Chief Information Security Manager

2 months ago

Mesa, United States InterSources Full time
Chief Information Security Manager
Address: Mesa, AZ (Hybrid)
Full Time Position

Scope of Work:
The vCISO shall provide expert virtual cybersecurity services during normal business hours except in the event of a security incident or breach.
HCC seeks a fresh perspective on its security measures and protocols to not only improve its posture, but also to identify new risks and opportunities. The vCISO will also be responsible for leading HCC's efforts to address the nine (9) elements of the Gramm-Leach-Bliley Act (GLBA) for compliance purposes.
  • Perform a detailed cyber risk assessment that includes the following, but not limited to:
    • Identifying, estimating, and prioritizing information cyber security risks at college;
    • Examining HCC's current technology, security controls, policies, and procedures to assess potential threats or attacks; and
    • Evaluating HCC's threat landscape, vulnerabilities, and cyber gaps that pose a risk to its assets.
  • Act as HCC's Qualified Individual (QI) to present quarterly reports to HCC Board of Trustees and leadership as required and specified by GLBA.
  • Develop an information security program using a framework such as National Institute of Standards and Technology (NIST) 800-53, Center of Internet Security (CIS) Critical
  • Security Controls, or CIS Implementation Group 1 (IG1) that protects HCC in accordance with GLBA security requirements.
  • Provide information security leadership, communication, investigation, mitigation, containment and post-incident analysis in the event of a cyber incident.
  • Update and enhance existing cybersecurity policies and procedures as required by GLBA.
The policies include but not limited to:
  • Vulnerability management
  • Data management
  • Incidence response
  • Software management
  • Hardware asset management
  • Provide guidance when analyzing real-time threat analysis identified by HCC's security operations center.
  • Perform third-party and partner evaluations Higher Education Community Vendor Assessment Toolkit (HECVAT).
  • Develop and implement the strategy to conduct regular security audits and assessments to identify vulnerabilities and ensure compliance with security policies.
  • Write a clear and concise incident response plan that meets industry standards.
CYBERSECURITY INCIDENT OR BREACH
In the event of a cybersecurity incident or breach, the vCISO will:
  • Notify HCC within twenty-four (24) hours of the discovery of an incident or breach by telephone and in accordance with the agreed upon incident response plan unless a shorter notice time is required by law.
  • Implement the incident response plan, ensuring that all relevant teams are mobilized and aware of their roles and responsibilities.
  • Oversee the initial assessment to understand the scope and impact of the incident or breach.
  • Coordinate with internal stakeholders, including senior management and the board of directors, to keep them informed about the incident or breach and the steps being taken to address it.
  • Lead the investigation to determine the cause of the incident or breach, how it occurred, and what data or systems were affected.
  • Oversee the remediation efforts to fix vulnerabilities and restore affected systems.
  • Ensure that all actions taken during the incident or breach response are thoroughly documented.
  • Conduct a post-incident review to evaluate the response and identify lessons learned.
  • Provide a full written report of the incident, nature of the breach, compromised information, and correction actions taken to prevent future incidents or breaches.
All devices and equipment necessary to perform duties under this contract will be provided by HCC.

EDUCATION
At a minimum, the Contractor must possess a bachelor's degree in cybersecurity, computer science, information technology, or a related field from an accredited higher education institution in the United States. A master's degree is preferred.

EXPERIENCE
  • IT Security: The Contractor must possess at least 7-10 years of experience in IT security-related roles such as security analyst, network administrator, or similar positions.
  • Leadership: The Contractor must possess experience in management or leadership roles as CISOs need to lead teams and make strategic decisions.
CERTIFICATION(S)
The Contractor must possess at least one of the following related certifications:
  • Certified Information Systems Security Professional (CISSP)
  • Certified Information Security Manager (CISM)
  • Certified Information Systems Auditor (CISA)
KNOWLEDGE & SKILLS
  • Technical Skills: Demonstrates a deep understanding of information security principles, practices, and technologies.
  • Leadership and Communication: Possess strong leadership, communication, and strategic planning skills are essential.
  • Compliance and Risk Management: Possess knowledge of regulatory requirements and risk management practices.

Skill Matrix:
  1. Technical Expertise:
Knowledge of Security Frameworks: Demonstrate an understanding and application of industry-standard security frameworks, such as the National Institute of Standards and Technology (NIST) 800-53, Center of Internet Security (CIS) Critical Security Controls, and CIS Implementation Group 1
(IG1).
Cybersecurity Technologies: Demonstrate familiarity with current security technologies, especially any commonly used technologies in higher education.
Threat Intelligence and Incident Response: Demonstrate experience in threat detection, vulnerability/risk assessments, and incident response.
  1. Experience & Qualifications:
Education: Possess a bachelor's degree or higher in cybersecurity, computer science, information technology, or a related field from an accredited higher education institution in the United States.
Experience: Demonstrate years of experience providing CISO-level services, specifically virtual or remote services. Prove the ability to convey complex security concepts to non-technical stakeholders. Demonstrate leadership experience, especially in advising executive teams and boards on cybersecurity.
Certifications: Demonstrate relevant professional certifications such as CISSP, CISM, or CISA to validate skills and knowledge.
  1. Compliance & Risk Management:
Demonstrate knowledge of regulatory requirements and risk management practices.

About Us:

InterSources Inc. is a Small, Woman, and Minority-Owned Business Enterprise, ISO/IEC 27001, SOC 2 Type 2 certified company with massive 18+ years of diversified experience in providing IT Consulting Services, Artificial Intelligence, Data Analysis, Application Development, Cloud Services, Cybersecurity, Digital Marketing, ERP Management, Custom Software Development, Web Development, UI/ UX Design, System Integration, QA Support etc. We make reasonable accommodations for clients and employees, and we do not discriminate based on any protected attribute including race, religion, color, national origin, gender sexual orientation, gender identity, age, or marital status. We also are a Google Cloud and Oracle partner company.

  • Chief Information Technology Officer

    6 days ago

    Costa Mesa, United States CLevelCrossing Full time

    DefinitionSummary:Plans, organizes, and provides strategic direction and control of information technology and integration of systems that support data communications, storage and retrieval, and financial transactions for the academic and business needs of the District. Provides vision and leadership for the strategic planning, development, implementation,...

  • Information Security Specialist

    2 weeks ago

    Mesa, United States Versaterm Full time

    The Company For more than 40 years, Versaterm Public Safety has defined the future of public safety software, delivering success to agencies, large and small, with an end-to-end ecosystem of solutions from community engagement to case closure. Versaterm's dedication to public safety is demonstrated by an unwavering commitment to customer satisfaction,...

  • Cyber Security Cloud Engineer

    6 days ago

    Costa Mesa, United States Hoag Health System Full time

    Salary Range: $60.90 - $93.62/hour. Actual compensation may vary based on geographic location, work experience, skill level, and education.Job SummaryThe Cyber Security Cloud Engineer is responsible for ensuring the confidentiality, integrity, and availability of company-wide information and security technologies. Provides input for architecting,...

  • Senior Information Security Engineer

    3 days ago

    Mesa, United States Stratford Solutions Inc. Full time

    Job Title: Senior Information Security Engineer (who can build from the scratch) Location: Mesa, AZ Job Type:Contract Work schedule:Normal business hour Monday to Friday Duration: 12 Months Pay Rate: $70-$80 per hour Position Overview: We are looking for Senior Information Security Engineer who will be responsible for building, design, installation,...

  • Senior Information Security Engineer

    1 week ago

    Mesa, United States Stratford Solutions Inc. Full time

    Job DescriptionJob DescriptionJob Title: Senior Information Security Engineer (who can build from the scratch)Location: Mesa, AZJob Type: ContractWork schedule: Normal business hour Monday to FridayDuration: 12 MonthsPay Rate: $70-$80 per hourPosition Overview:We are looking for Senior Information Security Engineer who will be responsible for building,...

  • Senior Information Security Analyst

    5 hours ago

    Costa Mesa, United States Goodman Masson Full time

    SOC Cybersecurity Analyst IIILocation: On-site – Costa Mesa, CAType: 6-Month Contract-to-Hire (24/7 Operations)Goodman Masson is working with a leading Managed Services Provider (MSP) looking for a SOC Cybersecurity Analyst III to join their security operations team. This is an exciting opportunity for an experienced cybersecurity professional to lead...

  • Senior Information Security Analyst

    9 hours ago

    Costa Mesa, United States Goodman Masson Full time

    SOC Cybersecurity Analyst IIILocation: On-site – Costa Mesa, CAType: 6-Month Contract-to-Hire (24/7 Operations)Goodman Masson is working with a leading Managed Services Provider (MSP) looking for a SOC Cybersecurity Analyst III to join their security operations team. This is an exciting opportunity for an experienced cybersecurity professional to lead...

  • Chief Medical Officer

    2 weeks ago

    Mesa, United States HonorHealth Full time

    Overview:If you are considering sending an application, make sure to hit the apply button below after reading through the entire description.Looking to be part of something more meaningful? At HonorHealth, you’ll be part of a team, creating a multi-dimensional care experience for our patients. You’ll have opportunities to make a difference. From our...

  • Chief Medical Officer

    6 days ago

    Mesa, United States Association of Clinicians for the Underserved Full time

    OverviewLooking to be part of something more meaningful? At HonorHealth, you’ll be part of a team, creating a multi-dimensional care experience for our patients. You’ll have opportunities to make a difference. From our Ambassador Movement to our robust training and development programs, you can select where and how you want to make an impact.HonorHealth...

  • Chief Medical Officer

    7 days ago

    Mesa, United States HonorHealth Full time

    OverviewLooking to be part of something more meaningful? At HonorHealth, you’ll be part of a team, creating a multi-dimensional care experience for our patients. You’ll have opportunities to make a difference. From our Ambassador Movement to our robust training and development programs, you can select where and how you want to make an impact.HonorHealth...

  • Chief Psychiatrist Medical Director Lead

    18 hours ago

    Mesa, Arizona, United States FCS, Inc. Full time

    Career Opportunity for a Chief Psychiatrist at FCS, Inc.Mesa AZ As the leader of psychiatric and addiction clinical practices, you will oversee behavioral health services. Responsibilities include establishing clinical standards, managing teams, and ensuring quality care. Required qualifications: board certification in psychiatry with an active Arizona...

  • Chief Financial Officer Candidate

    3 weeks ago

    Mesa, Arizona, United States Jobot Full time

    As the Chief Financial Officer (CFO) candidate, you will partner with our leadership team to provide financial insights and support strategic planning.Qualifications:In-depth knowledge of GAAP, financial reporting, and accounting systems.Experience with financial modeling, budgeting, forecasting, and performance management.An estimated salary for this role...

  • Boeing Skillbridge Information Technology

    5 days ago

    Mesa, United States Boeing Full time

    Boeing Skillbridge Information Technology - Cyber Security - Military Internship Company: Job ID: 00000238597 Date Posted: 2024-07-01 Location: USA - Albuquerque, NM, USA - Colorado Springs, CO, USA - El Segundo, CA, USA - Hazelwood, MO, USA - Huntsville, AL, USA - Jacksonville, FL, USA - Mesa, AZ, USA - New Orleans, LA, USA - Oklahoma City, OK, USA - Ridley...

  • Chief Operations Coordinator

    1 day ago

    Costa Mesa, California, United States Career Group Full time

    Job SummaryWe are seeking a highly organized and proactive individual to fill the role of Chief Operations Coordinator. As an Executive Assistant, you will provide critical support to our Chief Revenue Officer and other senior leadership, ensuring seamless execution of tasks and projects.Your key responsibilities will include managing calendars, scheduling...

  • Security Account Manager Position

    3 days ago

    Mesa, Arizona, United States Allied Universal Full time

    As a Security Account Manager at Allied Universal, you will oversee day-to-day operations of assigned accounts. With a strong focus on customer service and employee development, you will build relationships with clients and staff to drive business success.A four-year degree in Criminal Justice, Business Administration, or related field is required, along...

  • Human Resource Information System Manager

    3 weeks ago

    Mesa, United States Verra Mobility Full time

    Who we areVerra Mobility is a global leader in smart mobility. We develop technology-enabled solutions that help the world move safely and easily. We are fostering the development of safe cities, working with police departments and municipalities to install over 4,000 red-light, speed, and school bus stop arm safety cameras across North America. We are also...

  • Human Resource Information System Manager

    2 weeks ago

    Mesa, United States Verra Mobility Full time

    Who we areVerra Mobility is a global leader in smart mobility. We develop technology-enabled solutions that help the world move safely and easily. We are fostering the development of safe cities, working with police departments and municipalities to install over 4,000 red-light, speed, and school bus stop arm safety cameras across North America. We are also...

  • Program Manager, Security Department

    7 days ago

    Costa Mesa, United States Tbwa ChiatDay Inc Full time

    Anduril Industries is a defense technology company with a mission to transform U.S. and allied military capabilities with advanced technology. By bringing the expertise, technology, and business model of the 21st century’s most innovative companies to the defense industry, Anduril is changing how military systems are designed, built and sold. Anduril’s...

  • Survey Party Chief

    6 days ago

    Mesa, United States Ardurra Full time

    Ardurra is seeking a Survey Party Chief to join our staff in Mesa, AZ. This is a full-time position requiring at least 3 years of survey field experience, a good attitude, and the ability to work with a team. Primary Function The survey party chief supervises the work performed by surveying groups in the field. Must have knowledge of, experience with, and be...

  • Area Chief of Staff

    7 days ago

    Mesa, United States Banfield Pet Hospital Full time

    Opening StatementSUMMARY OF JOB PURPOSE AND FUNCTION The primary purpose and function of the Area Chief of Staff is to lead, develop and manage associate veterinarians in their hospitals to ensure Banfield can attract, develop, engage and retain doctors that will deliver quality care and meet expected hospital performance measures. This position drives the...