• Liaison Role: Act as the primary point of contact between the business unit(s) and the cybersecurity organization, ensuring alignment of security initiatives with business goals.
• Risk Management: Identify, assess, and communicate cybersecurity risks to business leaders, providing strategic advice on mitigating risks and ensuring compliance with cybersecurity policies and standards.
• Consulting and Advising: Provide expert guidance on cybersecurity and compliance matters to business leaders and teams, including advising on security controls, regulatory compliance, and incident response.
• Strategic Alignment: Work closely with business leaders to integrate cybersecurity into business processes, technology roadmaps, and projects from inception to completion. Support ongoing security tasks in business-as-usual functions.
• Incident Management: Support the organization’s incident response efforts by coordinating with business units to ensure timely and effective response to security incidents.
• Security Awareness: Promote and enhance a strong security culture within the business unit(s) by leading security awareness programs and training initiatives.
• Third-Party Risk Management: Collaborate with procurement and vendor management teams to assess and manage cybersecurity risks associated with third-party vendors.
• Metrics and Reporting: Develop and present cybersecurity metrics and reports to business leaders, ensuring they have the necessary information to make informed decisions.
• Continuous Improvement: Stay abreast of the latest cybersecurity trends, threats, and technologies, and continuously seek opportunities to enhance the organization’s security posture.

Required Qualifications:

• Education: Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field. Master’s degree or MBA is a plus.
• Experience:
• 7+ years of experience in cybersecurity, IT risk management or related fields.
• 5+ years of leadership experience within a business-focused security role.
• Proven track record of aligning security strategies with business objectives.
• Certifications: Relevant certifications such as CCNA & Microsoft Certified, CISSP, CISM, CRISC, CISA or equivalent are highly desirable but not required.
• Skills:
• Technical Expertise: Strong understanding of cybersecurity frameworks, technologies, and best practices.
• Cisco Infrastructure: Experience with Cisco infrastructure and security capabilities. Detailed experience with Azure, Office 365 and supporting Microsoft technologies.
• Business Acumen: Ability to understand and align with the business’s strategic objectives and challenges.
• Communication: Excellent verbal and written communication skills, with the ability to translate technical concepts into business language.
• Leadership: Proven ability to lead cross-functional teams and influence without direct authority.
• Problem-Solving: Strong analytical and problem-solving skills, with a proactive approach to identifying and mitigating risks.
• Relationship Management: Ability to build strong relationships with business leaders and stakeholders, fostering trust and collaboration.

Preferred Qualifications:

• Experience in the education industry is highly desirable.
• Cloud and data quality experience
• Knowledge of regulatory requirements relevant to the industry, such as GDPR, HIPAA, PCI-DSS, etc.
• Familiar with various NIST frameworks including NIST , NIST 800-30 and NIST RMF.
• Experience working in a matrixed organization with multiple lines of business.

• Key Attributes:
• Credibility: Establishes themselves as a trusted cybersecurity expert within the business.
• Reliability: Consistently provides clear, actionable guidance to business partners.
• Adaptability: Thrives in a dynamic, fast-paced environment with shifting priorities.
• Strategic Vision: Balances short-term needs with long-term objectives, ensuring the security strategy supports business growth and innovation.