Enable job alerts via email!
Virtual Chief Information Security Officer vCISO MD
Vensure Employer Solutions
United States
Remote
USD 100,000 - 150,000
Part time
Job summary
A leading IT consulting firm is seeking a highly experienced Virtual Chief Information Security Officer (vCISO) to support a higher education client. This remote, part-time role involves approximately 20 hours per week, leading cybersecurity efforts and compliance under regulations such as GLBA. The ideal candidate has extensive IT security experience and relevant certifications.
Qualifications
- 7–10+ years of experience in IT security, including leadership roles.
- Strong analytical skills to conduct risk assessments.
- Experience with frameworks such as CIS, NIST, ISO.
Responsibilities
- Conduct detailed cybersecurity risk assessments.
- Lead compliance efforts under GLBA.
- Implement and update cybersecurity policies.
Skills
Education
Tools
Job description
****Position Summary
A leading provider of advanced IT consulting services, is seeking a highly experienced Virtual Chief Information Security Officer (vCISO) to support one of our higher education clients. This is a remote, part-time consulting role requiring approximately 20 hours per week, with potential for additional hours during cybersecurity incidents. The vCISO will serve as a strategic advisor and hands-on security leader, supporting our client in strengthening their cybersecurity program, enhancing regulatory compliance, and managing cyber risk.
Essential Duties and Responsibilities
- Conduct detailed cybersecurity risk assessments, including analysis of current security controls, vulnerabilities, and threat landscape
- Lead compliance efforts under the Gramm-Leach-Bliley Act (GLBA), serving as the Qualified Individual (QI) to report to executive leadership
- Update and implement cybersecurity policies: Incident Response, Vendor Management, Data & Asset Management, and more
- Provide oversight and strategic direction for incident response, including breach containment, investigation, post-incident review, and reporting
- Guide the adoption of security frameworks (e.g., CIS Critical Security Controls), Zero Trust Architecture, and Cloud Security Posture Management
- Support third-party risk evaluations using HECVAT and strengthen vendor security oversight
- Provide monthly reports, dashboards, and executive briefings on security KPIs/KRIs
- Review and improve security awareness training, conduct tabletop exercises, and advise on cyber insurance preparedness
Knowledge, Skills and Abilities
- Strong understanding of GLBA, FERPA, HIPAA, and Maryland/state privacy regulations
- Excellent communication skills with ability to present to executive and board-level stakeholders
- Ability to work independently as a strategic consultant while collaborating with client teams
Education & Experience
- Bachelor's degree in Cybersecurity, IT, Computer Science, or a related field (Master's preferred)
- 7–10+ years of experience in IT security, including leadership in CISO or equivalent roles
- At least one of the following certifications (current):
- CISSP (Certified Information Systems Security Professional)
- CISM (Certified Information Security Manager)
- CISA (Certified Information Systems Auditor)
- Experience with frameworks such as CIS, NIST, ISO, and cloud platforms like Microsoft 365, AWS, or Azure
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
Follow us
