The ISC Director reports to the CIO with a dotted line relationship to the Senior Associate Dean for Finance and Administration. The Director will align with the Stanford University CISO's policies and procedures while establishing & leading a team of Information Security professionals at GSB.

As a key member of the CIO's Executive Team, the Director will directly be responsible for establishing a deep understanding of the Information Security & compliance focus across the GSB community of students, faculty and staff.

Working in close collaboration with the CIO's Executive team, other leaders within the Business School and Stanford University's Information Security Office, the Director will establish and execute policies and procedures for all aspects of Information Security and Compliance of the GSB's technology fabric. Key areas include, but not limited to, Risk Assessment, Security Controls, security awareness training, Identity and Access Management and Security Architecture.

The Director will lead outreach, communication and education efforts to raise school-wide awareness of information security risk. S/he will also provide strategic and technical guidance and assistance in the design and implementation of appropriate, comprehensive security processes for school-wide information systems.

The position requires a combination of strategic leadership, relationship building skills to develop and implement security programs; broad technical knowledge and subject-matter expertise (threat landscape, security, legal, policy, compliance, and identity and access management).

• Own and Develop long range technology plans for information security. Create procedures and guidelines to ensure Compliance with university policy and federal and state regulations.
• Conceive, design, develop, optimize, integrate, and maintain information technology security at a complex level.
• Provide leadership and IT solutions for complex information security problems.
• Identify applicable new technologies through research, collaboration with peers, and participation in standards organizations, industry groups, panels, etc.
• May work on University-wide task forces and committees related to strategic planning efforts for information security.
• Lead and coordinate the planning, design, development and maintenance of information systems security policies, procedures, standards, and guidelines; ensuring full security of all GSB technology systems and compliance with federal and state laws and regulations and University Policies and Standards.
• Provide leadership through strong working relationships and collaboration across the School and University communities, to develop strategic goals for information security compliance and risk mediation relevant to the GSB.
• Represent the school at University forums for all aspects of technology security. Serve as the liaison to relevant University departments, vendors and external agencies (when required), for Incident Response and Planning.