platforms, and high‑performance computing environments. Strong background in building partnerships with federal agencies (FBI, DHS, DoD) and higher‑education security consortia. Demonstrated success leading network modernization and security integration projects at scale. Strong knowledge of regulatory and compliance requirements such as FERPA, HIPAA, GLBA, NIST, and state/federal privacy laws. Demonstrated experience leading security operations, incident response, risk management, and governance programs. Proven ability to communicate complex technical risks and solutions to executives, governing boards, and non‑technical stakeholders. Experience managing budgets, vendor contracts, and cross‑functional teams. Effective leadership skills with experience supervising, mentoring, and developing security professionals. Special Instructions To The Applicants UCF has retained Storbeck Executive Search, a national executive search firm, to assist in this search. For best consideration, applicants should submit a cover letter and resume directly to: Steve Leo, Managing Director Vicki Henderson, Senior Associate UCFCISO@Storbecksearch.com Position requires a valid Class E driver’s license. It may involve driving to various locations on and off campus to conduct University business. Why Join UCF? As a next‑generation public research university and Forbes‑ranked top employer in Florida, UCF offers opportunities to connect, collaborate, and grow across 13 colleges and multiple campuses. You’ll work on complex projects that challenge and reward you beyond a paycheck. Benefits Health, dental, vision, life insurance, flexible spending, and employee assistance program Paid time off: annual, sick, and holidays Retirement savings options Employee discounts, including tickets to many Orlando attractions Education assistance More benefits—see UCF Employee Benefits Guide Employment Details Seniority Level: Executive Employment Type: Full‑time Job Function: Information Technology, Administrative, and Strategy/Planning Industries: Higher Education, Information Services, and Technology, Information and Media Work Schedule: Monday – Friday, 8:00 am – 5:00 pm Type of Appointment: Regular Expected Salary: $161,614.00 to Negotiable Job Posting End Date: 11‑20‑2025 As a Florida public university, the University of Central Florida makes all application materials and selection procedures available to the public upon request. UCF is proud to be a smoke‑free campus and an E‑Verify employer. If an accommodation due to a disability is needed to apply for this position, please call 407‑823‑1336 or email onac@ucf.edu. For general application or posting questions, please email talent@ucf.edu. #J-18808-Ljbffr