Information Security Officer

University of Vermont   Burlington, VT   Full-time     Information Services / Technology (IT)
Posted on January 4, 2023
Apply Now

The University of Vermont is seeking a qualified candidate for the position Information Security Officer. This senior-level position has both operational and strategic responsibilities for information security at the University. The Information Security Officer (ISO) is responsible for establishing and communicating the University's information security vision, policies, and programs to ensure that information assets entrusted to it are adequately protected. This position requires collaborative, hands-on leadership, with the ability to think strategically, plan to the strategy, and oversee execution of the plan.


The ISO provides guidance and expertise to advance the operational mission of the Information Security Office. The position will lead efforts across the university, collaborate with multiple offices and officers at the university and with the university community as a whole.


The ISO is involved in all forms of IT governance and is responsible for information security-related policy and procedure development and risk assessment work. The ISO will lead and contributes to UVM’s information security awareness and outreach efforts. The ISO must maintain situational awareness using threat intelligence and leads incident response activities. The ISO will provide oversight and direction for the Information Security Office.


The ISO is accountable for all aspects of staff management for the Information Security Office. The position must foster a positive, collaborative, and engaged team dynamic in the pursuit of ISO priorities. The ISO must be able to offer strong technical guidance as necessary. Communication and prioritization skills are essential, with a strong track record in information security as both practitioner and leader. In-depth expertise with Information Security tools and practices is important as the ISO must be able to advise on how to best use technology to enhance UVM’s security posture.


This is a senior-level position within Enterprise Technology Services and has University-wide responsibilities to provide information security leadership for the institution.


Minimum qualifications include:

Bachelor’s degree in technology or related field and seven to ten years' related experience. Ability to comprehend and assess technical issues across information technology domains. Knowledge of applicable information security regulations and compliance standards.


Technical skills required:

  • Experience as a practitioner in one of more of network engineering, systems administration, forensics, traffic analysis, and/or SOC operations


Additional required skills:

  • Project planning, prioritization, management, implementation, and assessment skills
  • Ability to establish rapport and maintain trust
  • Ability to develop and administer policies across constituencies in a decentralized organizational environment
  • Strong communications skills, including experience with:
    • Communications to a diverse community, in both written and verbal forms
    • Group facilitation
    • Formal presentations
  • Collaboration, problem-solving and negotiation skills


Required certifications:

Industry-recognized security professional certification, or the ability to acquire within the first year of employment, e.g.: CISSP (Certified Information Systems Security Professional), GIAC (Global Information Assurance Certification) Advanced-Level Certification (such as GLSC, GCED, GSNA), CISM (Certified Information Security Manager), CISA (Certified Information Systems Auditor).


For more information about this position, or to apply, please go to: (Ref: Posting #S4053PO).


The University of Vermont is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, protected veteran status, or any other category legally protected by federal or state law. The University encourages applications from all individuals who will contribute to the diversity and excellence of the institution.