IT SR MGR Security, Chief Information Security Officer (CISO)

Work Hours and Partial Telework flexibility may be available and considered Salary: $9,122.00 - $12,267.00 Monthly *Review of applications is ongoing. *We reserve the right to make a hiring decision or close this recruitment at any time after 2/10/25. It is in your best interest to submit materials as soon as possible.

Responsibilities:

• Responsible for directing, managing, compliance monitoring, and enforcing IT Security at DNR
• IT Security Compliance and Audit
• Outreach, Education, and Training
• Risk Management and Security Incident Response
• Supervise a team of cybersecurity professionals

*Required Qualifications: *

• Bachelor's degree in Computer Science, Computer Engineering, Information Systems, or a related Technology field of study, AND 10 years of experience managing an Information Security Program; OR an equivalent combination of education and/or experience.
• Two years of experience supervising IT security professionals.
• Knowledge of principles and practices of multiple IT disciplines such as database management, IT security principles, business application development methodology and technologies, and application architecture principles.
• Certified Information Systems Security Professional (CISSP), or formal security certifications from (ISC)², GIAC, CompTIA, or ISACA.
• Experienced with and knowledge of prevailing industry security standards and Common Body of Knowledge gained via a CISSP, SANS, and/or CISA Certification(s).
• Knowledge of management principles with an emphasis on team building and effectiveness.
• Experience managing third-party vendors to effectively deliver the required work product.
• Commitment to fostering and supporting an environment that honors diversity, equity, inclusion, and environmental justice practices.
• Perform assigned duties in a manner consistent with applicable laws, regulations and public records retention and requests are followed.
• Professional Ethics -- This position will be expected to adhere to a code of ethics for security professionals:
• Protect the common good, necessary public trust and confidence, and the infrastructure. 
• Act honorably, honestly, justly, responsibly, and legally.
• Provide diligent and competent service to principals.
• Able to manage complex relationships and develop credibility with executive management, partners, and staff.
• Proficient at translating business goals into technology process outcomes.
• Able to professionally communicate complex IT and business topics to individuals unfamiliar with the technology.