This position will be responsible for designing and implementing an overall risk management process for the organization by providing hands-on development of risk models involving reputational, financial, and operational risk, and ensuring controls are operating effectively. A successful candidate will have excellent quantitative and analytical skills, the ability to apply those skills across a variety of business processes and be effective at communicating information security protection needs to business units and leadership.
Candidate must have demonstrated experience assessing the adequacy of application/data security controls per regulatory and standard compliance areas within the University (e.g. PCI-DSS, HIPAA, FERPA, NERC-CIP, FISMA). Candidate needs excellent verbal and written communication skills with the ability to understand business goals and requirements.
This position will require an innovative, critical thinker with a strong aptitude for problem solving and the ability to complete time-sensitive deliverables under pressure and across multiple roles and hierarchies.
MSU Information Technology provides the primary leadership for strategic, financial, and policy initiatives affecting information technology (IT) across MSU. MSU IT offers technology resources that support MSU’s mission of providing education, conducting research, and advancing engagement.
Unit Specific Education/Experience/Skills
Knowledge equivalent to that which normally would be acquired by completing a four-year college degree program in Computer Science, Information Systems, Business or related information technology field, with coursework in an information technology specialization related to the area of employment; and five to eight years of related and progressively more responsible or expansive work experience in an information technology area related to the duties to be performed, including experience overseeing large, complex or critical information technology projects; demonstrated experience in identifying, assessing, measuring and monitoring information technology risk by performing independent hands-on assessments or a related role requiring analysis, prioritization, and problem solving; or an equivalent combination of education and experience.
Broad knowledge of industry best practices and commercial trends in the field of Information Security and Risk Management.
Additional industry-recognized certifications such as:
Certified in Risk and Information Systems Control (CRISC)
Certified Information Systems Security Professional (CISSP)
Certified Information Systems Auditor (CISA)
Certified Information Systems Manager (CISM)
Experience in developing and/or implementing an overall risk management strategy for new or existing services with key business stakeholders.
Experience in developing security awareness campaigns and training opportunities.
Knowledge of project management frameworks and use of project management tools.
Ability to understand broader business issues and effectively communicate using common collaboration tools for presentation and feedback.
Experience identifying and communicating recommended plans for disaster recovery and business continuity controls and control deficiencies for business units.
Demonstrated pursuit of excellence and mastery in the field of Information Assurance, such as publication in industry trade journals, continuing education in Information Assurance, active participation in trade associations, or speaking at conferences.
An accredited degree in one or more of the following subjects is preferred:
Business Management or Law
Finance or Economics
Science or Engineering
Required Application Materials
Resume, cover letter
Bidding eligibility ends 5/14/2019 at 11:55 PM
Internal Number: 575855
About Michigan State University
Spartans work every day to advance the common good in uncommon ways.Together, we tackle some of the world?s toughest problems to find solutions that make life better?from alternative energy to better food safety to breakthrough medical and environmental applications achieved through rare isotope research.We teach. We explore and we discover. We collaborate and lead. We innovate, inspire, and empower. We achieve our potential and create circumstances that help our students and others achieve theirs.We're good at it, and we've been at it for more than 150 years.The nation?s pioneer land-grant university, MSU began as a bold experiment that democratized higher education and helped bring science and innovation into everyday life. The revolutionary concept became a model for the nation.Today, MSU is one of the top research universities in the world?on one of the biggest, greenest campuses in the nation. Home to nationally ranked and recognized academic, residential college, and service-learning programs, we?re a diverse community of dedicated students and scholars, athletes and artists, scientists and leaders.In ways both practical and profound, we work to create a stronger, more sustainable, and more hopeful future for all.