Deputy Information Security Officer and Director, Cybersecurity

Arizona State University


EducationBachelor’s Degree
SkillsDriving Experience
Project Management
Leadership Experience
Deputy Information Security Officer and Director, Cybersecurity Strategy and Assurance


Campus: Tempe

Job Description

Under direction of the Chief Information Security Officer and Deputy Chief Information Officer of the University Technology Office, provides technology vision, leadership and integrative management for the strategic and operational implementation of security information technology initiatives. The primary purpose of this role will be to align secure information technology with the University’s business strategies by integrating and enabling processes with the appropriate technologies, cybersecurity strategy and assurance and security requirements. This position is responsible for all aspects of developing, managing and implementing the information security program elements within the University Technology Office and across the university.

Salary Range

Depends on experience

Close Date


Essential Duties

Provide security-focused direction on all information technology related issues
Build and manage an information security team and provide visible leadership for internal and external technology customers
Promote the University’s use of technology to improve operations, productivity, efficiency, effectiveness and service delivery with a requisite level of security.
Advance the achievement of the University’s goals, initiatives and objectives by assisting University leadership in recognizing where IT can add value in protecting university assets and information resources while transforming or supporting program operations
Advise the CISO and other department officials on new and emerging technologies in the areas of communication, information technology and systems development that may benefit the University
Lead teams responsible for critical information security processes including, Incident Response, Vulnerability Management, annual university wide Risk Assessment, and Information Security communication and awareness
Initiate and advocate system enhancements and changes to support the University’s initiatives, including security-focused programs
Implement policies and safeguards to continually enhance the protection of the University’s information technology resources
Represent the CISO in meetings and discussions, and negotiate with other strategic leaders to challenge conventional approaches and develop new methods and systems that may benefit the University
Supervise directly, and through subordinate supervisors, Information Security staff
Oversee and participate in the hiring, training and evaluation of department staff including appropriate corrective actions
Oversee the continual enhancement of ASU’s technology architecture from a security perspective
Manage initiatives within the full Information Security Program including directly overseeing the evaluation, development and implementation of identity and access management programs
Confer with university officials, program directors, budget administrators and/or staff to make determinations for budget development, strategic planning, requests, and management analysis and accountability reports
Conduct and assist with the development of long- and short-range goals
Develop objectives and activities based on ASU and UTO goals
Develop, maintain, and implement UTO and ASU policies and procedures necessary to sustain the overall program
Represent UTO and serve on various department and university committees
Serve as a representative of the University at state, regional and national organiza¬tions, boards, councils, and committees as assigned
Perform special projects and other duties as assigned.
Minimum Qualifications

Bachelor’s degree in information Technology, or a related field and ten (10) years of experience in security information technology including 5 years of experience with identity management, and 5 years technology project management OR, Any equivalent combination of experience and/or education from which comparable knowledge, skills and abilities have been achieved.

Desired Qualifications

A minimum of 15 years of technology and business experience, with at least five years of executive technology experience driving change and growth in a highly regulated and/or technical setting
Experience in being a security technology leader with ability to generate, articulate and, ultimately, deliver a world-class security technology vision
A minimum of 5 years of responsibility for cloud-centric or managed service technology business decisions and a cloud-based technology vision, thought-leadership and delivery experience
Experience leading innovative and successful security solutions, including security, access and identity verification
Experience working in a complex environment including higher education
Experience in implementing security, identity and access management applications, policies, and procedures
Experience with remediation of security issues
Demonstrated knowledge of the principles and practices pertaining to identity management
Demonstrated working knowledge of technology architecture
Evidence of CISA certification
Evidence of CRISC certification
Evidence of CISM certification
Evidence of CISSP certification
Evidence of CCSP certification
Demonstrated knowledge of Enterprise Security Architecture standards (i.e. TOGAF) and practices, including the ability to translate customer business needs into security capabilities
Working experience with next generation architectures (private/public/hybrid Cloud, Containers, Hyper Converged Infrastructure)
Substantial people-centered leadership experience in a high growth organization
Evidence of effective verbal and written communication skills
Experience in giving and receiving open, constructive feedback in a way that fosters trust and respect
Experience working with leadership teams to ensure technology solutions meet enterprise objectives
Experience in maintaining involvement in technology decisions to ensure the integrity of security objectives
Demonstrated knowledge of budget management methods and techniques
Demonstrated knowledge of strategic planning principles and practices
Experience with principles, concepts, and practices of organizational management
Demonstrated skill in mid-to-upper level management with a strong record of achievement in performance management, performance measurement, performance auditing, budget formulation and execution and/or financial management
Experience in advancing and communicating IT initiatives and promoting solutions with customers and stakeholders.
Working Environment

Activities are performed in an environmentally controlled office setting subject to extended periods of sitting, keyboarding and manipulating a computer mouse
Required to stand for varying lengths of time and walk moderate distances to perform work
Frequent bending, reaching, lifting, pushing and pulling up to 25 pounds
Regular activities require ability to quickly change priorities, which may include and/or are subject to resolution of conflicts
Clearly communicate to perform essential functions
Regular use of standard office equipment including, but not limited to computer workstation/laptop (keyboard, monitor, mouse), printer, fax, calculator, copier, telephone and associated computer/technology peripherals.
Department Statement

The University Technology Office embraces its role as both an enabler and catalyst for advancing the vision and work of the New American University. We are a values-driven organization. Our commitments are reflected in all of the work we do in pursuit of operational excellence, the experience and delight of our community, and our strategic and innovation initiatives. Applicant must be eligible to work in the United States; ASU UTO will not be a sponsor for this position.

Job Type: Full-time


technology project management: 5 years (Preferred)
identity management: 5 years (Preferred)
security information technology: 10 years (Required)

Bachelor’s (Preferred)

To apply for this job please visit