Information Systems Security Officer

Georgetown University comprises two unique campuses in the nation’s capital. With the Hilltop Campus located in the heart of the historic Georgetown neighborhood, and the Capitol Campus, just minutes from the U.S. Capitol and U.S. Supreme Court, Georgetown University offers rigorous academic programs, a global perspective, and unparalleled opportunities to engage with Washington, D.C. Our community is a close-knit group of remarkable individuals driven by intellectual inquiry, a commitment to social justice, and a shared dedication to making a difference in the world.

Requirements

Information Systems Security Officer, University Information Systems/University Information Security Office - Georgetown University. The ISSO will be responsible for managing the authorizations and risks related to the processing, storage, and transmission of information. The ISSO also manages and enforces government and corporate information security policies, provides training, and educates end users and program staff about proper security practices.  The ISSO conducts security and risk assessments as required using a range of security accreditation frameworks (e.g., NIST, RMF, Common Criteria, and works to mitigate risks by applying security controls effectively to achieve an acceptable degree of operational risk. As part of this process, the ISSO performs testing and security assessments to sustain required accreditations. The ISSO promotes the use of secure hardware and software within the systems affected by government and corporate approval standards. The ISSO works to ensure all required security policies and practices are effectively applied to systems and ensures security controls implementing these policies are applied and achieve the proper levels of confidentiality, integrity, availability, and privacy protection throughout the system life cycle.

The ISSO also assists with the execution, analysis, and remediation activities for the vulnerability management program (scanning, assessment, reporting, and mitigation verification) that spans different accreditation enclaves. 

Duties include but are not limited to:

●       Oversee the ATO (Authority To Operate) program

●       Coordinate the development of System Categorization Documents and System Security Plan

●       Drives necessary security changes through steering groups and control (review) boards to meet Risk Management milestones.

●       Develops risk mitigation strategies that contribute to the effectiveness, efficiencies, and performance outcomes for strategic projects, program goals, and business processes.

●       Evaluate security solutions and implementation strategies for Program IT systems and services and maintain operational security posture of development, integration, and deployed capabilities.

Work Interactions

This position is fully remote. The ISSO will report directly to the Director of Cybersecurity Risk Management. They will work closely with the CISO and external partners, vendors, federal agencies, and NGO’s. Interaction and coordination with various teams across the university will be required.

Requirements and Qualifications

●       Bachelor's degree in related field

●       9+  years of prior experience in a similar role

●       One or more of the following certifications: CISSP, CISM, CGRC, ISSMP, CRISC

●       In-depth knowledge of regulatory frameworks such as NIST 800-53/171, CMMC, ISO 27001, SOC 2, FERPA, GDPR

●       Excellent communication and organizational skills

Preferred requirements and qualifications:

●       Master’s degree /certificate in IT, IS, Cybersecurity or other related field.

●       Experience with vulnerability management and penetration testing tools 

●       Deep technical knowledge of computer networking concepts and protocols, network security methodologies, cyber threats and vulnerabilities, authentication, authorization, and access control methods. 

●       Experience with at least one of the major cloud providers: AWS, or GCP. 

●       Experience briefing complex technical details at the senior executive level

Work Mode Designation

This position has been designated as Remote. Please note that work mode designations are regularly reviewed in order to meet the evolving needs of the University.  Such review may necessitate a change to a position’s mode of work designation. Complete details about Georgetown University’s mode of work designations for staff positions can be found on the Department of Human Resources website: https://hr.georgetown.edu/mode-of-work-designation.

Pay Range:

The projected salary or hourly pay range for this position which represents the full range of anticipated compensation is:

Compensation is determined by a number of factors including, but not limited to, the candidate’s individual qualifications, experience, education, skills, and certifications, as well as the University’s business needs and external factors.

Current Georgetown Employees:

If you currently work at Georgetown University, please exit this website and login to GMS (gms.georgetown.edu) using your Net ID and password. Then select the Career worklet on your GMS Home dashboard to view Jobs at Georgetown.

Submission Guidelines:

Please note that in order to be considered an applicant for any position at Georgetown University you must submit a resume for each position of interest for which you believe you are qualified. Documents are not kept on file for future positions.

Need Assistance:

If you are a qualified individual with a disability and need a reasonable accommodation for any part of the application and hiring process, please click here for more information, or contact the Office of Institutional Diversity, Equity, and Affirmative Action (IDEAA) at 202-687-4798 or ideaa@georgetown.edu.

Need some assistance with the application process? Please call 202-687-2500. For more information about the suite of benefits, professional development and community involvement opportunities that make up Georgetown's commitment to its employees, please visit the Georgetown Works website.

EEO Statement:

GU is an Equal Opportunity Employer. All qualified applicants are encouraged to apply, and will receive consideration for employment without regard to age, citizenship, color, disability, family responsibilities, gender identity and expression, genetic information, marital status, matriculation, national origin, race, religion, personal appearance, political affiliation, sex, sexual orientation, veteran status, or any other characteristic protected by law.

Benefits:

Georgetown University offers a comprehensive and competitive benefit package that includes medical, dental, vision, disability and life insurance, retirement savings, tuition assistance, work-life balance benefits, employee discounts and an array of voluntary insurance options. You can learn more about benefits and eligibility on the Department of Human Resources website.