Re: Director/Manager Level Security Position Information Needed

[Valerie Vogel <vvogel () EDUCAUSE EDU>]

Hi Justin,

The Higher Education Information Security Council (HEISC) created a CISO job description template as part of our 
chapter on Career and Workforce Development chapter. The template includes suggested duties and responsibilities in 
several areas. We note that this template could be used for other titles such as director or manager of information 
security. https://spaces.internet2.edu/display/2014infosecurityguide/CISO+Job+Description+Template

You can also find some additional resources that may be helpful, including the National Cybersecurity Workforce 
Framework, published by NIST, which includes sample job titles and key tasks. 
https://www.nist.gov/itl/applied-cybersecurity/nice/resources/nice-cybersecurity-workforce-framework

I hope others in the community might have some recent examples to share, as well!

Thank you,
Valerie

Valerie Vogel
Senior Manager, Cybersecurity Program

EDUCAUSE
Uncommon Thinking for the Common Good
direct: 202.331.5374 | twitter: @HEISCouncil | vvogel () educause edu<mailto:vvogel () educause edu>
From: Security Discussion Group List <SECURITY () LISTSERV EDUCAUSE EDU> on behalf of Justin Harwood <Justin.Harwood () 
CPCC EDU>
Reply-To: Security Discussion Group List <SECURITY () LISTSERV EDUCAUSE EDU>
Date: Tuesday, March 6, 2018 at 10:54 AM
To: Security Discussion Group List <SECURITY () LISTSERV EDUCAUSE EDU>
Subject: [SECURITY] Director/Manager Level Security Position Information Needed

I hope everyone's Tuesday is going well so far! I wanted to reach out to this community to see if someone could provide 
me with some information related to job descriptions/responsibilities/salary ranges for a "Director/Manager" type 
position for a dedicated Security team. The team that this position would be managing would be in charge of firewalls, 
vulnerability management, incident response, A/V, IDS, security assessments, PCI, etc. Basically everything information 
security. We are a large community college, and would love to hear from other community colleges that might would have 
this type of position.  Universities are welcome to comment as well, because we operate like a university.


Feel free to contact me directly if you are able! Thank you so much!


Justin


________________________________

This e-mail, including any attachments, is intended only for the addressee's use and may contain confidential and 
proprietary information. If you are not the intended recipient, you are hereby notified that any retention, 
dissemination, reproduction, or use of the information contained in this e-mail is strictly prohibited. If you have 
received this e-mail by error, please delete it and immediately notify the sender. Thank you for your cooperation.