We are currently recruiting a
Chief Information Security Officer in the Washington D.C. area for our client, a student-centered research institution with highly ranked schools and colleges with a reputation for creating meaningful change in the world.
About the Position: The Chief Information Security Officer (CISO) is responsible for developing, implementing, and maintaining the information security and digital privacy program and associated strategies to support the community, improve posture and ensure compliance. The CISO oversees the development of strategy, architecture and implementation to meet the objectives developed under these plans. The CISO will also help to establish and lead information security and digital privacy awareness and education programs and promote a security conscious culture and infrastructure.
This is a direct hire,
hybrid position (1 day in office per month) in
Washington D.C. This position is
full-time. This position works 35 hours per week Monday through Friday with a one-hour lunch break
This position reports to the Vice President and Chief Information Officer.
Key Responsibilities: - Protect and Defend Infrastructure, Systems, and Data. Respond and Report Security Incidents or Risks: (1) Manage incident response and recovery efforts, working to minimize the impact of security breaches and ensuring timely resolution. (2) Oversee the procurement and management of security technologies, tools, and solutions. (3) Provide regular updates and reports to senior leadership, the Board of Trustees, and other relevant stakeholders on the state of cybersecurity.
- Design and Implement Information Security, Digital Privacy and IT Compliance Strategy: (1) Develop and execute a comprehensive information security strategy to protect data, systems, networks and the community itself. (2) Foster a culture of security and digital privacy awareness and responsibility throughout the community through training and education initiatives. (3) Develop, implement and increase adoption of and compliance with security and digital privacy policies, standards, and procedures across the. (4) Ensure compliance with relevant data protection regulations, such as FERPA, PCI, GLBA, GDPR, etc., and manage security audits and assessments. (5) Conduct regular risk assessments, vulnerability assessments, and penetration testing to identify and address security weaknesses. (6) Collaborate with various departments and stakeholders to ensure security requirements are integrated into all aspects of the operations, including research, teaching, and administration.
- Monitor Information Security Landscape and Maintain Technical Currency through Professional Development: Stay informed about emerging threats, vulnerabilities, and industry trends, and adapt the security measures accordingly.
- Direct, Supervise, and Support the Information Security Team: Lead a team of cybersecurity professionals, providing guidance, mentorship, and overseeing day-to-day security operations.
- Support and Advise Risk Management, Legal, & Police Investigations: (1) Collaborate, advise, and support the annual cyber-insurance renewal process.(2) Advise, facilitate, and strategize General Counsel's needs with regard to legal matters. (3) Support and partner in police investigations.
- Reporting directly to this position will be the Director of Cyber Policy and the Director of Information Security, along with their three indirect reports.
- This position is expected to be on call and available to work remotely to address emergency IT issues, during unplanned closures or weather emergencies.
- After-hours availability: The position must be readily available outside of business hours and days to respond to emergencies and critical or time-sensitive security incidents. Potential for frequent interrupted nights and weekends
Required Qualifications: - Bachelor's degree or equivalent.
- 10+ years of relevant experience.
- Professional certifications, such as CISSP, CISM, or CISA, or willingness to attain within one year of hire.
- Knowledge of relevant laws, regulations, and standards, including FERPA, HIPAA, GLBA, PCI, etc.
- Exceptional leadership, communication, and interpersonal skills.
- Proven track record in developing and implementing effective security strategies.
Preferred Skills: - Master's degree or equivalent.
- 10+ years of relevant experience.
- Experience working in an academic or educational institution is a plus.
Salary Range: $225,000-$250,000/yr negotiable depending on experience, plus benefits.
About Us: Since our founding in 1988, Maslow Media Group has become the Workforce Solutions leader in Media and IT (Intelligent Quality Solutions/IQS) verticals, aiding fortune 100 corporations, financial institutions, government agencies, technology, and broadcasting organizations. As an Employer of Record (EOR) in all 50 states, MMG can hire, train, recruit, and employ the talent required to ensure our client's meet their corporate growth goals.
We pride ourselves on the ability to quickly evolve and respond to shifting market conditions by creating scalable, predictable, high-quality solutions. For more information, visit us at:
and