Chief Information Security Officer

The Los Angeles Community College District (LACCD) invites applications for the position of Chief Information Security Officer. This position designs and implements a comprehensive information security program which includes strategies, policies, standards, response plans, and procedures designed to protect the integrity and confidentiality of enterprise systems, assets, and communication technology throughout the District from cyberattacks, intrusion, infiltration, and natural disasters.

MONTHLY SALARY: $10,547 -$13,066*
*Salary Information is based on a full-time, 12-month position

TYPICAL DUTIES

Develops, implements, evaluates, and monitors a District-wide strategic, comprehensive enterprise information security and IT risk management program which enables the District to identify, protect, detect, respond, and recover from unauthorized access, use, disclosure, disruption, modification, or destruction of technology assets, systems, and information.

Develops, implements, and manages strategies, policies, standards, processes, and tools necessary to prevent, detect, document, remedy and prevent hazards and threats to digital and non-digital information both in transit and in at-rest storage.

Oversees and participates in risk analysis of IT infrastructure and systems to: isolate potential threats and hazards; assess the potential impact on business assets; identify measures to minimize or eliminate any negative effects; and inform plans to mitigate and/or prevent such hazards or threats.

Manages response efforts to information security incidents throughout the District; utilizes metrics and evaluation criteria to assess recovery success and continually improve response performance; engages, interacts and coordinates with third-party incident responders, including law enforcement.

Designs, implements, and manages a structured disaster recovery plan for responding to unplanned incidents and threats to the information technology infrastructure and systems of the District and colleges, including hardware and software, networks, procedures, and people; regularly tests plan capabilities to ensure they operate effectively.

Designs, implements and manages a business continuity plan which identifies mission-critical functions and data, and outlines procedures and protocols to maintain/protect such functions during a crisis or incident.

Designs, implements, and maintains data and document security plans, standards, and measures in accordance with District, government, and industry standards.

Serves as the technical advisor on projects related to enterprise architecture, hardware, software, and technical controls that have security requirements and implications.

Analyzes and recommends security controls and procedures to business process owners using information systems and assets.

Oversees the administration of authentication and access controls, including provisioning, changes, and deactivation of user and system accounts, security/access roles, and access permissions.

Analyzes and recommends security controls and procedures related to the acquisition, development, and lifecycle change of information systems, and provides oversight to ensure compliance.

Establishes and maintains an accurate and up-to-date asset inventory of computing and networking related devices owned, managed, or otherwise used by the District including information about the criticality of the asset and sensitivity of stored data.

Coordinates and evaluates the work of third-party resources and vendors employed for special projects related to the development, implementation, and monitoring of security program initiatives.

Manages, leads, and evaluates staff members assigned to the information security unit.

Provides technical training, mentoring, and coaching to professional and technical staff on complex matters related to information security.

Creates and conducts education and awareness programs related to information security activities, issues, and vulnerabilities for a broad range of audiences including administrators, managers, supervisors, staff, and students.

Maintains effective and cooperative working relationships with administrators, functional and technical team members, and users.

Plans and manages the unit’s operating budget and program budgets for information security initiatives and projects.

Performs related duties as assigned.

VACANCIES
A vacancy currently exists at the District Office, 770 Wilshire Blvd., Los Angeles, CA 90017. The hiring list established by this examination will also be used to fill future vacancies as they occur during the life of the list.  Our Colleges include: Los Angeles City College; East Los Angeles College; Los Angeles Harbor College; Los Angeles Mission College; Los Angeles Pierce College; Los Angeles Southwest College; Los Angeles Trade-Technical College; Los Angeles Valley College; West Los Angeles College

BENEFITS

• Medical and dental insurance and vision care plans are provided for employees and their dependents.
• A $50,000 life insurance policy is provided free of charge for each employee.
• 12 full-pay days and 88 half-pay days of illness leave.
• At least 15 paid holidays per year.
• Vacation days accrue annually beginning at 10 days and increasing incrementally to 24 days depending on years of service with the District.  Vacation days for management and confidential positions begin at 15, 20, or 24 days.
• Other paid time off includes: bereavement leave, personal necessity leave, court subpoena, and jury duty.
• Employees become members of the Public Employees Retirement System.  The employee contribution rate is 6 percent.  The District also contributes to the retirement system.  Employees are also covered by Social Security.
• Employee Assistance Program

MINIMUM REQUIREMENTS FOR ACCEPTANCE OF AN APPLICATION: Education and Experience:

A bachelor's degree from a recognized college or university preferably with a major in computer science, computer engineering, network security, information security, information technology, mathematics, or a related field.

AND

Four years of recent, full-time, paid, professional-level experience in network administration and maintenance in an environment with a variety of network devices, DDNS, VPN, and firewalls. Two years of the required 4 years of experience must have included responsibility for security controls of an enterprise-scale data network for a public or private organization using SIEM technology. Experience with an institution of higher education is desirable. Experience in a supervisory capacity is desirable.

Certification:

Possession of the following certification or an equivalent is required: Certified Information Systems Security Professional (CISSP)

Possession of one or more of the following certifications or an equivalent is highly desirable:  Certified Information Security Manager (CISM); Certified Information Systems Auditor (CISA); Security Essentials Certification (GSEC); Information Security Fundamentals (GISF); Certified Intrusion Analyst (GCIA)

Special:

The required professional certification must remain current and valid throughout employment with the District.

A valid Class "C" California driver’s license must be obtained within 10 days of establishing residency in the State of California. Travel to locations throughout the District is required.

For a complete job description including the Knowledge, Skills, and Abilities associated with the position please visit our website.

EXAMINATION PROCESS
The examination process may consist of one or more parts which may include a training and experience evaluation, written test, performance test and/or oral interview.

ACCOMMODATION
Individuals protected by the Americans with Disabilities Act (ADA) may request, orally or in writing, an accommodation in the examination process. Documentation of the need for accommodation is required solely for the purpose of establishing that the applicant has an ADA disability and that the disability necessitates a reasonable accommodation. Typically, a recent letter from an appropriate health care or rehabilitation professional which establishes that the applicant has an ADA qualifying disability, identifies the functional limitations as they relate to the testing situation, and recommends/suggests the appropriate accommodation is sufficient.  In order for appropriate arrangements to be made at the testing site, a request for accommodation and required documentation must be received by the Examiner of Record at least 3 days prior to the administration of the test.

HOW TO APPLY
Online
https://jobapscloud.com/laccd

DEADLINE
Interested applicants are invited to submit applications through our online employment system by 4:00 P.M. on FRIDAY, JANUARY 18, 2019. For a listing of other job opportunities with the Los Angeles Community College District, call our 24-hr job hotline, or refer to our Web Page at https://jobapscloud.com/laccd.

Contact Us
Personnel Commission: (213) 891-2129
24-hr Job Hotline: (213) 891-2099
TDD: (213) 891-2408
Hours of Operation: Monday – Friday 7:30AM – 4:30PM