Chief Information Security Officer

Chief Information Security Officer

The Maine Community College System (MCCS) is looking for a full-time Chief Information Security Officer (CISO). The CISO reports directly to the Chief Information Officer and is responsible for developing and managing the programs to protect the confidentiality, integrity and availability of information used, stored, processed and transmitted by the MCCS. Responsible for managing the risk of security exposure or compromise; assuring a secure and stable information technology environment; identifying and responding to events involving information asset misuse, loss of unauthorized disclosure; and monitoring systems for anomalies that might indicate compromise. The CISO has a senior advisory role in decisions affecting information security and assurance for the MCCS. The CISO will plan, develop and coordinate system wide technical and confidential procedural security initiatives; analyze and refine implementation of security software and hardware technologies; develop long range goals for strategic security plans; develop and update policies and procedures; monitor state and federal legislation related to security initiatives; and work with outside vendors. This position will be located at York County Community College in Wells, Maine.

The Chief Information Security Officer is a confidential position, level 7. MCCS offers a full suite of employee benefits including health, dental, vision and life insurance, retirement savings, flexible savings accounts, employee assistance program, tuition waivers, 529 education plan MCCS matching grant and paid holidays, vacation, and sick time.

The required minimum qualifications include a bachelor’s degree in information technology or directly related field and four to seven years of technical experience planning and overseeing information technology initiatives such as data security systems development or network design and related technologies. Formal training and experience may be considered in lieu of education on a year-for-year basis. Master’s degree in computer science, networking, information assurance, management information systems, or related discipline preferred.  Relevant information security and/or information technology certifications (Cisco CCNP or CCIE, CISSP, - CISM, VMWare, GIAC, etc.)  Experience in Higher Education environment preferred.

The required knowledge, skills, and abilities include, but are not limited to, the following: 

• Knowledge and understanding of the current and developing information technology security practices, procedures, threat identification and mitigation, and policies.
• Knowledge of the eight security domains as defined by Information Systems Security Certification Consortium (ISC)².
• Knowledge of Information Security Risk Assesment strategies and methods.
• Knowledge of enterprise information systems security structure, design, and implementation.
• Experience in strategic planning and advanced leadership.
• Experience in IT Threat identification and mitigation strategies and practices
• Knowledge of current security trends and developments in enterprise-level information technology.
• Skill in performing security audits of technology systems and developing prioritized remediation strategies for identified weaknesses.
• Ability to organize resources and establish priorities.
• Ability to integrate best practices into current operations.
• Ability to translate IT Security Policy into understandable and repeatable best practices and procedures.
• Ability to provide a security risk assessment of technical proposals for college and enterprise-level information technology.
• Ability to provide strategic guidance and counsel to college technology staff in the assessment and development of existing and/or proposed systems.
• Ability to communicate clearly and concisely, both orally and in writing.

To apply, please upload your cover letter, current resume/CV, including names and contact information for three professional references, and official transcripts. Search will remain open until the position is filled.

Thinking about applying?

Research shows that people from historically excluded communities tend to apply to jobs only when they check every box in the posting. If you’re currently reading this and hesitating to apply for that reason, we encourage you to go for it! Let us know how your lived experience and passion set you apart.

MCCS is an Equal Opportunity employer. We celebrate diversity and are committed to creating an inclusive and non-discriminatory environment for all employees. We provide reasonable accommodation to qualified individuals with disabilities upon request. For more information, please contact the MCCS Affirmative Action Office (207)629-4000. TTY Dial Maine Relay 711.

Date Posted: June 30, 2025