Job Title: IT Security Lead

Reporting To: Chief Information Officer (CIO)

Job Summary: The IT Security Lead will be responsible for overseeing all aspects of IT security at Taylor's University, including infrastructure and application security. This role involves working closely with the CIO, Operations managers, Application managers, and other stakeholders to develop and implement comprehensive security strategies to protect university assets and data from cyber threats.

Key Responsibilities:

1. Security Strategy: Develop and implement comprehensive IT security strategies, policies, and procedures to safeguard university assets and data from cyber threats.
2. Infrastructure Security: Assess and enhance the security of university network infrastructure, servers, endpoints, and other IT systems to prevent unauthorized access and data breaches.
3. Application Security: Ensure that university applications are designed, developed, and maintained with security best practices in mind to mitigate vulnerabilities and protect against cyber attacks.
4. Risk Management: Identify, assess, and prioritize security risks and vulnerabilities across university IT systems, and develop mitigation plans to address them.
5. Incident Response: Develop and maintain incident response plans and procedures to effectively respond to and mitigate security incidents, breaches, and threats.
6. Security Awareness: Raise awareness of IT security best practices among university staff and students through training, workshops, and awareness campaigns.
7. Compliance: Ensure that university IT systems and processes comply with relevant regulatory requirements, industry standards, and best practices for IT security.
8. Security Monitoring: Implement and maintain security monitoring tools and systems to detect and respond to security threats and suspicious activities in real-time.
9. Security Audits: Conduct regular security audits, assessments, and penetration tests to identify security weaknesses and vulnerabilities, and implement remediation measures as needed.
10. Vendor Management: Manage relationships with third-party vendors and service providers to ensure that security requirements are met and risks are adequately addressed.
11. Security Governance: Establish and maintain security governance frameworks, committees, and structures to oversee and manage IT security initiatives effectively.
12. Documentation: Maintain comprehensive documentation of IT security policies, procedures, standards, and guidelines, and ensure that they are regularly reviewed and updated.

Qualifications:

• Bachelor's degree in Computer Science, Information Security, or a related field.
• Professional certifications in IT security, such as CISSP, CISM, CISA, or equivalent.
• Proven experience in IT security management, with at least 3 years of experience in a leadership role.
• In-depth knowledge of IT security principles, practices, technologies, and standards.
• Strong understanding of network security, endpoint security, cloud security, and application security concepts.
• Excellent communication, leadership, and interpersonal skills.
• Ability to work effectively in a collaborative team environment and interact with stakeholders at all levels.
• Experience in higher education or academic environments is a plus.