Interim Information Security Officer

San Mateo County Community College District

Posting Number: 20141398S
Department: ITS DIST (DEPT)
Location: District Office
Position Number: 1C0525
Percentage of Full Time: 100%
FLSA: Exempt (does not accrue overtime)
Months per Year: other
If other, please specify:
Salary Range:
Min Salary: $135,240 (annual)
Max Salary: $171,324 (annual)
Position Type: Administrative/Supervisory Positions

Who We Are:
The San Mateo County Community College District is committed to achieving educational equity for all students. As outlined in the Districts Strategic Plan, “success, equity, and social justice for our students are longstanding goals.” The Districts “Students First” Strategic Plan is focused on “Student Success, Equity and Social Justice.” We provide students with a rich and dynamic learning experience that embraces differences – emphasizing collaboration and engaging students in and out of the classroom, encouraging them to realize their goals, and to become global citizens and socially responsible leaders. When you join our team at San Mateo County Community College District, you can expect to be part of an inclusive, innovative and equity-focused community that approaches higher education as a matter of social justice that requires broad collaboration among faculty, classified staff, administration, students and community partners.

The College and the District:
The San Mateo County Community College District is home to Caada College, College of San Mateo, and Skyline College. All three of our colleges are designated as Hispanic Serving Institutions enrolling approximately 28,000 students each academic year. San Mateo County Community College District has a diverse student population that is a reflection of the communities that it serves. Detailed information about the student population, including data related to student success, can be found on the San Mateo County Community College Districts Educational Services & Planning website.

Who We Want:
We value the ability to serve students from a broad range of cultural heritages, socioeconomic backgrounds, genders, abilities and orientations. Therefore, we prioritize applicants who demonstrate they understand the benefits diversity brings to a professional educational community. The successful candidate will be an equity-minded individual committed to collaborating with faculty, classified staff, administration, students and community partners who are also committed to closing equity gaps. The San Mateo County Community College District seeks employees who value mentorship and working in a collegial, collaborative environment, guided by a commitment to helping all students achieve their educational goals.

The Position:
Under general direction of the Chief Technology Officer, the Information Security Officer is responsible for the coordination of the development, implementation, and evaluation of information technology (IT) security standards, best practices, architecture and systems for the District to ensure the integrity and security of the District’s IT infrastructure and the protection, integrity and confidentiality of information assets spanning the entire enterprise; and performs related duties as assigned. Public contact is extensive and involves staff at all levels within the organization, other educational institutions, governmental, business and community agencies, students and the general public for the purpose of exchanging technical and other information related to security. A high degree of independent judgment and creativity are required to resolve a variety of minor and potentially major problems that occur. Consequences of errors in judgment can be costly in employee time, public relations and/or institution funding.

Duties and Responsibilities:
The duties below are representative of the duties of the classification and are not intended to cover all of the duties performed by the incumbent(s) of any particular position. The omission of specific statements of duties does not exclude them from the position if the scope of work is similar, related, or a logical assignment to this classification.

  • Develop and implement security applications, policies, standards and procedures intended to prevent the unauthorized use, disclosure, modification, loss or destruction of data; works with the Infrastructure Systems Engineer, System Administrators, Managers, Directors, campus community and other staff to ensure the integrity and security of the departments IT infrastructure; reviews the development, testing and implementation of IT security products and control techniques in all locations and departments throughout the District
  • Monitor and review security systems and logs. Identify manager, troubleshoot, diagnose, resolve and report IT security problems and incidents; help coordinate and conduct investigations of suspected breaches in IT Security; respond to emergency IT security situations
  • Consult with application developers and other Academic Information Services staff to ensure production applications meet established IT security policies and standards
  • Promote and coordinate the development of training and education on IT security and privacy awareness topics for District administrators, faculty and staff; develop appropriate security-incident notification procedures for District management
  • Conduct vulnerability assessments to identify existing or potential electronic data and information system compromises and their sources; coordinate IT investigative matters with appropriate law enforcement agencies
  • Perform audits and periodic inspections of District information systems to ensure security measures are functioning and effectively utilized and recommend appropriate remedial measures to eliminate or mitigate future system compromises
  • Review, evaluate, and recommend software products related to IT systems security, such as virus scanning and repair, encryption, firewalls, internet filtering and monitoring, intrusion detection, etc.
  • Good understanding of cloud systems and architecture, such as Azure, OCI & AWS. Should have the ability to conduct vulnerability scanning & log analysis, etc.
  • Maintain up-to-date technical knowledge by attending educational workshops, reviewing professional publications, establishing personal networks and participating in professional associations
  • May participate in the review of IT facility acquisition, construction and remodeling projects to ensure conformity to established security policies and guidelines
  • May serve as a witness or subject-matter expert for the department in legal matters concerning IT systems security
  • Perform other duties as assigned by the Chief Technology Officer

Minimum Qualifications:

  • A combination of education and experience equivalent to a Bachelors degree from an accredited institution in computer science, information technology, systems engineering or a closely related field
  • Five years of increasingly responsible experience involving applications and/or IT infrastructure systems, including three or more years of IT security-related experience involving risk identification and mitigation, security architecture development and compliance; or an equivalent combination of training and experience
  • Demonstrated cultural competence, sensitivity to and understanding of the diverse academic, socioeconomic, cultural, disability, gender identity, sexual orientation, and ethnic backgrounds of community college students, faculty, and staff

Physical Requirements:
This classification requires sitting and standing for periods of time, oral and written communication, keyboarding for significant portions of the workday, pushing, pulling, bending, stooping, reaching, patience and tact in order to perform the essential functions.

Equivalence to Minimum Qualifications:

Knowledge, Skills and Abilities:

  • Knowledge of current trends and advancements in enterprise-wide technology security management, including IT security risk identification and mitigation
  • Knowledge of information systems security architecture and compliance
  • Knowledge of disaster recovery planning and testing, auditing, risk analysis and business continuity planning
  • Knowledge of advanced IT security and IT audit concepts and techniques
  • Knowledge of enterprise operating systems
  • Knowledge of information systems and architecture used in a college setting
  • Knowledge of OSI model layer networking technologies and concepts
  • Knowledge of server virtualization technologies
  • Knowledge of safety policies and safe work practices applicable to the work
  • Ability to assess IT security in both central (District Office) and college environment
  • Ability to assist in developing local architectures and security solutions
  • Ability to conduct timely investigations and responses to computer security-related incidents and threats, including viruses, worms and other system compromises
  • Ability to ensure compliance with all federal, state and local legislation related to information security
  • Ability to provide comprehensive information security awareness and training
  • Ability to assist with investigations initiated by internal and external authorities
  • Ability to monitor and identify any anomalous traffic and compromised systems on campus networks
  • Ability to work with other Academic Information Services staff to deploy antivirus and other security-related desktop system software for campus-wide use
  • Ability to communicate effectively, both orally and in writing
  • Ability to demonstrate sensitivity to and understanding of diverse academic, socioeconomic, cultural, ethnic and disability issues
  • Ability to establish and maintain effective working relationships with those encountered in the course of work

Preferred Qualifications:

  • Experience in a public agency is preferred
  • Certifications, such as CISSP, CISM, GIAC are preferred

Benefits include paid holidays, vacation and sick leave. The District pays all or a portion of monthly medical plan premiums (depending on the coverage) and pays all of the monthly dental and vision plan premiums for employees and eligible dependents. Additional paid benefits include life insurance, salary continuance insurance, and an Employee Assistance Program. Classified employees participate in the Public Employees Retirement System, a defined-benefit retirement plan through the State of California. Optional tax-deferred 403(b) and 457 retirement plans are also available.

Open Date: 08/29/2022
First Review Date: 09/13/2022
Close Date:
Open Until Filled: Yes

Special Instructions Summary:
Required Application Materials All applicants are required to submit:

1. A completed online District application form (go to https://jobs.smccd.edu to complete the application and to apply for this position).

2. A resume that details all relevant education, training, and other work experience.

3. A cover letter of no more than 3 pages that addresses the applicants cultural competence, sensitivity to and understanding of the diverse academic, socioeconomic, cultural, disability, gender identity, sexual orientation, and ethnic backgrounds of community college students, faculty, and staff as well as the applicants qualifications as they relate to the requirements, knowledge, skills, and abilities listed in this announcement.

Candidates for interview will be selected from among those who most closely meet the requirements and knowledge, skills and abilities. Meeting the minimum qualifications does not guarantee an interview. As part of the interview process, candidates may be asked to demonstrate job-related knowledge and skills.

For questions related to this posting, please contact:
SMCCCD Office of Human Resources
3401 CSM Drive
San Mateo, CA 94402
Tel.: (650) 574-6555
Fax: (650) 574-6574
Email: smccdjobs@smccd.edu
Web Page: https://smccd.edu/humanresources/

Conditions of Employment:
Prior to employment, the selected candidate will be required to complete the following:

1. Submit official transcripts (applies to all faculty or educational administrative positions)

2. Submit verifications of prior employment

3. Satisfactory references

4. Successfully being cleared for employment through the background checking process
In addition to background checks, the District may review publicly available information about a candidate on the Internet. If a candidate is aware of incorrect or inaccurate information that is available on the Internet, the candidate is welcome to address such an issue with the Office of Human Resources.

5. Present original documents for proof of eligibility to work in the United States

6. Approval of your employment by the SMCCCD Board of Trustees

7. Provide a certificate of Tuberculosis exam for initial employment.

8. Have fingerprints taken by a Live Scan computer (Clearance must be received prior to first day of employment). Please note that the California Education Code requires, in part, that community college districts shall not employ or retain in employment persons in public school service who have been convicted of certain felonies, a misdemeanor drug charge (including alcohol offenses) or misdemeanor moral turpitude (sexual offense) crime. However, consideration may be given to those whose drug convictions occurred more than five years ago. A conviction for other crimes may not necessarily disqualify you from the job for which you may be applying.