Last reviewed: September 2015March 2017
Info |
---|
Recommendations if you are developing a job announcement or description for your institution: - Review the sample CISO job description (below). Previous job postings from Princeton University and University of Albany are also available (in PDF format).
- Review the National Cybersecurity Workforce Framework published by NIST, which includes Sample Job Titles (pages 5-10) sample job titles and key tasks.
- Review the 2014 Higher Ed 2016 IT Workforce Report (see Figure 13, page 19, for the top 10 positions/skills in short supply and Table 2, page 21, for the most common types of reorganization and staffing changes in IT), as well as the 2012 IT Salaries Research Bulletin (see Figure 3, page 5, for IT salary ranges and medians). Additional materials are available in the ECAR Research Hub for Today's Higher Education IT Workforcein Higher Education research hub for the most recent EDUCAUSE research on the evolving IT workforce needed to support contemporary models of IT service delivery.
- Consider alternative solutions, such as Bucknell University, Franklin & Marshall College, and Susquehanna University collaborating to create a joint CISO position among the three institutions. A non-higher ed example is Howard County, Maryland's HOCO CISO program, which provides "virtual" CISOs.
- For potential locations to post IT or information security job openings, visit the Career and Workforce Development chapter.
|
Tip |
---|
Examples of current or archived higher ed CISO job postings: Also consider searching the Security Discussion Group or CIO Discussion Group listserv archives. |
Potential Locations to Post IT or Information Security Job Openings
...
Policies Defining CIO and CISO Responsibilities
- Appalachian State University Information Security Policy (refer to section on roles and responsibilities)
- Virginia Tech IT Security and Authority Resolution (affirms the authority of the CIO) and University Policy 7010 (delegates authority from the CIO to the ISO)
...
CISO Job Description TemplateInstitution Name
Title (e.g., Information Security Officer, Chief Information Security Officer, Director of Information Security, Manager of Information Security)
...