The Chief Information Security Officer and the campus Information Security Officers jointly oversee the University of Colorado’s efforts to protect its computing and information assets and to comply with information-related privacy and security laws and regulations.
The System Administration division of the University of Colorado provides several shared services (employee services, procurement services, financial services, legal counsel, enterprise resource planning systems, etc.) to the multi-campus University of Colorado system, serving tens of thousands of users. The Office of Information Security both manages operational information security for this division, as well as providing some information security services to the broader multi-campus system.
The University of Colorado is seeking a Security Awareness and Training Program Manager to be primarily responsible for the development and implementation of the University of Colorado information security awareness and training program for all four campuses and System Administration. This position will develop designs and content for a variety of audiences across the organization. The goal of this program is to educate new members of the community and regularly inform and enhance the competency of staff, faculty and students regarding threats, policies and relevant topics. The dynamic nature of information security also means a successful team member must always be learning and growing professionally. The Security Awareness and Training Program Manager reports to the Associate Director for Information Risk and Compliance, and is exempt from the State of Colorado Classified Staff system. This position is available as full time or part time with a minimum of 75% time work schedule and located at System Administration in Denver or on the Boulder campus.
Duties and Responsibilities:
Duties and responsibilities of the position include, but are not limited to:
Security Awareness and Training (70%)
Collaboratively develop, manage and periodically update the information security training and awareness program plan.
Develop an understanding of target learning communities across the University of Colorado system and identify the best approaches for content, design and delivery method.
Collaborate with subject matter experts to design and develop educational campaigns, interactive training materials and in-person training on fundamental security concepts for internal users.
Deliver trainings on an as needed basis.
Produce messaging that communicates the importance of the information security program.
Plan, implement, track and analyze simulated phishing exercises.
Compile and analyze effectiveness metrics related to the information security awareness and training program.
Stay abreast of emerging security trends and changes to our program that may be relevant to various audiences.
Information Security Program Management (20%)
Coordinate breach response communication for the Chief Information Security Officer and keep the campus Information Security Officers informed of campus breach response actions and developments in a timely manner.
Represent the information security offices at meetings and events as needed to promote and enhance awareness of the IT Security Program and best practices in information security.
Create, update and maintain website pages, to include consideration of ADA and mobile usage, university branding guidelines, copyrights, etc.
Assist with information security metrics collection and analysis.
Professional Development (10%)
Maintain an awareness of information security news, events and trends.
Raise important issues to members of the security team and/or other teams.
Learn greater skills (both technical and non-technical) through formal trainings, degree programs, certifications, attending conferences/events, informal learning plans, etc.
Knowledge, Skills, and Abilities:
To be successful in this position, candidates will need the following:
Knowledge of Information Security policies and best practices.
Knowledge of training methodologies and best practices.
Ability to translate complex concepts into simple, clear and concise messages that technical and non-technical audiences can quickly comprehend.
Ability to establish, maintain and foster positive and effective working relationships with those contacted in the course of work.
Strong verbal and written communication, facilitation and interpersonal skills.
Ability to multitask and work well individually, as well as cooperatively with others in support of team effort.
Excellent project management skills.
Digital design, marketing, and graphic design skills.
Ability and interest to continually learn and grow professionally.
Attention to detail when performing tasks.
Ability to create and follow work plans.
Who we are:
System Administration, which also houses the Office of the President, is located in the uptown neighborhood of Denver with an office in Broomfield and a few smaller offices located on the campuses. However, this position has the flexibility to work in Denver or Boulder. Many of our departments support the educational and research missions of the four University of Colorado campuses. We provide diverse opportunities for professional development, innovation, and collaboration with talented staff and faculty.
The salary for this position has been established at $55,000 but is commensurate with experience.
*Benefits: *The University of Colorado offers an excellent benefits package including:
Medical: Multiple plan options
Dental: Multiple plan options
Additional Insurance: Disability, Life, Vision and Wellness
Retirement 401(a) Plan: Employer contributes 10% of your gross pay
Paid Time Off: Accruals over the year
o Vacation Days: 22
o Sick Days: 15
o Holiday Days: 10
Tuition Benefit: System employees have the benefit on all campuses
ECO Pass: RTD Bus and light rail service
Additional Perks & Programs: Click here to access a few more Perks and Programs.
Click here to access our Total Compensation Calculator to see what your total rewards could be at CU. This position is a University Staff position.
For more information on benefits programs, including eligibility, is available at www.cu.edu/employee-services/.
Bachelor’s degree from an accredited institution of higher education in communication, educational technology, instructional design, training and development, information security, information technology or related field or a combination of equivalent professional experience. (The educational requirement may be substituted by professional experience on a year for year basis).
Three (3) years of experience in a training, communications, IT security, or related role.
Five (5) years of relevant work experience in communication, educational technology, instructional design, training and development, information security, information technology, and/or information systems.
Associates, bachelor’s and/or master’s degree in a related field.
Experience working within IT or communication in the higher education industry.
o Technical writing
o Copy editing
o Graphic design
o Data visualization
o Video production
o Digital animation
o User experience
o Curriculum development
o Educational/instructional technologies
o Developing workshop materials and giving technical presentations or training
o Social media tools
o IT accessibility
o Information security concepts
Job: *Business Services
Organization: *S0001 -- System Administration
Title: Security Awareness & Training Program Manager
Requisition ID: 16111