Information and Security Risk Management & Compliance Lead - College of the Holy Cross

Reporting to the Chief Information Security Officer, the Information Security Risk Management and Compliance Lead is responsible for conducting risk assessments, coordinating security control testing, and ensuring compliance with various regulatory requirements. This position will collaborate closely with all members of the Information Security team to understand security posture and capabilities, providing recommendations to risk mitigation, and escalate security risks and exceptions through appropriate channels. Additionally, this position will identify continuous improvements to information security risk management capabilities.

Major Areas of Responsibility

• Build a comprehensive IT risk and compliance program.
• Provide regular management reporting to demonstrate measurable progress of the program.
• Ensure continuous improvement to drive the effectiveness and maturity of the program.
• Ensure compliance with industry and legal requirements, frameworks, and guidelines (e.g. MA 201-CMR-17, PCI-DSS, SP 800-171, GDPR, HIPAA, FERPA.)
• Conduct risk analysis, vulnerability scanning and testing.
• Manage the cybersecurity awareness program and phishing simulation program.
• Manage the College's information security policy catalog.
• Partner with Legal to ensure full alignment on all current and upcoming data privacy regulations, including our responsibilities and obligations.
• Other duties as assigned.

Minimum Qualifications

• Bachelor's degree in Computer Science or related degree.
• Strong communication, team building, and collaboration skills required.
• Higher education experience is preferred.

Core Competencies

Skills that are required for this job and are in line with the College's mission e.g.

• Supervision
• Dependability
• Flexibility
• Service Oriented
• Excellent Written & Verbal Communication
• Proficient Problem Solving
• Understands Risk Management
• Excellent Innovation/Creativity
• Strong Teamwork & Team Facilitation
• Strong Interpersonal Skills
• Understands, values and respects diversity as an individual, in a team and within groups while fostering an inclusive and supportive environment.

To mitigate the spread and effects of COVID-19, and as an integral part of its public health and safety measures, College of the Holy Cross requires that all successful applicants show proof of full, up-to-date vaccination (including a booster dose once eligible) by an FDA-approved COVID-19 vaccine before beginning employment, unless an accommodation exempting the applicant from this policy has been granted. Applicants who wish to request an accommodation based on a disability or sincerely-held religious belief should inform Human Resources after an offer of employment is extended; please do not include any medical, genetic, or religious information in your application materials.

This is a full-time, exempt level position. The College is committed to providing competitive market pay for its employees. The annual salary for this position ranges from $80,000 - $85,000 and is commensurate with experience and qualifications. The College also offers a competitive benefits package for full-time staff, including:

• 10% College contribution to the 403(b) Retirement Plan (1 year wait waiver available)
• Hybrid work
• NEW - condensed summer 4-day work week
• Tuition benefits
• Wellness programs & ongoing Training and Development opportunities
• Generous paid time off
• Free parking and free use of the athletic/fitness facilities.
• Click here to learn more.

College Description

The College of the Holy Cross is a private, Jesuit Catholic, undergraduate institution serving approximately 3,100 students. Founded in 1843, Holy Cross is the oldest Catholic college in New England and has a tradition of academic excellence. It is located atop Mount Saint James in Worcester, Massachusetts. The picturesque, 174-acre campus is an award-winning and registered arboretum.

Region Description

Worcester is a city of approximately 200,000 people centrally located in the Commonwealth of Massachusetts. It is approximately one hour from Boston, Hartford, and Providence, and three hours from New York City. Worcester is known as the Heart of the Commonwealth. Worcester offers many cultural and recreational opportunities which you can read more about here.

The College of the Holy Cross is an EEO/AA/Disability/Vets Employer.

A member of the Higher Education Consortium of Central Massachusetts (HECCMA).

To review our Employee Benefit Options, please go to: https://www.holycross.edu/human-resources/benefits

Holy Cross Benefits at a Glance PDF for download: click here