POSITION IDENTIFICATION
TITLE Assistant Vice President for Information Technology / Chief Information Security Officer
CLASSIFICATION NUMBER 5183
GRADE 48
CLASSIFICATION Exempt
IMMEDIATE SUPERVISOR Vice President for Information Technology
GENERAL FUNCTION
The Assistant Vice President for Information Technology / Chief Information Security Officer (CISO) leads the Office of Cybersecurity, Enterprise Data & Cloud Services, This position serves as a senior executive officer of the University, leading the Office of Cybersecurity, Enterprise Data, and Cloud Services for the Missouri State University system and acts as the University’s principal risk executive for information security, and ensures the confidentiality, integrity, and availability of University electronic information by communicating risk to senior administration, creating and maintaining enforceable policies and supporting processes, and ensuring compliance with regulatory requirements. The Assistant Vice President for Information Technology / CISO has institution‑wide authority and accountability for cybersecurity strategy, enterprise and cloud infrastructure, identity and access management, data protection, third‑party risk, and business continuity across all campuses and affiliates. The Assistant Vice President for Information Technology / CISO ensures system-wide disaster recovery and incident response plans are in place.
MINIMUM ACCEPTABLE QUALIFICATIONS
Education: A bachelor's degree is required; a bachelor's degree in Information Systems, Cybersecurity,
Business, or a related field preferred. A Master’s degree preferred. An equivalent
combination of years of experience and education may be considered for substitution
of educational requirements.
Experience: A minimum of eight (8) years of progressively responsible work experience managing computing resources including experience with the design and maintenance of a multi-vendor computing environment is required. A minimum of three (3) years of comprehensive leadership experience involving project management, planning, preparing project cost estimates, budget oversight and development, and supervision is required. Work experience in a higher education environment is preferred.
Skills: Strong executive leadership, supervisory, project management, administrative, budget management, and technical skills are required. An understanding of cybersecurity risks/mitigation techniques, Enterprise Resource Planning systems and operations, data center management, and the provision of end-user support services are required. A demonstrated ability to oversee multiple technical projects with a high degree of detail while working with short deadlines is required. An in-depth understanding of current and emerging information technologies is required. Effective interpersonal, customer service, organizational, and team-building skills are required. The ability to maintain confidentiality regarding information processed, stored, transmitted, or accessed by the systems is required. Excellent verbal and written communication skills are required. The ability to work with a variety of constituencies possessing a wide range of technical knowledge is required. The ability to solve management, technical, installation, scheduling, and other related problems is required.
Other: The 24-hour scope of University operations requires this position to be available
in evenings, nights, and weekends to respond to calls regarding questions or
problems with the University’s computing resources. Occasional travel to remote sites
to provide oversight support or engage in professional development opportunities is
required.
ESSENTIAL DUTIES AND RESPONSIBILITIES
1. Serves as the Information Security Officer for the Missouri State University System.2. Creates cybersecurity strategies, both short-term and long-range, in support of the University’s goals.
3. Directs an ongoing, proactive risk assessment program for all new and existing systems and executes a comprehensive, enterprise‑wide cybersecurity and information risk management strategy aligned with institutional strategic objectives.
4. Communicates risks and recommendations to mitigate risks to senior administration by communicating in non-technical, cost/benefit terms and in a format relevant to senior administrators so decisions can be made to ensure the security of information systems and data entrusted to the University.
5. Serves as the University Security Officer for the purposes of compliance with the Health Insurance Portability and Accountability Act (HIPAA).
6. Oversees the University’s information security program.
7. Ensures the availability of an effective and comprehensive computing infrastructure, plans and coordinates with all University campuses and departments to identify and meet administrative and academic computing needs and investigates technology solutions to assist the University in accomplishing its mission, goals, and strategic plan objectives.
8. Facilitates the purchase, design, implementation, and maintenance of various technology projects, develops disaster recovery and restoration plans, and sets the standards and guidelines for vendors, consultants, and contractors to optimize server infrastructure and security capabilities.
9. Ensures fiscal responsibility and accountability through coordination and preparation of the annual departmental budget, authorizing the expenditure of funds, and maintaining overall budget control.10. Acts as a senior advisor to Vice Presidents, Deans, and executive leadership on technology and security strategy, risk acceptance, and investment prioritization.
10. Oversees the University-owned computing systems, related equipment, and services, and set the standards for the selection and/or modification of hardware and software, such as design changes and upgrades, associated equipment enhancements, and maintenance agreements.
11. Leads institutional cyber defense strategy to protect University operations, research, financial systems, and regulated data.
12. Develops proposals, presentations, plans, and timelines for complex projects and manages priorities, equipment, and staff resources to ensure completion of projects within budgets and timelines.
13. Leads the evaluation of major software and hardware products for acquisition and integration into the University’s enterprise architecture.
14. Provides executive leadership and develops a competent, productive, and effective departmental staff, directly and through delegation, by hiring, training, and supervising all employees of the Cybersecurity, Enterprise Data & Cloud Services department and coordinates and encourages ongoing professional development of all departmental employees.
15. Sets standards for policies and procedures on a broad range of University issues by serving on appropriate committees.
16. Serves as a liaison between local industry and business leaders and the University related to technology.
17. Remains competent and current through self-directed professional reading, developing professional contacts with colleagues, attending professional development training, and attending training and/or courses.
18. Contributes to the overall success of the Information Technology Division by participating in the establishment of goals and standards conducive to the successful development of ongoing and enhanced capabilities, assisting in the formulation of strategic planning for both short- and long-term activities, and performing all others duties as assigned by the Vice President for Information Technology.
SUPERVISION
The Assistant Vice President for Information Technology / CISO supervises Cybersecurity, Enterprise Data & Cloud Services Full-time and Part-time and other staff.
OFFICE OF HUMAN RESOURCES
REVISED APRIL 2026