Chesterfield County's Information Systems Technology Department is seeking a Chief Information Security Officer to manage and maintain information and systems security policies, resilience preparations, protocols, contract standards, and incident management. Supervises and coordinates the activities of the Information Security staff including training, scheduling, hiring decisions, written performance evaluations and possible disciplinary actions. Serve as trusted advisor on cybersecurity needs, including expert guidance on security standards and laws. Administer contracts, procurements and vendor services related to the County cybersecurity profile. Work with departments to implement and maintain controls. Direct audit responses and cybersecurity assessments, monitoring, and remediation work across departments. Oversee information security governance, training and reporting programs. Represent the County and its interests with partner agencies. Conducts security risk assessments and security violation investigations and recommends action to be taken. Administers and monitors security software systems to ensure proper operation. Develops and implements data ownership, security classifications and responsibility procedures. Coordinates security issues, concerns and potential problems with leadership within the County. Provides on-call emergency support for assigned areas of responsibility outside of normal business hours. Performs other work as required. PLEASE NOTE: Must maintain personal mobile technology as a condition of employment.
Chief Information Security Officer
Information Systems Technology
Salary Range: $84,135 - $143,669
Deadline: 11:59 p.m. November 22, 2020
Successful candidate will possess a bachelor's degree or higher in computer science, management information systems, business/public administration, or a closely related field from an accredited institution of higher education; seven or more years of verifiable and successful results leading an information security program of significant scale and scope similar to a large municipal government; three years (five years preferred) of experience managing and developing technical staff; or an equivalent combination of training and experience. Possession of at least one current cybersecurity credential such as: Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISA), Certified in the Governance of Enterprise IT (CGEIT), Certified in Risk and Information Systems Control (CRISC). Experience with creating security policies, enterprise standards, and compliance issues related to computer security.
Pre-employment drug testing, FBI criminal background check and education/degree verification. This position is subject to working in high security areas governed by the US Department of Justice's "Criminal Justice Information Services (CJIS) Security Policy" and therefore requires successfully passing a more stringent criminal background check.
A Chesterfield County application is required and must be submitted online by deadline. Visit chesterfield.gov/careers to view instructions and to complete and submit an application. (804) 748-1551.
An Equal Opportunity Employer Committed to Workforce Diversity