Virtual Information Security Officers

The University System of Georgia (USG) is comprised of 26 higher education institutions as well as the University System Office (USO). Within the USO, our administrative operations are primarily housed in the Trinity Washington Building located in downtown Atlanta. Our Information Technology Services (ITS) division is located in Athens. The University System of Georgia Shared Services Center (SSC) is located in Sandersville. The Georgia Public Library System is located in Atlanta. The Georgia Archives is located in Morrow. The State of Georgia Records Center is located in Austell.

A Virtual Information Security Officer (VISO) is responsible for one or more USG institution cybersecurity programs in a hybrid mode, requiring time investment both onsite and remote. Success in this role will continuously mature the portfolio of assigned institution cybersecurity programs by aligning them to USG standards and reducing enterprise risk. He or she will be the advocate for and the primary point of contact representing the institution within the USG Cybersecurity program.

1. Liaises between USG Cybersecurity and institution leadership.

2. Assesses and reports risk to assigned institution(s) and USG Cybersecurity leadership.

3. Analyzes and recommends effective and efficient solutions to safeguard institution information and systems.

4. Matures institution cybersecurity programs and provides attestation of continuous improvement.

5. Participates in System-wide cybersecurity activities, to include assisting with planning and attending annual cybersecurity meetings.

6. Participates in continuing professional education opportunities to maintain professional competency.

7. Contributes to innovate and promulgate cybersecurity standards across the enterprise.

8. Approximately 30% travel, occasionally overnight and typically in-state, will be required.

9. Other duties, as assigned.

• A baccalaureate degree is required. Ideal disciplines include computer science, information technology, software engineering, information systems, computer engineering, or cybersecurity.
• Candidates must have industry recognized cybersecurity certifications such Security+, SSCP or GSEC.
• Over three years of combined experience in cybersecurity, networking and IT is required.
• Due to requirements from strategic information sharing partners, United States citizenship is required.
• This is a position of trust, requiring a satisfactory background and credit check.

• Experience in a similar role in higher education or government.
• Candidates with specialized knowledge of cybersecurity, information assurance, or risk management obtained through experience and within a formal training program are highly desired.
• Functional competency reviewing and writing scripted procedures in languages such as VBScript, PHP, Perl, JavaScript, Python, or Ruby; experience with Linux/Unix shells, security administration of Microsoft 365 or Google Workspace, as required by situation, and Microsoft Server.
• Ability to work with multiple modern operating systems and cloud-based services effectively.
• Intangible qualities include excellent interpersonal skills, ingenuity, determination, leadership, and creativity.
• VISOs must possess and maintain professional certifications appropriate to their role. Career development is detailed in a career-track training and development plan.

1. Expert knowledge of USG policies and procedures, including Cybersecurity and IT standards.

2. Knowledge of cybersecurity and privacy principles and the capability to apply them situationally.

3. Knowledge of cybersecurity threats and vulnerabilities.

4. Knowledge of offensive security techniques, security tools and tradecraft.

5. Knowledge of physical security controls and countermeasures.

6. Working understanding of computer networking concepts, protocols, and methodologies.

7. Working understanding of the techniques required to secure modern computer operating systems and cloud-based services.

8. Mastery of oral and written communications skills, including communicating with technical and non-technical audiences effectively.

9. Skill negotiating with multiple constituents having potentially competing priorities.

10. Skill identifying and resolving complex problems.

11. Ability to work independently or in teams, as required situationally.

12. Ability to align cybersecurity programs to USG, CSF, NIST and other standards by applying a risk-oriented approach to situations that are often unique to higher education.

13. Ability to execute plans integrating information sources and telemetry acquisition.

14. Ability to identify gaps in compliance or cybersecurity practices and lead efforts to remediate.

Offers of employment are contingent upon the successful completion of a pre-employment background investigation including a criminal background check demonstrating your eligibility for employment with the University System Office as determined by the University System Office in its sole discretion; confirmation of the credentials and employment history reflected in your application materials; and, if applicable, a satisfactory credit check. Offers are made expressly subject to the applicable federal and state laws, to the statutes, rules and regulations of this institution and to the Bylaws and Policies of the Board of Regents (BOR) of the University System of Georgia (USG), which are available for your inspection upon request.

This position is considered on of trust. As such, the background check for this position will require criminal history, education, professional credentials, and driving record checks.

This is not a supervisory position.
This position does not have any financial responsibilities.
Incumbents in this position will be required to drive as a part of their job responsibilities to attend in-person meetings, training, etc. The travel required is expected to be up to approximately 33%.
This position does not require a purchasing card (P-Card).
This position does not require security clearance.

The University System Office is an equal employment, equal access, and equal educational opportunity, and affirmative action institution. It is the policy of the University System Office to recruit, hire, train, promote and educate persons without regard to race, color, national or ethnic origin, age, disability, gender, religion, sexual orientation, gender identity or veteran status as required by applicable state and federal laws (including Title VI, Title VII, Title IX, Sections 503, and 504, ADEA, ADA, E.O. 11246, and Rev. Proc. 75-50).

For questions or more detailed information regarding this policy please contact the University System Office Human Resources at 404.962.3242. Individuals requiring disability related accommodations for participation in any event or to obtain print materials in an alternative format, please contact Human Resources.

This position may be eligible for a hybrid schedule of on-site and remote work. If so, the selected candidate will be required to complete and submit a USO Telework Agreement to their manager before the end of their first week of work.

All positions that have been approved for remote work to any extent will require a current USO Telework Agreement to be completed by the selected candidate and submitted to the hiring manager and USO HR by the first week of work.