Bachelor's degreePreferred Education:
Master's degree in Cyber Security or IT Risk Management.Required Experience:
10 years' progressively responsible experience with complex technology security systems and issues. At least 5 years experience managing technical staff. Must be familiar with security compliance requirements, such as PCI, FERPA, HIPAA, Sarbanes-Oxley, and Gramm-Leach-Bliley.Preferred Experience:
Risk management and assessment in a not-for- profit environment. Experience outsourcing security program components. Chief Information Security Officer experience, or equivalent authoritative and collaborative security role. CISA, CISM or other security certification/accreditation or its equivalent.Required Skills, Knowledge and Abilities:
Demonstrated ability to influence key stakeholders, and successfully manage risk, change and innovation. Excellent organizational, communication, and problem solving skills. Proven ability to measure, report, and publicly communicate complex security decisions, situations, and impacts. Ability to work and effectively prioritize in a highly dynamic decentralized work environment. Demonstrated ability to deliver security solutions that meet organizational needs. Familiarity with ISO 27001 and NIST 800-53. • CISSP is requiredPreferred Skills, Knowledge and Abilities:
Experience communicating complex subjects to executives. Experience creating a security program, using a security framework. Demonstrated ability to create new models for virtual security teams that include stakeholder departments.