Oklahoma State University
Chief Information Security Officer
Oklahoma State University, Stillwater, Oklahoma, United States, 74074
Campus
OSU-Stillwater Contact Name & Email
Chelsie Whitelock, osuciso@buffkinbaker.com Work Schedule
Monday through Friday, 8:00am-5:00pm with occasional evenings and weekends. Appointment Length
Regular Continuous/Until Further Notice Hiring Range
Commensurate with education and experience Priority Application Date
While applications will be accepted until a successful candidate has been hired, interested parties are encouraged to submit their materials by September 5, 2025 to ensure full consideration. Special Instructions to Applicants
Applications (letter of interest addressing the qualifications and responsibilities listed below, current resume, and the names, email addresses and telephone numbers of five references) must be submitted to jobs.okstate.edu, posting #492963. For questions, please contact Martin Baker using the information below.
Martin M. Baker, Managing Partner Buffkin/Baker Chelsie Whitelock, Associate Partner osuciso@buffkinbaker.com About this Position
The Chief Information Security Officer (CISO) provides strategic leadership for the university's comprehensive information security and cybersecurity programs. This position is responsible for protecting the institution's digital assets, research data, student information, and technology infrastructure while enabling academic excellence and research innovation. The CISO reports directly to the Chief Information Officer and serves as a key collaborator to the senior leadership team. Required Qualifications
Bachelor's (degree must be conferred on or before agreed upon start date) Seven years of information security work experience from one or a combination of security architecture and design, security engineering, auditing and compliance, incident response and forensics, security awareness training, and the management of an IT security department. Demonstrated experience managing enterprise-wide security programs in complex distributed environments. Familiarity with Zero Trust architecture principles and enterprise identity governance. Experience in conducting security tabletop exercises or cyber incident simulations; use of cybersecurity maturity models such as NIST CSF Tiers or CMMC. Professional security certifications required (CISSP, CISM, CISA, or equivalent). Excellent written and verbal communication skills with ability to present complex technical concepts to non-technical audiences. Strong leadership and team management capabilities. Knowledge of emerging technologies in higher education (cloud computing, IoT, AI/ML security implications).
Preferred Qualifications
Bachelor’s degree in computer science, management information systems, computer engineering, or related area. Higher education experience. Deep knowledge of information security frameworks (NIST Cybersecurity Framework, ISO 27001/27002, CIS Controls). Experience with security technologies including SIEM, endpoint protection, network security tools, and cloud security platforms. Knowledge of research security requirements and federal compliance mandates. Experience with security program maturity assessments and continuous improvement initiatives.
#J-18808-Ljbffr
OSU-Stillwater Contact Name & Email
Chelsie Whitelock, osuciso@buffkinbaker.com Work Schedule
Monday through Friday, 8:00am-5:00pm with occasional evenings and weekends. Appointment Length
Regular Continuous/Until Further Notice Hiring Range
Commensurate with education and experience Priority Application Date
While applications will be accepted until a successful candidate has been hired, interested parties are encouraged to submit their materials by September 5, 2025 to ensure full consideration. Special Instructions to Applicants
Applications (letter of interest addressing the qualifications and responsibilities listed below, current resume, and the names, email addresses and telephone numbers of five references) must be submitted to jobs.okstate.edu, posting #492963. For questions, please contact Martin Baker using the information below.
Martin M. Baker, Managing Partner Buffkin/Baker Chelsie Whitelock, Associate Partner osuciso@buffkinbaker.com About this Position
The Chief Information Security Officer (CISO) provides strategic leadership for the university's comprehensive information security and cybersecurity programs. This position is responsible for protecting the institution's digital assets, research data, student information, and technology infrastructure while enabling academic excellence and research innovation. The CISO reports directly to the Chief Information Officer and serves as a key collaborator to the senior leadership team. Required Qualifications
Bachelor's (degree must be conferred on or before agreed upon start date) Seven years of information security work experience from one or a combination of security architecture and design, security engineering, auditing and compliance, incident response and forensics, security awareness training, and the management of an IT security department. Demonstrated experience managing enterprise-wide security programs in complex distributed environments. Familiarity with Zero Trust architecture principles and enterprise identity governance. Experience in conducting security tabletop exercises or cyber incident simulations; use of cybersecurity maturity models such as NIST CSF Tiers or CMMC. Professional security certifications required (CISSP, CISM, CISA, or equivalent). Excellent written and verbal communication skills with ability to present complex technical concepts to non-technical audiences. Strong leadership and team management capabilities. Knowledge of emerging technologies in higher education (cloud computing, IoT, AI/ML security implications).
Preferred Qualifications
Bachelor’s degree in computer science, management information systems, computer engineering, or related area. Higher education experience. Deep knowledge of information security frameworks (NIST Cybersecurity Framework, ISO 27001/27002, CIS Controls). Experience with security technologies including SIEM, endpoint protection, network security tools, and cloud security platforms. Knowledge of research security requirements and federal compliance mandates. Experience with security program maturity assessments and continuous improvement initiatives.
#J-18808-Ljbffr