Job Description
Duties & ResponsibilitiesWorking closely with the CISO and in partnership with the Directors of IT Security Operations and Education and Consulting, this new role as Director of Information Security Architecture and Engineering will be responsible for leading the team that ensures that Harvard's IT systems are designed, built and maintained in a manner that supports and is consistent with the Harvard Information Security policy. The successful candidate will be an innovative and strategic thinker with an open and collaborative style of leadership that fosters teamwork, sustains a learning environment for staff, and works within the University's culture to identify risks and provide solutions that meet the community's needs.
Will oversee the design and work with the Security Operations team and security and IT groups across the University on implementation and maintenance of information security controls on our networks and systems. Will evaluate and recommend new processes and technologies as appropriate.
Qualifications
Working with the broader IT community, will advise and document means to integrate security into the SDLC and will participate in system/design reviews. Will manage development and delivery of relevant IT Security standards, best practices and architecture. A critical and immediate component of this work will be to ensure that we create secure cloud architectures that leverage the right mix of traditional and emerging cloud-specific security controls. Additional Qualifications
• Broad knowledge of computer security issues, requirements and trends, and a strong understanding of information security and data privacy laws and accepted industry practice
• A track record of effective oversight and coordination of activities involving professionals from different organizations
• Demonstrated ability to understand business processes and problems and work collaboratively to develop solutions
• Demonstrated ability to work independently and manage time effectively utilizing work and project plans to meet deadlines
• Strong team-building skills and teamwork orientation; able to coach, mentor and lead by example in a cross-functional, collaborative environment
• Demonstrated ability to manage projects and services, and to define, measure and meet SLAs
• Excellent problem solving and analytical skills
• Excellent verbal and written communications skills
Experience presenting highly technical concepts to a business-focused audience.
Desired certifications: CISSP or CISM plus at least one GIAC (GCIH, GCIA, GCFE/GCFA, GCUX, GCWN, GPEN)