This job ad has been posted over 40 days ago...
0

applicants

Full-time Cybersecurity Awareness Training and Outreach Program Manager

at University of Oregon in Oregon

Location: Eugene, OR
Categories: Information Technology, Computer and Information Science
Department: Information Services
Appointment Type and Duration: Regular, Ongoing
Salary: $70,000 - $90,000 per year
Compensation Band: OS-OA08-Fiscal Year 2023-2024
FTE: 1.0

Application Review Begins
July 22, 2024; position open until filled

Special Instructions to Applicants
To be considered for this position, please submit a complete application. Complete applications must include a cover letter and resume that address how you meet the minimum and preferred qualifications, as well as professional competencies.

We are interested in finding the best candidate for the position. We encourage you to apply, even if you don’t think you meet every one of our preferred qualifications--use your cover letter to let us know what is meaningful to you about the role and what transferable skills or other qualities you would bring.

Position Summary
The Cybersecurity Awareness Training and Outreach Program Manager reports to the Chief Information Security Officer and works under the direction of Information Security Office leadership to manage and execute cybersecurity awareness programs for the University of Oregon and drive a security-minded culture across employees, faculty, students, contractors and third parties. The program manager works with internal stakeholders and external cybersecurity awareness vendors to ensure the program is aligned with leadership’s expectations. Also, the program manager will emphasize employee behavioral change by providing successful training and education content focused on mitigating institutional risk.

This individual oversees all components of the cybersecurity awareness program including the development, review, implementation, and maintenance of the organization’s information security awareness program, as well as identification of top human risk to the university and behaviors that need to change to mitigate those risks and identify any roles which would require additional or more specialized training and ensure those roles receive it. They will create a positive program that engages staff, faculty, students, and contractors, to include focusing on changing behaviors both at home and at work. Ultimately, we want our community to demonstrate the same secure behaviors regardless of where they are or the devices they are using.

The program manager will oversee outreach campaigns aimed at communicating information security program practices, policies, and standards to members of the university community. They will also provide information about success metrics and key performance indicators as well as manage the delivery of the Oregon Cyber Resilience Summit.

Successful candidates combine business acumen, effective communication, and technical aptitude to provide cybersecurity content serving all levels of proficiency, from beginners to experts. The program manager measures the efficacy of the cybersecurity awareness program, communicates metrics to information security office leadership and makes recommendations to improve the university’s resiliency. In addition, the program manager is adept at developing trust and earning respect so that regardless of employee ability, all feel welcome to ask questions, share feedback, and support the mission. As a liaison between the Information Security Office and the business units, the program manager is people-centric, a security champion, and an example for others to follow.

The position will participate in strategic planning, including goals and objectives for the Information Security Office that support the university’s goals for student success, administrative process improvement, and research and teaching.

This position will work with the Chief Information Security Officer to identify and prioritize expenditures as well as look for new cost-effective services/strategies for the delivery of cybersecurity awareness and outreach to the campus community. It is expected that this position will ensure compliance with federal, state, and university policies and regulation, while maintaining appropriate internal control safeguards.

Essential Personnel
This position may provide essential services during times of emergencies and inclement weather. This position may be required to fulfill essential services and functions during these times.

Minimum Requirements
• BA or MA in Information Assurance, Education, Communications, Marketing, Psychology, or a related field (or 5+ years relevant experience in these areas).
• 3+ years of relevant work experience, preferably in either Information Assurance, Education, Communications, Marketing, or related fields.
• Demonstrable experience in technical training or adult education.

Professional Competencies
• Strong interest in Information Security or Enterprise Risk Management (ERM).
• Ability to take initiative, reach out to and coordinate with different people in different departments.
• Collaboration with others, to include people in other countries, is a key factor to success.
• Understand the concepts of culture and how culture impacts how people both behave and learn.
• Excellent communicator and storyteller, adept at collaborating with various groups of people.
• Perform duties in a way that advances and supports the mission of the department and university.
• Work effectively in a diverse team environment and create effective relationships for problem solving and positive interactions.
• Take initiative, looking for what needs to be done and doing it.
• Pay close attention to detail.
• Maintain a safe and safety-conscious workplace.
• Maintain a respectful workplace and model a positive and proactive attitude.
• Model the highest ethical standards.
• Provide superior customer service.

Preferred Qualifications
• Three to five years of cybersecurity and training and education practitioner experience.
• Project management experience, the ability to plan, manage and maintain a complex, organization-wide program over the longer term.
• Understanding of the concepts of information risks and the different elements that make up risk. In addition, have at a minimum a basic understanding of the different concepts of information security.
• Understand the concepts of culture and how culture impacts how people both behave and learn.
• Display practical knowledge of different communication techniques to ensure people understand and continually apply the required behavioral change necessary to reduce the ‘human factors’ risk.
• Ability to communicate complex messages in a simple, clear and concise manner within our organization. In addition, have experience with different types of communications methods, to include social media, blogging, webcasts, printed materials, hosted events and other methods. A key part of effective engagement is leveraging multiple methods of communications.
• Preferable, but not required: PMP, GSEC, GISP, CRISC, CISSP.
Reference : Cybersecurity Awareness Training and Outreach Program Manager jobs


Recent jobs at University of Oregon
Full-time Interim Intake and Resource Coordinator at University of Oregon in Oregon 02-11-2024
Full-time Audit Manager at University of Oregon in Oregon 02-10-2024
Full-time Internal Auditor II at University of Oregon in Oregon 02-10-2024
Full-time IT Auditor II at University of Oregon in Oregon 02-10-2024
Full-time Owner's Representative at University of Oregon in Oregon 01-10-2024

« Go back to category
Is this job ad fake? Report it!   
Recommend to a friend
Published at 20-06-2024
Viewed: 100 times