Ramsey County · 1 day ago
Information Services Deputy Director - Chief Information Security Officer (Unclassified)
Minneapolis–Saint Paul, WI
Full-time
Hybrid
Lead/Staff, Director/Executive
$10K/yr - $50K/yr
5+ years expRamsey County is seeking an Information Services Deputy Director and Chief Information Security Officer (CISO) to provide strategic leadership for their Infrastructure Services and Security Services divisions. This role involves managing a comprehensive information security program, ensuring IT infrastructure reliability, and collaborating with various departments to mitigate security risks while adhering to regulatory requirements.
Government Administration
No H1B
Responsibilities
Promote a diverse, culturally competent and respectful workplace
Provide information security leadership and direction through the continued development, implementation, and maintenance of the enterprise information security program
As part of the IS management team, assist the Chief Information Officer in developing information technology strategic plans to support the vision, mission, goals and values of the county
Lead and engage in the planning, development and implementation of the strategy and vision for all technology services and functions
Advocate for and protect the enterprise information assets by serving as the key information security advisor to the organization and act as the official information security representative to internal customers, external partners, audit and regulatory organizations
Build a comprehensive enterprise security strategy which includes implementing, directing, and overseeing the governance, assessment, consulting, monitoring and reporting functions
Partner with Office of Compliance to develop, implement, update and enforce county-wide information security policy, procedures, guidelines, and standards to ensure county-wide compliance with federal and Minnesota statutory and regulatory requirements for information security including the Health Insurance Portability and Accountability Act (HIPAA), Payment Card Industry Data Security Standard (PCI-DSS), Criminal Justice Information Services (CJIS) requirements and other applicable requirements
Consult with management on information security matters, such as the effect of state and federal laws, industry related regulations, and industry best practices on security related initiatives, projects, business operations, and department specific policy
Monitor information security trends internal and external to Ramsey County, understand potential threats, vulnerabilities and control techniques and provide consultation to executive management and departments about information security issues and risks affecting the organization and advise them on the appropriate actions to be taken
Maintain relationships with local, state and federal law enforcement and other related government agencies
Establish and maintain effective relationships and work collaboratively across departments to facilitate IT risk analysis and risk management processes, identify acceptable levels of risk, initiate business practice changes and establish roles and responsibilities to ensure data is protected
Ensure the security of the remote and mobile computing environment
Provide strategic and tactical security guidance for all IT projects, including the evaluation and recommendation of technical controls
Manage security incidents and events to protect IT assets and data. Act as a central point of contact for all data security compromising incidents, develop incident handling procedures, and report incidents as required by law
Manage the security team including hiring staff, mentoring, coaching, providing professional development opportunities, establishing performance standards, completing evaluations, and recognizing and addressing performance problems
Create and facilitate the information security risk assessment process, including reporting to executive management and oversight of remediation efforts to address findings
Create and manage a county-wide information security and risk management awareness training program
Develop and manage effective recovery plans that ensure data privacy and information integrity in response to business need and compliance requirements in the event of a disaster. Provide leadership with updates of the development, documentation and maintenance of the county-wide disaster recovery plans
Monitor and report on county information, security activities and compliance
Own the end-to-end lifecycle, strategy, performance, and continual improvement of one or more assigned IT services to ensure they meet business needs, defined Service Level Agreements (SLAs) and customer expectations
In the absence of the Chief Information Officer, may assume the duties and responsibilities of the CIO, managing and providing general oversight of the IS organization
Qualification
Required
Bachelor's Degree in management information systems, computer science or a related field
Five years of progressively responsible information technology experience in the areas of security and risk management, including at least two years in a leadership role
Benefits
Medical, dental and vision insurance
Pre-tax Benefit Program
Paid time off
Retirement benefits
Transit and parking
Employee well-being
Life Insurance and Disability leave
Career development
Company
Ramsey County
Ramsey County offers equal access to employment, programs, and services regardless of race, color, ethnicity, religion, age, or gender.
1001-5000 employees
Funding
Current Stage
Late StageLeadership Team
Alex Mattson Kotze
Chief Financial Officer
Brittany Diamond
Human Resources Business Partner
Recent News
2025-09-17
2025-07-19
Company data provided by crunchbase