Department
TECHNOLOGY SERVICES (Information Security and Compliance)
Salary
$160,000 – $180,000 per year
Position Overview
The Chief Information Security Officer (CISO) will oversee the development, implementation, and use of information security and cybersecurity resources and practices throughout the organization. This role will guide the university's strategic IT initiatives to enhance productivity, efficiency, and security.
General Responsibilities
* Develop and implement an IT strategy that aligns with the organization's business goals and objectives, ensuring efficient and secure operation of all IT systems.
* Lead and manage the IT department and/or unit, including hiring, training, and development of IT staff; foster a culture of innovation, collaboration, and continuous improvement.
* Stay current with industry trends and emerging technologies, evaluate their potential impact, and recommend strategic investments.
* Develop and manage the UISO budget, ensuring cost-effective use of resources and adherence to financial goals.
* Ensure the organization's IT systems comply with relevant regulations and standards, managing risks associated with technology use.
* Establish and maintain relationships with IT vendors and service providers, negotiate contracts, and ensure delivery of quality services.
Position Specific Responsibilities
* Provide strategic and operational leadership of all functions for University Information Security Office (UISO).
* Demonstrate a commitment to Loyola's mission and strategy by supporting ITS core values of service excellence and continuous development.
* Develop and implement plans to ensure institutional compliance with applicable laws, regulations, and requirements related to information security.
* Create and manage the university's information security program and establish relevant security metrics.
* Act as an independent reviewer to ensure technology compliance issues and concerns within Loyola University Chicago are appropriately evaluated, investigated, and resolved.
* Coordinate creation, testing, and execution of business continuity and disaster recovery plans across the university's departments and schools.
* Communicate regularly in writing and in‐person to end users and resource contributors about the state of information security, security expectations, and ongoing risk status.
* Identify staff development and training plans and succession planning for UISO staff.
* Participate in relevant professional activities, including university-wide involvement and external professional organizations.
* Perform other duties as required.
Minimum Education and / or Work Experience
* Master's degree in Management Information Systems, Computer Science, Engineering or equivalent experience.
* At least 10 years of experience in information security and/or network/security management.
* At least 7 years of experience managing information security, technology risk or compliance personnel.
* Proven experience with technology risk assessment and regulatory compliance (FERPA, GLBA, HIPAA, PCI DSS, DMCA, GDPR, Illinois Personal Information Protection Act, and similar regulations).
* Familiarity with security concepts such as defense‐in‐depth, the principle of least privilege, access controls, risk management, and mitigating controls.
* Demonstrated skills related to business continuity and disaster recovery planning.
* Experience in Higher Education is a plus, but not required.
* Experience with IT frameworks such as NIST or ISO 27000 series is a plus, but not required.
Qualifications Language Ability
Excellent communication (oral, written, presentation), interpersonal and consultative skills.
Core consulting skills such as business writing, presenting, and analytic comparisons.
Ability to convey technical concepts to both technical and non‐technical audiences.
Computation Ability
Strong analytical and problem-solving skills.
Reasoning Ability
Detail oriented, results focused, and able to support change management initiatives.
Synthesizes complex or diverse information; generates creative solutions; identifies and resolvesproblems timely; gathers and analyzes information skillfully; develops alternative solutions; works well in both group and individual problem‐solving situations.
Interpersonal
Strong work ethic, independent and team‐oriented, conflict‐resolution skills, confidentiality, adherence to ITS and university data security policies, positive team spirit, influence, continuous skill building, and respect for diversity.
Organizational Skills
Supports organizational goals and values; develops strategies to achieve objectives; adapts strategy to changing conditions; includes appropriate people in decision making; strong administrative and organizational skills.
CISSP or CISM certification required.
GIAC certifications are a plus, but not required.
Computer Skills
Demonstrated competence related to network and web application firewalls, intrusion prevention, security monitoring, multi‐factor authentication, data loss prevention, data encryption/transfer, email and end‐user security, log management, and security incident and event management technologies.
Proficient in Microsoft applications.
Other Requirements
Supervisory Responsibilities : Yes
Required operation of university owned vehicles : No
Direct animal or patient contact : No
Working Conditions
Irregular Hours
Compensation
Position Maximum Salary : $180,000 per year
Position Minimum Salary : $160,000 per year
Application Information
Open Date : 04 / 15 / 2026
EEO Statement
Loyola University Chicago adheres to all applicable federal, state, and / or local civil rights laws and regulations prohibiting discrimination in private institutions of higher education. Please see the University's Nondiscrimination Policy.
Chief Information Security Officer - Rome, Italy
#J-18808-Ljbffr