Caltech is a world-renowned science and engineering institute that marshals some of the world's brightest minds and most innovative tools to address fundamental scientific questions. We thrive on finding and cultivating talented people who are passionate about what they do. Join us and be a part of the diverse Caltech community.
Job Summary The Chief Information Security Officer (CISO) directs the Information Security team and related policy efforts for Caltech. In addition to exhibiting organizational management skills, the successful candidate should exhibit strong Information Security operations skills that require extensive, expert-level, up-to-date technical knowledge of security and privacy technologies and best practices, and use of appropriate security controls, tools, and methods. Additionally, the role requires familiarity with evolving IT security and privacy legislation and related policy issues that are applicable to Tier 1 Higher Education research institutions. The role is expected to interact with and support campus leadership groups such as the Office of the General Council (OGC), Research Compliance, Audit, and the Caltech Board of Trustees (BoT) IT Security Working Group.
Manage Information Security budget
Supervise a staff of six (four Information Security operations staff and two Identity Management staff)
Develop and oversee new strategic Information Security initiatives
Oversee central firewall management service
Oversee identity and access management service
Provide an annual report to the IT Security Working Group of the Caltech Board of Trustees
Provide data preservation/hold order assistance for OGC and Research Compliance, including overseeing forensic imaging and analysis and production of files, assisting campus data custodians in preservation and production of materials, with the possibility of providing testimony or giving depositions in legal matters
Conduct security reviews of hosted applications proposed for use by campus
Oversee application security testing of in-house campus web applications
Advise on IT governance, IT-related policy, privacy, compliance matters
Oversee responses to IT audits against IMSS-run systems and services
Assist Audit Services and Institute Compliance upon request
Create and implement procedures for complying with IT policies and regulations
Assist with reviewing contractual language for site licensed software
Oversee account management for deceased personnel, including faculty. Preservation of materials for Caltech Archives
Participate in routine Information Security operations: analyze network traffic using netflow and pcap data, system logs, and intrusion detection tools. Block problem traffic, send and respond to alerts and/or investigate when suspicious activity is detected
Oversee and participate in handling of Information Security tickets and problem reports of all kinds
Communicate with users at all levels, including internal and external security personnel, system administrators and/or end users (faculty, students, staff, guests) about incidents and recommended recovery measures
7-10 years of full-time professional work experience in Information Security, including significant experience in computing systems security, network security, and security incident response and recovery
A working knowledge of current security aspects of multiple platforms, operating systems, applications, firewalls, network protocols, and secure application development practices
Related systems security experience and appropriate subject-area knowledge, including managing security services such as intrusion detection and network sensors, conducting application security assessments and/or penetration testing, and handling security incidents of all kinds
Excellent written and oral communication skill
Demonstrated organizational leadership
Advanced degree in an applicable field
Work experience as CISO, deputy CISO or equivalent
Experience with Tier 1 Higher Education institutions or research laboratories
6+ plus years of directly-related systems security experience and expertise, with a thorough knowledge of current security aspects of multiple platforms, operating systems, applications, firewalls, network protocols, and secure application development practices
Working knowledge of security issues and controls pertaining to cloud IaaS and PaaS platforms, including Microsoft Azure and Amazon
Cover Letter (optional)
EEO Statement We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to age, race, color, religion, sex, sexual orientation, gender identity, or national origin, disability status, protected veteran status, or any other characteristic protected by law.
We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, or any other characteristic protected by law.
Copyright 2017 Jobelephant.com Inc. All rights reserved.
The California Institute of Technology (Caltech) is a world-renowned science and engineering research and education institution, where extraordinary faculty and students seek answers to complex questions, discover new knowledge, lead innovation, and transform our future.