Director of IT Security and Compliance Program Manager Senior II - State of Maryland : Job Details

Introduction

The Maryland State Department of Education is dedicated to supporting a world-class educational system that prepares all students for college and career success in the 21st century. With excellent stewardship from our divisions, we oversee State and federal programs that support the needs of a diverse population – students, teachers, principals, and other educators throughout Maryland.

This is a Management Service position, and serves at the pleasure of the Appointing Authority.

GRADE

24

LOCATION OF POSITION

Nancy S. Grasmick Education Building200 W. Baltimore StreetBaltimore, MD 21201

POSITION DUTIES

The Director of IT Security and Compliance serves as the Chief Information Security Officer (CISO) for the Maryland State Department of Education (MSDE). This role is responsible for developing and executing a comprehensive security strategy focused on MSDE's systems, data, and security needs, in coordination with the Department of Information Technology (DoIT). The CISO ensures the protection of MSDE's educational data and systems through security controls, governance frameworks, and compliance measures aligned with the Maryland IT Security Manual. This position collaborates with DoIT on enterprise-wide security initiatives while addressing MSDE-specific requirements such as data privacy, audit readiness, security awareness, and incident response for the agency's educational technology environment. The role acts as the primary security liaison among MSDE leadership, DoIT security personnel, and Local Education Agencies (LEAs), supporting a cohesive security posture that advances the agency's educational mission and contributes to legislative and budget planning related to information security.

The CISO works collaboratively with MSDE divisions and partners to find solutions that enable the MSDE mission to progress securely, ensuring compliance with state, federal, and industry standards.

Duties Include, But Are Not Limited To

• Develops, maintains, and oversees the MSDE-specific Security Program in alignment with DoIT's enterprise security framework.
• Develops and maintains security policies addressing MSDE's educational and operational systems.
• Provides management and leadership to the IT Security Program and team.
• Reviews and updates security policies to protect student data and administrative information across MSDE systems.

• Provides reports on student data, personally identifiable information, and controls governing data protection and compliance.
• Reviews Authority to Operate practices and compliance status across the agency.
• Leads and coordinates responses to audits from OLA, DBM, DoIT, and federal security controls.
• Prepares ad-hoc reports for CIO and leadership to support the Security Program.

• Collaborates with DoIT to advise on best practices, processes, and security requirements. Assists with or facilitates security incident responses for schools as needed.

Minimum Qualifications

Education: Bachelor's degree in Cyber Security, Computer Science, Information Technology, or related field, or equivalent experience.

Experience: Seven (7) years in cybersecurity or IT with significant security responsibilities; at least three (3) years of supervision of cybersecurity professionals.

Note: Substitutions include senior security certifications (CISSP, CISM, etc.), military/federal certifications, or additional security-related experience.

Desired Qualifications

• Experience in government or education sectors.
• Master's degree in information security or a related field.
• Additional certifications from CompTIA, EC-Council, (ISC)2, ISACA, GIAC.

Special Requirements

Applicants must consent to State and FBI (CJIS) background checks.

SELECTION PROCESS

Applicants should provide comprehensive information demonstrating their qualifications. The eligible list remains in effect for at least one year.

EXAMINATION PROCESS

The assessment will consider education, training, and experience related to the position. All qualifications must be thoroughly documented.

Foreign education equivalency must be verified prior to hire.

Benefits

State of Maryland benefits apply.

FURTHER INSTRUCTIONS

Applicants should complete the online application and submit a professional resume. Paper applications are available upon request and should be mailed or faxed by the deadline. All materials must be complete and received by the closing date. For questions, contact 410-###-####. Accommodations are available for individuals with disabilities.

Proof of eligibility to work is required. Misrepresentation may result in non-selection or termination. Maryland is an equal opportunity employer, encouraging diversity, including veterans, individuals with disabilities, and bilingual candidates.