Senior Information Security Officer (ITS)

ABOUT THE DEPARTMENT

The University of Southern California (USC) is advancing its cybersecurity posture with a renewed focus on resilience, cyber risk management, and threat-informed defense. As a world-class research institution, USC is building a culture of security that supports its academic and research mission in a rapidly evolving threat landscape.

This role sits within a newly restructured cybersecurity organization that's leading this transformation. You'll join a team focused on scalable, proactive defense strategies, incident preparedness, and operational excellence-working alongside experts who are deeply committed to service, innovation, and impact.

If you're driven by purpose, thrive in complexity, and want to help shape the future of cybersecurity at a leading university, we invite you to bring your leadership to the table.

POSITION SUMMARY

As the Senior Information Security Officer (ITS) you will be an integral member of the cybersecurity department while also collaborating with stakeholders across the university ecosystem, and reporting to the ISO Manager. This is a full-time exempt position, eligible for all of USC's fantastic Benefits + Perks. This opportunity is remote.

The Senior Information Security Officer (ITS) coordinates with university department, schools and/or units to capture and ensure the enforcement of cybersecurity requirements. Facilitates a unified approach to cybersecurity safety and compliance. Develops and delivers comprehensive training programs to educate staff about potential cyber threats, best practices for digital hygiene and the importance of following established security policies. Manages relationships between departments, schools and units and central cybersecurity leadership, supporting awareness of security policies and promoting security education to ensure leading data security practices are implemented across the university.

The Senior Information Security Officer (ITS) will:

• Assists in the development, implementation and maintenance of the department, school and/or unit cybersecurity standards and procedures.

• Participates in the setup and hardening of departmental information systems to protect against unauthorized access or attacks. Responsible for reviews of control effectiveness. Performs regular risk assessments to identify potential vulnerabilities and recommends security measures accordingly.

• Assists in emergency procedures, in conjunction with relevant partners and existing cyber emergency plans, for handling security incidents, data breaches, and other critical situations. Assists in responding to security events, supporting incident response and contributing to investigations as required.

• Oversees training and awareness programs for department, school and/or unit staff to foster understanding and adherence to cybersecurity protocols. Maintains currency with latest trends, threats and best practices in cybersecurity. Maintains compliance with all relevant cybersecurity laws, regulations, and policies.

• Provides oversight and coaching to more junior staff for daily activities and responsibilities. Provides upward support and communication to management as required.

• Encourages a workplace culture where all employees are valued, value others and have the opportunity to contribute through their ideas, words and actions, in accordance with the USC Code of Ethics.

MINIMUM QUALIFICATIONS

Great candidates for the position of Senior Information Security Officer (ITS) will meet the following qualifications:

• 6 years of experience in IT, cybersecurity and leadership roles.

• A bachelor's degree or combined experience and education as substitute for minimum education.

• Comprehensive understanding of the cybersecurity landscape, including trends, risks, and best practices for risk management.

• Proficiency in information technology infrastructure and various cybersecurity tools and programs.

• Excellent capacity to communicate complex security matters to different audiences, from team members to executive leadership.

• Sound analytical and problem-solving skills with an ability to make quick decisions in emergency situations.

• Experience with Operational Technology environments and security requirements needed to secure said environments.

• Experience with security audits and compliance with industry security standards and regulations.

• Experience leading teams and overseeing team member's work efforts with review and feedback.

• Experience with upward feedback/communication with leadership.

• Strong ethical standards and a solid understanding of privacy laws, confirming confidential information will be handled with integrity.

PREFERRED QUALIFICATIONS

Exceptional candidates for the position of Senior Information Security Officer (ITS) will also bring the following qualifications or more:

• 10 years of experience in IT, cybersecurity and management.

• Exceptional leadership skills, experience managing a cross-functional, high-performing team and collaborating with various departments within an organization.

• Excellent project management skills, with experience in planning, implementing, and overseeing security-related projects.

• Relevant professional certifications or working towards attainment (e.g., GCIH/GSEC, CISM, CISA, CISSP, CRISC).

• Experience managing or coordinating across multiple departments or units

• Strong knowledge of cybersecurity principles, awareness training, and communication strategies

In addition, the successful candidate must also demonstrate, through ideas, words and actions, a strong commitment to USC's Unifying Values of integrity, excellence, community, well-being, open communication, and accountability.

SALARY AND BENEFITS

The annual base salary range for this position is $162,557.93 to $200,191.72. When extending an offer of employment, the University of Southern California considers factors such as (but not limited to) the scope and responsibilities of the position, the candidate's work experience, education/training, key skills, internal peer alignment, federal, state, and local laws, contractual stipulations, grant funding, as well as external market and organizational considerations.

To support the well-being of our faculty and staff, USC provides benefits-eligible employees with a broad range of perks to help protect their and their dependents' health, wealth, and future. These benefits are available as part of the overall compensation and total rewards package. You can learn more about USC's comprehensive benefits here.

Join the USC cybersecurity team within an environment of innovation and excellence.

Minimum Education: Bachelor's degree
Addtional Education Requirements Combined experience/education as substitute for minimum education
Minimum Experience: 6 years in IT, cybersecurity and leadership roles.
Addtional Experience Requirements Combined experience/education as substitute for minimum work experience
Minimum Skills: Comprehensive understanding of the cybersecurity landscape, including trends, risks, and best practices for risk management. Proficiency in information technology infrastructure and various cybersecurity tools and programs. Excellent capacity to communicate complex security matters to different audiences, from team members to executive leadership. Sound analytical and problem-solving skills with an ability to make quick decisions in emergency situations. Experience with Operational Technology environments and security requirements needed to secure said environments. Experience with security audits and compliance with industry security standards and regulations. Experience leading teams and overseeing team member's work efforts with review and feedback. Experience with upward feedback/communication with leadership. Strong ethical standards and a solid understanding of privacy laws, confirming confidential information will be handled with integrity.
Preferred Education: Bachelor's degree
Preferred Certifications: Relevant professional certifications or working towards attainment (e.g., GCIH/GSEC, CISM, CISA, CISSP, CRISC).
Preferred Experience: 10 years in IT, cybersecurity and management.
Preferred Skills: Exceptional leadership skills, experience managing a cross-functional, high-performing team and collaborating with various departments within an organization. Excellent project management skills, with experience in planning, implementing, and overseeing security-related projects.