Job Description
We are advertising this position as until filled. We will review applications on the 2nd and 4th Friday of each month. California's long-awaited statewide Cradle-to-Career Data System has launched. You can help build a statewide system that brings together existing data with the aim of addressing barriers to opportunity from early learning, through K-12, college, and career. We are hiring a Chief Information Security Officer to be the information security authority in a management role, overseeing state staff and contractors' efforts to validate security-related functional and non-functional requirements and directing the maintenance and enforcement of security policies and standards to safeguard C2C systems, data, interfaces, and information processing infrastructure. We are looking for a leader who is excited to build something new with a small, entrepreneurial team. Our ideal candidate is passionate about information security and risk management, collaborative, and experienced in implementing state, federal, and industry standards and best practices. About the Role As the Chief Information Security Officer, you will have responsibility for the information security of the C2C Data System and the Office itself. This includes: Security Architecture and Engineering. Managing security staff/consultants and reviewing/approving security deliverables throughout all phases of the System Development Life Cycle (SDLC). Security Program and Governance. Set the enterprise information security vision, strategy, program objectives, and roadmap aligned with departmental mission, statewide policies (SAM, SIMM), and federal standards (NIST). Identity, Access, and Data Protection. Implement and manage identity and access management (IAM) controls and processes; enforce the least-privilege principle and access governance across systems and data. Incident Response and Technology Recovery. Maint