TITLE Director, Cybersecurity and Enterprise Systems
CLASSIFICATION NUMBER 5183
IMMEDIATE SUPERVISOR Chief Information Officer
The Director, Cybersecurity and Enterprise Systems leads the Office of Cybersecurity and Enterprise Systems, overseeing cybersecurity strategy and enterprise-wide computing infrastructure for the Missouri State University system. The Director, Cybersecurity and Enterprise Systems ensures the confidentiality, integrity, and availability of University electronic information by communicating risk to senior administration, creating and maintaining enforceable policies and supporting processes, and ensuring compliance with regulatory requirements. The Director, Cybersecurity and Enterprise Systems is responsible for strategic planning, technology management, resource allocation, and budgeting for enterprise computing infrastructure, including servers, authentication services, and interfaces with third-party systems. The Director, Cybersecurity and Enterprise Systems ensures system-wide disaster recovery and incident response plans are in place.
MINIMUM ACCEPTABLE QUALIFICATIONS
Education: A Bachelor's degree is required; a Bachelor’s degree in a computer-related
field is preferred.
Experience: A minimum of eight years of work experience managing computing
resources including experience with the design and maintenance of a multi-vendor
computing environment is required. A minimum of five years of comprehensive
experience involving project management, planning, preparing project cost estimates,
budget oversight and development, and supervision is required. Work experience in a
higher education environment is preferred.
Skills: Strong supervisory, project management, administrative, budget management,
and technical skills are required. An understanding of Enterprise Resource Planning
systems to include systems and operations procedures, data center management, and
the provision of end-user support services are required. A demonstrated ability to
manage multiple technical projects with a high degree of detail while working with
short deadlines is required. An in-depth understanding of current and
emerging information technologies is required. Effective interpersonal, customer
service, organizational, and team-building skills are required. The ability to maintain
confidentiality in regard to information processed, stored, transmitted, or accessed by
the systems is required. Excellent verbal and written communication skills and
proficiency in writing technical specification documents are required. The ability to work
with a variety of constituencies possessing a wide range of technical knowledge is
required. The ability to solve management, technical, installation, scheduling, and other
related problems is required. The ability to develop knowledge of, respect for, and skills
to engage with those of other cultures or backgrounds is required.
Other: The twenty-four hour scope of University operations requires this position
available evenings, nights, and weekends to respond to calls regarding questions or
problems with the University’s computing resources. Occasional travel to remote sites
to provide support or engage in professional development opportunities is required.
ESSENTIAL DUTIES AND RESPONSIBILITIES
1. Serves as the Information Security Officer for the Missouri State University System.
2. Creates cybersecurity strategies, both short-term and long-range, in support of the University’s goals.
3. Directs an ongoing, proactive risk assessment program for all new and existing systems and remains familiar with the University’s goals and business processes so effective goals can be put in place for those areas presenting the greatest information security risk.
4. Communicates risks and recommendations to mitigate risks to senior administration by communicating in non-technical, cost/benefit terms and in a format relevant to senior administrators so decisions can be made to ensure the security of information systems and information entrusted to the University.
5. Serves as the University Security Officer for purposes of compliance with the Health Insurance Portability and Accountability Act (HIPAA).
6. Coordinates the University’s information security program.
7. Assures the availability of an effective and comprehensive computing infrastructure, plans and coordinates with all University campuses and departments to identify and meet administrative and academic computing needs, and investigates technology solutions to assist the University in accomplishing its mission, goals, and objectives.
8. Facilitates the purchase, design, implementation, and maintenance of various technology projects, develops disaster recovery and restoration plans, and works with vendors, consultants, and contractors to optimize server infrastructure and security capabilities.
9. Ensures fiscal responsibility and accountability through coordination and preparation of the annual departmental budget, authorizing the expenditure of funds, and maintaining overall budget control.
10. Supports other departments and individuals with issues, questions, and support of all delivered services, promotes open channels of communication with all constituents, and advises deans, department heads, and senior administrators about server infrastructure and security-related issues and concerns.
11. Manages the University-owned computing systems, related equipment and services, and recommends the selection and/or modification of hardware and software, such as design changes and upgrades, associated equipment enhancements, and maintenance agreements.
12. Ensures appropriate information security measures and components are in place to protect campus computing resources from intrusion attacks.
13. Develops proposals, presentations, plans, and timelines for complex projects and manages priorities, equipment, and staff resources to ensure completion of projects within budgets and timelines.
14. Leads the evaluation of major software and hardware products for acquisition and integration into the University’s enterprise architecture.
15. Provides leadership and develops a competent, productive, and effective departmental staff, directly and through delegation, by hiring, training, and supervising all employees of the Cybersecurity and Enterprise Systems department and coordinates and encourages ongoing professional development of all departmental employees.
16. Contributes to the development of policies and procedures on a broad range of University issues by serving on appropriate committees.
17. Serves as a liaison between local industry and business leaders and the University related to technology.
18. Facilitates a work environment that encourages knowledge of, respect for, and development of skills to engage with those of other cultures or backgrounds.
19. Remains competent and current through self-directed professional reading, developing professional contacts with colleagues, attending professional development training, and attending training and/or courses.
20. Contributes to the overall success of Information Services by participating in the establishment of goals and standards conducive to the successful development of ongoing and enhanced capabilities, assisting in the formulation of strategic planning for both short- and long-term activities, and performing all others duties as assigned by the Chief Information Officer.
The Director, Cybersecurity and Enterprise Systems is supervised by the Chief Information Officer and supervises Cybersecurity and Enterprise Systems staff.
OFFICE OF HUMAN RESOURCES