Deputy Chief Information Security Officer

Deputy Chief Information Security Officer (Deputy CISO)

University of Southern California - USC Office of Cybersecurity

The University of Southern California is seeking a seasoned cybersecurity leader to serve as the Deputy Chief Information Security Officer (Deputy CISO) within the USC Office of Cybersecurity. Reporting to the Chief Information Security Officer (CISO), the Deputy CISO provides enterprise leadership for cybersecurity governance and cross-functional oversight of critical cybersecurity domains across the university.

This role is responsible for advancing USC's cybersecurity strategy through governance, risk management, and operational coordination across the institution's diverse academic, research, and administrative environments. The Deputy CISO will lead cybersecurity governance functions and collaborate closely with Information Security Officers and university leadership to strengthen cyber risk management and expand cybersecurity capabilities across departments, schools, and units.

The Deputy CISO serves as the primary delegate to the CISO, assuming full decision-making authority in their absence and acting as a strategic advisor and potential successor to ensure continuity of cybersecurity leadership and execution of enterprise security objectives.

Applications will be accepted until the position is filled. For full consideration, please submit materials by the priority deadline of April 1, 2026.

Key Responsibilities include the following:

• Lead and oversee the Cyber Governance function, including cybersecurity training and awareness, cyber performance management, and policy management programs.

• Provide cross-functional oversight of key cybersecurity domains, including Identity & Access Management (IAM), Cybersecurity Architecture & Engineering, and Cyber Defense.

• Partner with Information Security Officers and stakeholders across departments, schools, and research units to coordinate cybersecurity initiatives and risk management activities across the university.

• Support and help drive strategic cybersecurity initiatives, ensuring alignment with the university's mission, research priorities, and operational needs.

• Oversee the development, implementation, and enforcement of cybersecurity policies, standards, and best practices across the enterprise.

• Strengthen and expand cybersecurity capabilities, tools, and processes that enhance protection of university systems, data, and research assets.

• Lead and mentor cybersecurity teams, fostering collaboration, professional growth, and operational excellence.

• Manage resources effectively, including oversight of budgets, staffing, and prioritization of cybersecurity initiatives.

• Ensure alignment with leading security frameworks, regulatory requirements, and industry standards (e.g., NIST, ISO 27001, FERPA, HIPAA).

• Serve as a trusted strategic advisor to the CISO and university leadership on cybersecurity risk, governance, and emerging threats.

• Assume full operational leadership of cybersecurity functions in the absence of the CISO, ensuring continuity of leadership and enterprise security operations.

Performing other related responsibilities as requested and when necessary. The university reserves the right to add or change duties at any time.

Minimum Qualifications:

• Bachelor's degree within Information Science, Computer Information Systems, Cyber Security or related field(s)

• 10 years' experience in governance, risk and compliance, team management and security frameworks

• Relevant cyber certification such as CISSP, GIAC, CISM.

• Demonstrated ability to align security initiatives with institutional objectives.

• Strong ability to coordinate cybersecurity efforts across diverse departments, schools, and research units.

• Experience in developing, implementing, and enforcing cybersecurity policies, standards, and best practices in a complex organizational environment.

• Comprehensive understanding of cybersecurity frameworks (e.g., NIST, ISO 27001), data protection regulations (e.g., FERPA, HIPAA), and risk mitigation strategies.

• Demonstrated ability to lead, mentor, and manage cybersecurity professionals, oversee budgets, and allocate resources effectively.

Preferred Qualifications:

• MBA or master's degree in computer science or related field(s)

• 15 years' experience in governance, risk and compliance, team management and security frameworks

• In-depth knowledge of industry standards, regulations, and new industry developments/trends.

• Ability to gain government and/or university security clearance (as required).

• Demonstrated experience with managing a GRC (Governance, Risk, and Controls) technology platform.

• Experience with defining requirements and use cases to enable and automate manual processes via technology platforms within Cyber Risk Management, Cyber Risk Quantification, Cyber Issue Management, Exception Reporting, etc.

• Strong documentation skills related to process workflow creation within the GRC and cyber risk management focus areas.

• Demonstrated track record of strategic leadership in a higher education or a similar environment and/or extensive experience in program development, performance management, and educational administration.

• Demonstrated ability to successfully manage a team, foster collaboration, and navigate complex situations.

• Excellent communication, problem-solving and decision-making skills.

• Demonstrated ability to lead change and innovation within an organization.

• Ability to navigate the university's complexity, along with negotiation skills to garner support from multiple stakeholders.

• Knowledge and experience in employing project management methodologies, strategic planning processes and performance measurement systems.

Required Documents and Additional Information

Both a resume and cover letter are preferred(may be uploaded as one file). Please do not submit your application without these documents.

The budgeted salary range for this position is$291,169 - $385,000.When extending an offer of employment, the University of Southern California considers factors such as the scope and responsibilities of the position, the candidate's work experience, education/training, key skills, internal peer alignment, federal, state, and local laws, contractual stipulations, grant funding, as well as external market and organizational considerations.

To support faculty and staff well-being, USC provides benefits-eligible employees with a broad range of benefits and perks to help protect their and their dependents' health, wealth, and future. These benefits are available as part of the overall compensation and total rewards package.