Deputy CISOAvailable Title(s):1155-NN_ADMINPRO - DirectorBusiness Title:Deputy CISOEmployee Type:Admin. ProfessionalTime Type:Full timePosition Term:12 MonthPosition Details:Summary of Duties:This position is responsible for providing oversight and leadership for Information Security Services (ISS) as the Associate Chief Information Security Officer (CISO) in the absence of the Asst. VP & CISO. This position is responsible for ensuring the confidentiality, integrity, and availability of University information systems, services, and data. ISS reports through Information Technology Services (ITS) which serves the entire WSU system.This position provides oversight and management of the staff responsible for 1) the development, implementation, testing and delivery of information security services, and the support of Information Security Services operations, 2) managing daily operational information security related tasks, including security monitoring of university systems and services, security incident management, and security assessment and remediation and related activities, and 3) ensure technical information security risks are appropriately identified and communicated during the planning and implementation of new ITS deployed and managed information systems and services.You will advise and provide research for Information Technology Services leadership on all aspects of information security architecture including emerging technologies, processes, policies, procedures, implementation and architecture roadmaps, establishing information system boundaries, technical and operational risk mitigation approaches, security alerts, and potential adverse effects of identified vulnerabilities.Essential Job Functions:• 35% - Delivery of Information Security Services and Incident Response Services• 30% - Information Security Architecture and Service Analysis and Assessments• 20% - Manage Information Security Operations Team• 10% - Security Consulting/Training• 5% - Other Duties/Professional DevelopmentRequired Qualifications:• Positions require a Bachelor's degree in a relevant field and six (6) years of progressively responsible relevant experience, which has included at least three (3) years of managerial experience. A Master's degree in a related field may be substituted for up to one (1) year of the required experience. Education and experience can be tailored to fit the specific organizational entity/directorial assignment.• Working knowledge and experience with information security technologies, implementations, principles, and practices.• Experience in information security incident response and analysis.• Ability to analyze business requirements, assess the value of information technologies, and design information systems to meet business needs.• Expert knowledge and understanding of security technologies including intrusion detection/prevention systems, firewalls, VPNs, vulnerability scanning, and security information and event management (SIEM) systems.• Experience with security log review, correlation, and analysis.• Experience with scripting, e.g. with the Python or Perl languages.• Demonstrated customer service experience.• Demonstrated ability to work independently and as a member of a team.• Excellent verbal and written communications skills.• Demonstrated ability to lead and manage technical staff.Preferred Qualifications:• Experience developing operational information security procedures and technical training materials.• Demonstrated experience with working within formal project management frameworks.• Experience with the Splunk application, to include developing searches, reports, and other automated routines.• Experience with security re