George Mason University
Director, IT Cybersecurity Operations
🇺🇸
Fairfax, VA
🕑
Full-Time
💰
TBD
💻
Cybersecurity
🗓️
February 9th, 2026
CCSP
CISM
CISSP
Edtech.com's Summary
George Mason University is hiring a Director, IT Cybersecurity Operations. This role leads the daily protection of the university's IT environment by developing secure processes, monitoring cyber threats, responding to incidents, and executing strategic cybersecurity goals set by the Chief Information Security Officer.
Highlights
- Lead cybersecurity operations and incident response teams to protect university systems and data.
- Manage and supervise IT Cybersecurity Operations staff and enforce security policies and standards.
- Monitor, assess, and implement security solutions including network sensors, firewalls, endpoint protection, and SIEM tools.
- Ensure compliance with regulations such as NIST 800-171, FERPA, GLBA, HIPAA, PCI-DSS, and DMCA.
- Collaborate with university leadership, IT colleagues, external agencies, and security organizations like VASCAN and REN-ISAC.
- Requires a bachelor's degree in Cybersecurity, Computer Science, Information Systems, Engineering, or related fields, plus 10+ years in cybersecurity with 5+ years leading security operations.
- Must have experience managing SOC functions and systems administration, preferably within higher education or similar decentralized environments.
- Preferred qualifications include a master's degree, CISSP or related certifications, and experience with secure research platforms and higher ed security communities.
- U.S. citizenship is required; not eligible for visa sponsorship.
- Salary is commensurate with education and experience, with a 40-hour full-time administrative faculty position.
Director, IT Cybersecurity Operations Full Description
Department: Information Technology
Classification: Administrative Faculty
Job Category: Administrative or Professional Faculty
Job Type: Full-Time
Work Schedule: Full-time (1.0 FTE, 40 hrs/wk)
Location: Fairfax, VA
Workplace Type: On Site Required
Sponsorship Eligibility: Not eligible for visa sponsorship
Salary: Salary commensurate with education and experience
Criminal Background Check: Yes
About the Department:George Mason's Information Technology Services (ITS) organization provides information technology resources, systems, services, tools, and training to the university community. ITS's mission is to advance George Mason's strategic goals, support learning, enable scholarly endeavors, and improve institutional management by effectively leveraging the resources of ITS's supporting groups. The organization consists of five groups: Enterprise Infrastructure Services; Enterprise Applications; Learning Support Services; IT Security; and Enterprise Service Delivery.
About the Position:The Director, IT Cybersecurity Operations is responsible for ensuring the daily protection of the Mason enterprise by developing secure business processes, monitoring cyber threats, and responding to security incidents. The Director executes the strategic cybersecurity goals outlined by the Chief Information Security Officer.
Responsibilities:Work with Mason leadership to identify risks to the confidentiality, integrity, and availability of university systems and data;Provide leadership in the enforcement of security and associated policies;Provide leadership to the team in the analysis, discussion, and development of security policy, standards, and practices, and guide the acquisition of advanced security technology;Provide guidance and influence the university with regard to network and computing security needs in selecting hardware and software technologies, choosing between commercial and open source software, and determining whether services should be local or cloud-based;Collaborate with and support IT colleagues to monitor, assess, and test security solutions;Supervise IT Cybersecurity Operations staff;Prepare staff to respond around the clock (24/7/365) to security incidents (as required);Assess risk in proposed, new, or current IT systems;Maintain technology to detect and prevent cyber threats to Mason's business enterprise including network sensors, firewalls, endpoint protection, anti-virus, and security information and event management tools;Lead the Computer Security Incident Response Team (CSIRT);Prepare meaningful cybersecurity and risk metrics to inform the CISO and Chief Information Officer (CIO) and guide future Mason expenditures;Ensure Mason compliance with applicable laws, regulations, and requirements, including: NIST (National Institute of Standards and Technology) 800-171, FERPA (Family Educational Rights and Privacy Act), GLBA (Graham-Leach-Bliley Act), HIPAA (Health Insurance Portability and Accountability Act), PCI-DSS (Payment Card Industry Data Security Standard), and the DMCA (Digital Millennium Copyright Act);Respond to audit findings;Monitor and close assigned security tickets;Research, test, and propose new technology or processes to improve Mason cybersecurity;Communicate with Mason system administrators, faculty, staff, and students within and outside of ITS about cybersecurity issues;Provide cybersecurity advice to senior Mason leadership including the CISO, CIO, and Senior Vice President for Administration and Finance;Brief the Board of Visitors committees (as required);Work with internal and external parties to resolve incidents including University Counsel, Mason Police, and the Federal Bureau of Investigation;Maintain annual Certified Information Systems Security Professional (CISSP) currency;Participate and exchange information with industry and higher education security groups including the Virginia Alliance for Secure Computing and Networking (VASCAN) and Research & Education Networking Information Sharing & Analysis Center (REN-ISAC);Responsible for ensuring Mason's IT security policies are up to date and provide appropriate protections for Mason; andResponsible for ensuring Mason's IT security procedures are up to date and provide appropriate protections for Mason.
Required Qualifications:
Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Engineering, or related field, or equivalent combination of education and experience;Generally, 10+ years in cybersecurity, with generally 5+ years leading security operations or incident response teams in complex enterprises;Generally, 3+ years managing SOC functions (in house, MSSP, or hybrid);Demonstrated Systems Administration experience;Direct experience in higher education or similarly decentralized, open network environments, or equivalent experience supporting academic/research missions in government or non profit sectors;Familiarity with ransomware targeting universities, intellectual property theft, and nation state driven research espionage;Understanding of open-access networks typical in higher ed;Demonstrable consensus building skills and excellent communications skills, especially in writing and presentation;Demonstrated leadership across decentralized or federated IT environments;Ability to lead a cybersecurity operations program across colleges, research labs, and central IT with both authority and influence;Hands on leadership supporting research computing (e.g., HPC clusters, secure research enclaves, lab/OT networks, scientific instruments); andMust be a U.S. citizen.
Preferred Qualifications:
Master’s degree in related field;CISSP, CISM, GIAC (GCIH/GCIA/GCED/GRID), CCSP;NIST 800 171/CUI experience indicators;Experience establishing secure research platforms (CUI enclaves, PHI environments) and data use agreement processes;Knowledge of research computing systems—HPC clusters, lab instrumentation networks, secure enclaves;Participation in higher ed security communities (REN ISAC, EDUCAUSE); andPrior success integrating security into grant lifecycles (proposal, DMPs, reviews, audits).
Instructions to Applicants: For full consideration, applicants must apply for the Director, IT Cybersecurity Operations at https://jobs.gmu.edu/. Complete and submit the online application to include three professional references with contact information, and provide a cover letter and resume for review.
Posting Open Date: February 6, 2026
For Full Consideration, Apply by: February 23, 2026
Open Until Filled: Yes
About the Position:The Director, IT Cybersecurity Operations is responsible for ensuring the daily protection of the Mason enterprise by developing secure business processes, monitoring cyber threats, and responding to security incidents. The Director executes the strategic cybersecurity goals outlined by the Chief Information Security Officer.
Responsibilities:Work with Mason leadership to identify risks to the confidentiality, integrity, and availability of university systems and data;Provide leadership in the enforcement of security and associated policies;Provide leadership to the team in the analysis, discussion, and development of security policy, standards, and practices, and guide the acquisition of advanced security technology;Provide guidance and influence the university with regard to network and computing security needs in selecting hardware and software technologies, choosing between commercial and open source software, and determining whether services should be local or cloud-based;Collaborate with and support IT colleagues to monitor, assess, and test security solutions;Supervise IT Cybersecurity Operations staff;Prepare staff to respond around the clock (24/7/365) to security incidents (as required);Assess risk in proposed, new, or current IT systems;Maintain technology to detect and prevent cyber threats to Mason's business enterprise including network sensors, firewalls, endpoint protection, anti-virus, and security information and event management tools;Lead the Computer Security Incident Response Team (CSIRT);Prepare meaningful cybersecurity and risk metrics to inform the CISO and Chief Information Officer (CIO) and guide future Mason expenditures;Ensure Mason compliance with applicable laws, regulations, and requirements, including: NIST (National Institute of Standards and Technology) 800-171, FERPA (Family Educational Rights and Privacy Act), GLBA (Graham-Leach-Bliley Act), HIPAA (Health Insurance Portability and Accountability Act), PCI-DSS (Payment Card Industry Data Security Standard), and the DMCA (Digital Millennium Copyright Act);Respond to audit findings;Monitor and close assigned security tickets;Research, test, and propose new technology or processes to improve Mason cybersecurity;Communicate with Mason system administrators, faculty, staff, and students within and outside of ITS about cybersecurity issues;Provide cybersecurity advice to senior Mason leadership including the CISO, CIO, and Senior Vice President for Administration and Finance;Brief the Board of Visitors committees (as required);Work with internal and external parties to resolve incidents including University Counsel, Mason Police, and the Federal Bureau of Investigation;Maintain annual Certified Information Systems Security Professional (CISSP) currency;Participate and exchange information with industry and higher education security groups including the Virginia Alliance for Secure Computing and Networking (VASCAN) and Research & Education Networking Information Sharing & Analysis Center (REN-ISAC);Responsible for ensuring Mason's IT security policies are up to date and provide appropriate protections for Mason; andResponsible for ensuring Mason's IT security procedures are up to date and provide appropriate protections for Mason.
Required Qualifications:
Bachelor’s degree in Cybersecurity, Computer Science, Information Systems, Engineering, or related field, or equivalent combination of education and experience;Generally, 10+ years in cybersecurity, with generally 5+ years leading security operations or incident response teams in complex enterprises;Generally, 3+ years managing SOC functions (in house, MSSP, or hybrid);Demonstrated Systems Administration experience;Direct experience in higher education or similarly decentralized, open network environments, or equivalent experience supporting academic/research missions in government or non profit sectors;Familiarity with ransomware targeting universities, intellectual property theft, and nation state driven research espionage;Understanding of open-access networks typical in higher ed;Demonstrable consensus building skills and excellent communications skills, especially in writing and presentation;Demonstrated leadership across decentralized or federated IT environments;Ability to lead a cybersecurity operations program across colleges, research labs, and central IT with both authority and influence;Hands on leadership supporting research computing (e.g., HPC clusters, secure research enclaves, lab/OT networks, scientific instruments); andMust be a U.S. citizen.
Preferred Qualifications:
Master’s degree in related field;CISSP, CISM, GIAC (GCIH/GCIA/GCED/GRID), CCSP;NIST 800 171/CUI experience indicators;Experience establishing secure research platforms (CUI enclaves, PHI environments) and data use agreement processes;Knowledge of research computing systems—HPC clusters, lab instrumentation networks, secure enclaves;Participation in higher ed security communities (REN ISAC, EDUCAUSE); andPrior success integrating security into grant lifecycles (proposal, DMPs, reviews, audits).
Instructions to Applicants: For full consideration, applicants must apply for the Director, IT Cybersecurity Operations at https://jobs.gmu.edu/. Complete and submit the online application to include three professional references with contact information, and provide a cover letter and resume for review.
Posting Open Date: February 6, 2026
For Full Consideration, Apply by: February 23, 2026
Open Until Filled: Yes
Similar Jobs
Cyber Security Systems Engineer
Pennsylvania State University
🇺🇸 San Diego, CA
IT Security Architect
George Mason University
🇺🇸 Fairfax, VA
Senior Security Engineer - Platform
Preply
🇪🇸 Remote - ES
Principal Security Engineer
MathWorks
🇺🇸 Natick, MA
Director of Information Security
Hofstra University
🇺🇸 Hempstead, NY
