The Director of Information Security and Operations has direct management responsibility for the IT Operations Center(s), Production Control, Operations Center (OC), information Security Office (ISO) Account Access, Business Continuity and IT Disaster Planning (BCDP) and IT physical security. The operations centers consist of locations for infrastructure and server consolidation for over 600 servers, monitoring services, various network gear, back-up equipment and data, infrastructure monitoring systems and physical access control systems. Production Control includes equipment and staff to perform Enterprise application process monitoring and job flow intervention. Document Services provides a wide range of commercial print and imaging functions for the University community. Account Access, BCDP, ISO and IT Physical Security combine to represent a comprehensive umbrella of IT related security services and includes oversight and coordination of the NIU Information Security Policy and enforcement of the NIU Acceptable Use Policy and the Security Access Policy.
The functional aspects of these high level activities include: coordination with internal and external enforcement authorities as relates to IT criminal investigation activities, coordinating response to copyright infringement notices, coordination of data breach responses, directing internal IT forensic analyses for administrative purposes, assessing and responding to IT related threats, providing proactive education and awareness notification as relates to information protection, immediate IT threat response and interfacing with end-users who are not in compliance with applicable University policy.
Additionally, this position is responsible for informing and coordinating with distributed Lan-Administrators and is the point-of-contact for external auditor response regarding IT security related issues. This position is the published designee for University representation as the Digital Millennium Copyright Act and lnternet Abuse I security contact. Generally speaking, the incumbent performs duties and is responsible for issues that are consistent with the role of a Chief IT Security Officer.
The Director of Information Security and Operations reports to the Associate Vice President for Information Technology who in turn reports to the Vice President for Outreach, Engagement, and Information Technologies. The Associate Vice President for Information Technology has responsibility for all computing (instructional, research, administrative data processing and personal productivity), telecommunications (including both voice and data) and document services on the NIU campus.