Information Security Strategy: Develop and implement a comprehensive information security strategy aligned with the goals and objectives of the City of Tampa.

Policy Development: Formulate and enforce information security policies, procedures, and standards to protect data and information assets.

Risk Management: Identify, assess, and prioritize information security risks, and develop risk mitigation plans to safeguard the organization.

Compliance: Ensure compliance with relevant local, state, and federal regulations, as well as industry best practices in information security.

Incident Response: Develop and oversee incident response plans, ensuring the organization is well-prepared to respond effectively to security incidents.

Security Awareness Training: Implement ongoing security awareness training programs to educate employees and stakeholders on security best practices.

Vendor Management: Assess and manage the security posture of third-party vendors and partners.

Security Architecture: Provide guidance on the design and implementation of secure information systems and infrastructure.

Security Audits and Assessments: Conduct regular security audits, assessments, and penetration testing to identify vulnerabilities and recommend corrective actions.

Collaboration: Work closely with Information Technology teams, legal, compliance, and other relevant departments to ensure a unified and holistic approach to information security.

SUPERVISORY RESPONSIBILITIES:

Lead and manage a team of information security professionals.

Provide mentorship, guidance, and performance evaluations for direct reports.

Oversee the development of the team's skills and competencies through training and professional development initiatives.

Collaborate with HR in recruitment and onboarding processes for new team members.

Knowledge in: understanding of information security principles, frameworks, and standards (ISO 27001, NIST, CIS, etc.). Familiarity with local, state, and federal regulations related to information security and privacy. Current knowledge of emerging trends, threats, and technologies in the field of information security.

Skilled in: Strong leadership and strategic planning skills. Excellent communication and interpersonal skills to effectively convey complex security concepts to diverse stakeholders. Analytical and problem-solving skills to assess and address information security challenges. Project management skills to coordinate and implement security initiatives.

Abilities to: lead and inspire a team, fostering a collaborative and innovative work environment; make informed decisions under pressure and adapt to evolving security landscapes; balance security requirements with operational needs and user experience. Strong commitment to ethical conduct and maintaining the highest standards of integrity.