IT Computer Systems Manager Level 6 (Chief Information Security Officer) - Provisional

Company: City University of New York
Location: New York
Posted on: February 1, 2025

Job Description:

IT Computer Systems Manager Level 6 (Chief Information Security Officer) - ProvisionalGENERAL DUTIESI.T. Computer Systems Managers manage and direct an Information Technology area at a College or University level. They set policies and procedures, direct technical staff, and maintain responsibility for administrative as well as technical issues within their assigned area(s) of responsibility. They may manage major and/or large, complex information systems activities and/or manage a unit or group.This job is in CUNY's Classified Managerial Service.CONTRACT TITLEComputer Systems ManagerFLSAExemptCAMPUS SPECIFIC INFORMATIONAt Baruch College we believe that student success is everyone's responsibility. Baruch College is seeking a dynamic and visionary leader to serve as the Computer Systems Manager Level 6 (CSM6) within the Baruch Computing and Technology Center (BCTC). Reporting to the Vice President of Information Technology, the CSM6 will provide strategic direction and leadership in the development, implementation, and management of the College's information security program.In this role, the CSM6 will ensure the confidentiality, integrity, and availability of institutional information assets while maintaining compliance with applicable regulations and standards. As a senior leader, the CSM6 must possess a deep understanding of information security, risk management, and IT governance, with a proven ability to navigate the complexities of an academic environment.Key Responsibilities:

• Strategic Leadership and Governance

• Develop and implement a comprehensive information security strategy aligned with the college's mission and objectives.
• Establish and maintain an information security governance framework to define security policies, standards, and guidelines.
• Provide regular updates and recommendations to senior leadership on information security risks and compliance.
• Risk Management
  • Lead efforts to identify, assess, and mitigate information security risks across the institution.
  • Oversee vulnerability assessments, penetration testing, and incident response planning.
  • Manage third-party risk assessments to ensure vendor compliance with security requirements.
  • Operations and Incident Management
    • Develop and manage the college's incident response program, including detection, containment, and recovery from security breaches.
    • Collaborate with IT teams to ensure the secure configuration and operation of network infrastructure, applications, and systems.
    • Monitor and analyze security events using tools such as SIEM (Security Information and Event Management) platforms.
    • Compliance and Audit
      • Ensure compliance with relevant regulatory requirements (e.g., FERPA, HIPAA, GDPR, and CUNY-specific policies).
      • Prepare and lead internal and external audits related to information security.
      • Maintain documentation of security controls, incidents, and risk mitigation efforts.
      • Education and Awareness
        • Develop and deliver training programs to raise security awareness among faculty, staff, and students.
        • Foster a culture of cybersecurity accountability across the institution.
        • Team Management
          • Lead and mentor a team of security professionals, fostering collaboration and continuous improvement.
          • Manage the information security budget and allocate resources effectively.MINIMUM QUALIFICATIONSSix (6) years of progressively responsible full-time paid information systems technology experience, at least eighteen (18) months of which shall have been in an administrative or managerial capacity in the areas of computer applications programming, systems programming, information systems development, data telecommunications, database administration, or a closely related area.Education at an accredited college or university may be substituted for the general information systems technology experience at the rate of one (1) year of college for six (6) months of experience up to a maximum of four (4) years of college for two (2) years of experience. In addition, a master's degree in computer science or a closely related field from an accredited college or university may be substituted for an additional year of the general information systems technology experience. However, all candidates must possess the eighteen (18) months of administrative or managerial experience described above.Experience in an administrative capacity must include responsibilities such as: monitoring an IT budget; reviewing and approving IT procurement and invoice payments; reviewing and approving contracts with vendors; monitoring and approving IT projects; setting standards and best practices; risk evaluation; organizational development; chairing or participating in IT Governance and Advisory committees; and/or overseeing vendor relationship management.Experience in a managerial capacity must include responsibilities such as: strategic planning for an office/division; creating and implementing policies; setting standards and best practices; defining and documenting project scope; root cause analysis with recommendations; collaborating with other managers and executives to define future state of IT program; and/or forecasting.The following types of experience are not acceptable: superficial use of preprogrammed software without complex programming, design, implementation or management of the product; use of a word processing package; use of a hand-held calculator; data entry; operation of data processing hardware or consoles.OTHER QUALIFICATIONS
            • Master's degree in computer science, Information Technology, Cybersecurity, or a related field.
            • Minimum of 7-10 years of progressive experience in information security, with at least 5 years in a leadership role.
            • Strong knowledge of information security frameworks and standards (e.g., NIST, ISO 27001, COBIT).
            • Experience with regulatory compliance requirements relevant to higher education institutions.
            • Proven ability to manage security incidents and lead organizational responses.PREFERRED SKILLS AND EXPERIENCE:
              • Professional certifications such as CISSP, CISM, or CISA.
              • Experience in higher education or public-sector organizations.
              • Familiarity with emerging technologies, including cloud security and AI-driven threat detection.
              • Excellent communication skills with the ability to present complex information clearly to diverse audiences.KEY COMPETENCIES
                • Leadership and Vision: Ability to lead and inspire cross-functional teams.
                • Analytical Thinking: Strong problem-solving and decision-making skills.
                • Communication: Effective at translating technical concepts for non-technical stakeholders.
                • Adaptability: Resilience in navigating a dynamic and evolving threat landscape.COMPENSATION$160,000 - $170,000, salary commensurate with qualifications and experience.BENEFITSCUNY offers a comprehensive benefits package to employees and eligible dependents based on job title and classification. Employees are also offered pension and Tax-Deferred Savings Plans. Part-time
                  #J-18808-Ljbffr

Keywords: City University of New York, East Orange , IT Computer Systems Manager Level 6 (Chief Information Security Officer) - Provisional, Executive , New York, New Jersey