VP, Information Security
Job Description
Company: The Talent Magnet
Location: US
Vice President, Information Security
Our client, a local NYC leader in higher education is seeking a visionary and hands-on Vice President, Information Security to lead and advance the University’s cybersecurity, risk management, business continuity, and operational resilience strategies.
Reporting to the CIO, the VPIS will serve as the University’s foremost authority on information security, safeguarding the institution’s digital assets, data, intellectual property, and technology infrastructure while enabling innovation, collaboration, and growth.
This executive leader will be responsible for developing and executing a comprehensive cybersecurity and risk management strategy that protects students, faculty, staff, and institutional operations against an increasingly complex threat landscape. The successful candidate will bring a blend of strategic leadership, operational expertise, and technical credibility, serving as a trusted advisor to University leadership while fostering a culture of security awareness and accountability across the organization.
This is a unique opportunity to build, influence, and lead at an institution whose mission impacts thousands of students and communities every year.
What You’ll Lead
Enterprise Cybersecurity Strategy & Governance
• Develop and execute a comprehensive enterprise cybersecurity vision aligned with the University’s strategic goals and long-term growth objectives.
• Establish and oversee security governance, policies, standards, and operating frameworks that support a secure and resilient technology environment.
• Serve as the University’s senior advisor on cybersecurity risks, threats, emerging technologies, and regulatory requirements.
• Build and maintain a cybersecurity roadmap that balances security, operational effectiveness, compliance, and user experience.
Risk Management & Institutional Resilience
• Lead enterprise-wide risk assessments to identify vulnerabilities and prioritize mitigation strategies.
• Design and maintain comprehensive Business Continuity and Disaster Recovery programs that ensure operational resilience during disruptive events.
• Develop incident response protocols and lead preparedness efforts to ensure rapid response and recovery from cybersecurity incidents.
• Continuously evaluate emerging threats and proactively strengthen the University’s security posture.
Security Operations & Technology Leadership
• Oversee the architecture, implementation, and optimization of security technologies, controls, and monitoring capabilities across the University’s infrastructure.
• Lead vulnerability management, penetration testing, threat detection, and incident response efforts.
• Partner closely with Information Technology leadership to ensure cybersecurity principles are integrated into infrastructure, cloud environments, applications, and operational processes.
• Evaluate and implement next-generation security technologies and automation capabilities that enhance protection and operational efficiency.
Compliance, Privacy & Regulatory Oversight
• Ensure compliance with applicable cybersecurity, privacy, and regulatory requirements, including FERPA, HIPAA, GDPR, and other relevant frameworks.
• Coordinate audits, assessments, and regulatory reviews while driving continuous improvement across security and compliance programs.
• Collaborate with legal, compliance, and leadership teams to manage institutional risk and data protection responsibilities.
Leadership, Culture & Education
• Build and lead a high-performing cybersecurity organization, including internal staff, consultants, and managed service providers.
• Create and champion cybersecurity awareness initiatives that educate students, faculty, and staff and strengthen the University’s culture of security.
• Develop professional development and technical training programs that elevate cybersecurity capabilities across the IT organization.
• Foster collaboration across academic, administrative, and operational departments to ensure cybersecurity is embedded throughout the institution.
What You Bring
Leadership Experience
• Proven success leading cybersecurity, information security, or enterprise risk management functions in complex organizations.
• Experience serving as a senior security leader, CISO, VP of Information Security, or equivalent executive role.
• Demonstrated ability to influence executive stakeholders and translate technical risk into meaningful business and operational decisions.
• Track record of building security programs, leading organizational change, and strengthening institutional resilience.
Technical Expertise
• Deep knowledge of cybersecurity frameworks and best practices, including NIST, ISO 27001, EDUCAUSE, and related standards.
• Strong expertise in cloud security, identity and access management, vulnerability management, penetration testing, incident response, and security operations.
• Experience with security technologies including SIEM platforms, intrusion detection and prevention systems, endpoint security, encryption technologies, and threat intelligence tools.
• Knowledge of data privacy regulations, governance requirements, and risk management methodologies.
Education & Credentials
• Bachelor’s degree required; advanced degree in Cybersecurity, Information Systems, Computer Science, or a related discipline preferred.
• Industry certifications such as CISSP, CISM, CISA, CRISC, or equivalent are highly desirable.
Preferred Experience
• Experience within Higher Education or similarly complex, mission-driven organizations.
• Knowledge of DevSecOps methodologies and secure software development practices.
• Familiarity with Artificial Intelligence, Machine Learning, and emerging technologies as they relate to cybersecurity risk and opportunity.
• Experience leading hybrid and distributed teams while managing external security partners and service providers.
For the right leader, this represents an opportunity to make a lasting impact on an institution dedicated to transforming lives through education.
Source: LinkedIn
