Information Security Officer; Hybrid​/Remote Eligible

Position: Information Security Officer (Hybrid/Remote Eligible) ABOUT SIMMONS Located in Boston’s historic Fenway area, Simmons University has a strong tradition of empowering women and challenging traditional gender roles. Simmons was founded for equality 125 years ago as one of the first higher education institutions dedicated to helping women become leaders. Today, our university continues to grow and evolve and now offers Boston’s only women’s undergraduate program and graduate programs open to all. You’re joining our community at an especially exciting time as we continue to innovate for the future. Simmons recently launched a six‑school academic structure that leverages our expert faculty and longstanding expertise in professions that make our communities stronger. In addition, we continue to highlight our high‑value education proposition that is delivering greater ROI to students and putting them on the fast track to career growth and success. You’ll find that people who work here truly believe in our mission of preparing students to become social justice‑oriented leaders who excel in their professions and their communities. This commitment and pride make for a dynamic workplace. As a university that values diversity, equity, and inclusion, Simmons encourages applications from all under‑represented groups. Simmons is committed to creating, developing, promoting, and enhancing inclusive hiring practices–at all levels, for all positions–ensuring diverse talent pools and the delivery of a consistent positive candidate experience. Simmons is an equal opportunity employer and is committed to continuing to develop a more diverse faculty, staff, student body, and curriculum. JOB SUMMARY The Information Security Officer (ISO) leads the university’s information security program, ensuring the confidentiality, integrity, and availability of institutional data and systems. This role provides strategic leadership and hands‑on technical expertise across security governance, risk management, incident response, and security awareness in support of the university’s academic and administrative mission. ESSENTIAL JOB FUNCTIONS • Develop, implement, and maintain the university’s information security program, including policies, standards, and procedures aligned with institutional goals and regulatory requirements. • Serve as the primary security advisor to Technology leadership, providing actionable guidance on risk, controls, and tradeoffs. • Conduct and oversee risk management activities, including risk assessments, vulnerability assessments, penetration testing, and vendor security reviews; track and prioritize remediation efforts. • Lead security incident response, including coordination, investigation, communication, mitigation, and post‑incident review. • Monitor emerging threats and recommend proactive security controls and mitigation strategies. • Provide technical security expertise in systems and security administration to protect and manage the university’s IT environment. • Administer and optimize enterprise security tools, including SIEM, EDR, WAF/CDN, MFA, vulnerability scanning, and security awareness platforms. • Design and deliver a comprehensive security awareness and phishing‑resilience program for faculty, staff, and students. • Collaborate across the institution, working with Technology, Legal, HR, and academic stakeholders to embed security into projects, services, and operations. • Prepare security documentation and reporting, including metrics, dashboards, and regular briefings for senior leadership and governance bodies. OTHER DUTIES AND RESPONSIBILITIES • Other duties as assigned. REQUIRED QUALIFICATIONS • Bachelor’s degree in a technology‑related field. • 3–5 years of progressively responsible experience in an information security role. • Strong background in systems and security administration. • Demonstrated experience developing and implementing information security programs and policies. • Experience designing and delivering security awareness and training programs. • Excellent written, verbal, and interpersonal communication skills. • Demonstrated discretion in handling sensitive and confidential information. PREFERRED QUALIFICATIONS • Master’s degree in a technology‑related field. • Industry… Apply tot his job Apply To this Job