Senior Manager, Information Security & Data Privacy
Harvard University Information Technology (HUIT) is a community of Information Technology professionals committed to delivering service and technological solutions in support of teaching, learning, research and administration. We are recruiting an IT workforce that has both breadth in their ability to collaborate and innovate across disciplines - and depth in specific areas of expertise. HUIT offers opportunities for IT professionals to learn and work in a unique technology landscape and service-focused environment. If you are a technically proficient, nimble, user-focused, and accountable IT professional who also connects with the importance of collaborating well in a team environment, we are looking for you!
Harvard's Information Security and Data Privacy (ISDP) team is a prominent office with university-wide purview and an important purpose: to safeguard the systems and data that propel Harvard's noble mission and to bolster the university's trustworthiness as a steward of personal information. We're passionate about privacy and security, and our work is meaningful, impactful, and deeply rewarding.
In ISDP, team health comes first. We cultivate a culture of openness, positivity, growth, and trust. We even have a Chief Fun Officer role to arrange our team activities! Ours is a collegial environment where we support one another and where we encourage taking risks in the name of progress.
Want to be part of something new? At Harvard, we're taking the novel approach of fully integrating data privacy and information security into a single program that we're calling "PrivSec." By combining the two, these complementary pursuits can act in concert and on equal footing, where the whole is greater than the sum of its parts. Our PrivSec journey is just beginning, with strong potential for creating a new standard to be emulated elsewhere.
We are hiring a Senior Manager, PrivSec Architecture and Assessments to join our Standards & Culture team (S&C). Our team is devoted to helping community members apply pragmatic controls to offset identified risks. The Senior Manager will report to the Director of Standards & Culture, and their primary focus will be to manage a small team responsible for risk assessments and the development of technical standards. The successful candidate will be a blend of trusted advisor, technologist, communicator, and risk assessor.
Principal Duties and Responsibilities (Essential Functions*):
In collaboration with the ISDP program leaders and other university technology staff, the Senior Manager will be responsible for developing, implementing, and overseeing the university's PrivSec risk assessment program as well as coordinating the development and publication of technical standards. The Senior Manager will continuously improve the program to meet the evolving regulatory and technology landscape. This position will also manage a small team, engage in strategic relationships, and collaborate on department-level projects.
Typical Core Duties:
- Lead a team of PrivSec professionals
- Foster a culture of collaboration and innovation
- Oversee the execution of PrivSec risk assessments at scale & documentation and publishing of technical standards
- Identify and engage in strategic partnerships within the university community
- Partner with Harvard's School PrivSec Officers to develop and deliver enterprise services and solutions
- Collaborate with ISDP team members on a variety of projects
- Identify opportunities for process and program improvements
- Monitor and report on objective and key results (OKR) metrics
- Keep up to date with developments in the information security and data privacy industries
- Minimum of seven years' post-secondary education or relevant work experience
- Supervisory Experience
The following Additional Qualifications are strongly preferred. If you meet some, but not all, you are still encouraged to apply; we value employees with a willingness to learn.
- Broad IT knowledge and a passion for privacy and security
- Thorough understanding of information security and/or data privacy concepts and principles
- Strong analytical, interpersonal and communication skills
- Adaptability and a willingness to take ownership of a given task or project
- Experience performing risk assessments
- Some team lead, people management or program management experience
- Familiarity with GRC, policy, standards or procedures development
- Security and privacy certifications, e.g., CIPP, CISM, CISSP, CRISC, etc.
- Work is performed in an office setting
Please provide a cover letter with your application.
- Harvard University requires pre-employment reference and background screening.
- We are unable to provide work authorization and/or visa sponsorship.
- This position has a 180-day orientation and review period.
Harvard University welcomes individuals with disabilities to apply for positions and participate in its programs and activities. If you would like to request an accommodation or have questions about the physical access provided, please contact our University Disability Resources Department.
Work Format Details
HUIT actively supports hybrid work where business needs allow. Some presence on campus may be necessary based on needs and the nature of the work, such as bi-monthly or quarterly team meetings. Additional travel to campus may be necessary based on business needs and the nature of work. Examples include bi-annual or quarterly Town Halls, critical business meetings or other work events. Advance notice will be provided. Additional details will be discussed during the interview process. All remote work must be performed within one of the Harvard Registered Payroll States, which currently includes Massachusetts, Connecticut, Maine, New Hampshire, Rhode Island, Vermont, Georgia, Illinois, Maryland, New Jersey, New York, Virginia, Washington, and California (CA for exempt positions only). Certain visa types and funding sources may limit work location. Individuals must meet work location sponsorship requirements prior to employment.
More about HUIT:
Harvard University Information Technology (HUIT) is responsible for the strategy, planning, and delivery of information technology across the University. Our mission is to assure Harvard's leadership in IT. We strive to make it easier for faculty, students, and staff to teach, research, learn and work through the effective use of information technology. HUIT's core values are User Focused, Collaborative, Innovative and Open.
HUIT's core values are:
HUIT's IT Academy aims to enable each IT staff person to grow professionally and become a trusted partner to her or his team. The IT Academy is built on the belief that every IT staff member across the University (including technology employees at each school and campus) can grow in her or his area of expertise as well as building strong people and project management skills. Learn more here: https://itacademy.harvard.edu/
We invite you to visit Harvard's Total Rewards website (https://hr.harvard.edu/totalrewards) to learn more about our outstanding benefits package, which may include:
- Paid Time Off: 3-4 weeks of accrued vacation time per year (3 weeks for support staff and 4 weeks for administrative/professional staff), 12 accrued sick days per year, 12.5 holidays plus a Winter Recess in December/January, 3 personal days per year (prorated based on date of hire), and up to 12 weeks of paid leave for new parents who are primary care givers.
- Health and Welfare: Comprehensive medical, dental, and vision benefits, disability and life insurance programs, along with voluntary benefits. Most coverage begins as of your start date.
- Work/Life and Wellness: Child and elder/adult care resources including on campus childcare centers, Employee Assistance Program, and wellness programs related to stress management, nutrition, meditation, and more.
- Retirement: University-funded retirement plan with contributions from 5% to 15% of eligible compensation, based on age and earnings with full vesting after 3 years of service.
- Tuition Assistance Program: Competitive program including $40 per class at the Harvard Extension School and reduced tuition through other participating Harvard graduate schools.
- Tuition Reimbursement: Program that provides 75% to 90% reimbursement up to $5,250 per calendar year for eligible courses taken at other accredited institutions.
- Professional Development: Programs and classes at little or no cost, including through the Harvard Center for Workplace Development and LinkedIn Learning.
- Commuting and Transportation: Various commuter options handled through the Parking Office, including discounted parking, half-priced public transportation passes and pre-tax transit passes, biking benefits, and more.
- Harvard Facilities Access, Discounts and Perks: Access to Harvard athletic and fitness facilities, libraries, campus events, credit union, and more, as well as discounts to various types of services (legal, financial, etc.) and cultural and leisure activities throughout metro-Boston.
Department Office Location
USA - MA - Cambridge
I0459M IT Info Security Management V
Hybrid (partially on-site, partially remote)
00 - Non Union, Exempt or Temporary
Commitment to Equity, Diversity, Inclusion, and Belonging
Harvard University views equity, diversity, inclusion, and belonging as the pathway to achieving inclusive excellence and fostering a campus culture where everyone can thrive. We strive to create a community that draws upon the widest possible pool of talent to unify excellence and diversity while fully embracing individuals from varied backgrounds, cultures, races, identities, life experiences, perspectives, beliefs, and values.
We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, disability status, protected veteran status, gender identity, sexual orientation, pregnancy and pregnancy-related conditions, or any other characteristic protected by law.
LinkedIn Recruiter Tag (for internal use only)