Job Description
Job Description
Job Title: Virtual Chief Information Security Officer (vCISO)
Company: Mfinite Consulting
Location: Remote (U.S. Based)
Type: Part-Time (up to 20 hours per week)
About Us
Mfinite Consulting is a certified professional services firm that provides customized solutions in management consulting, IT support, and staffing. We are dedicated to strengthening organizations through improved operations, enhanced workforce capabilities, and fostering innovation. As a minority- and veteran-owned business, we take pride in building long-term partnerships with a focus on excellence and client success.
Position Overview
Mfinite Consulting is seeking an experienced Virtual Chief Information Security Officer (vCISO) to provide part-time, strategic leadership in cybersecurity for one of our higher education clients. As the vCISO, you will be responsible for leading the development and implementation of an effective information security program, ensuring compliance with industry standards and regulations such as the Gramm-Leach-Bliley Act (GLBA), and providing security leadership during incidents or breaches.
Key Responsibilities:
- Lead cybersecurity initiatives, including conducting risk assessments and developing information security programs.
- Develop strategies to enhance the client's security posture and address vulnerabilities.
- Ensure compliance with relevant regulations, including GLBA, and present quarterly security reports to leadership.
- Oversee incident response efforts, providing leadership in the event of a breach or security incident.
- Review, update, and implement cybersecurity policies, including incident response, data management, and asset management.
- Provide guidance on real-time threat analysis from the security operations center.
- Collaborate with third-party vendors and perform partner evaluations using the Higher Education Community Vendor Assessment Toolkit (HECVAT).
- Write a comprehensive incident response plan and conduct post-incident reviews.
Qualifications:
- Education: Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field. A Masters degree is preferred (Accredited U.S. college/university).
- Experience: Minimum of 7-10 years of experience in IT security roles, with leadership experience in CISO-level positions or similar.
- Certifications: CISSP, CISM, or CISA certification is required.
- Skills: Strong leadership, communication, and strategic planning abilities. Proficiency with security frameworks such as NIST 800-53 and CIS Critical Security Controls. Knowledge of cybersecurity technologies and incident response practices.
- Compliance Knowledge: Experience in regulatory compliance and risk management practices.
- Continual Learning: Commitment to staying current on industry trends and threats through ongoing education.
Contract Terms:
- Contract Duration: 1 year with the option for renewal.
- Hours: Up to 20 hours per week, flexible during regular business hours, with the potential for increased hours during incidents.
How to Apply:
To apply for this position, please submit your resume, certifications, and a cover letter outlining your experience and qualifications.
Mfinite Consulting is an Equal Opportunity Employer
We encourage candidates from diverse backgrounds to apply.