Chief Information Security Officer

Current employees: Please apply through the employee portal to be considered for this opportunity.

Pay Range:

Department:

Job Type:

Exemption Status:

Closing Date (Open Until Filled if No Date Specified):

The Opportunity:

The Vision

Multnomah County is seeking a visionary Chief Information Security Officer (CISO) who understands that security is a human endeavor powered and protected by cutting-edge technology.

In this role you will serve as the strategic link between technical security frameworks and human-centric engagement. You will champion a culture where robust security is built on a foundation of empathy and proactive education. As a key advocate for our community you will confidently represent security interests to both technical teams and executive leadership. You will oversee the availability integrity and confidentiality of information systems ensuring that security protocols serve as a catalyst for innovation across the County.

Your Core Mission

• Human-Centered Leadership: Build a culture where security is a shared responsibility. You will cultivate deep relationships across departments and use emotional empathy to foster trust and layered security.
  

• Proactive Threat Hunting: Move beyond passive defense. You will oversee sophisticated threat-hunting operations to neutralize adversaries before they reach the perimeter.
  

• The Voice of Security: Act as a high-profile advocate. Whether its a community meeting or a sensitive board briefing you possess the public speaking prowess to make complex risks relatable to non-technical stakeholders.
  

• AI & Automation Orchestration: Lead the charge in integrating AI-driven security tools. Youll leverage automation to eliminate alert fatigue and use machine learning to predict emerging patterns.

• Sensitive Response & Operations: Direct high-stakes incident response with calm clinical precision. You will manage the technical legal and reputational fallout of breaches while maintaining the trust of County employees and the community.

• Dynamic Training Programs: You will spearhead immersive behavioral-based training programs that empower employees to be our strongest line of defense.

What Were Looking For:

Communication: Act as a trusted liaison between the technical security and engineering teams Senior Executives and Elected Officials/Board of Commissioners. This requires an exceptional ability to translate complex technical language into clear understandable business value.

Compliance Expertise: Deep mastery of HIPAA CJIS PII and PCI frameworks.

Cyber Insurance Management: Responsible for negotiating and maintaining cyber insurance policies.

Supply Chain Integrity: Develop and oversee robust Third-Party Risk Management (TPRM) initiatives to ensure all technology vendors meet the Countys rigorous security and privacy standards by design.

Tech Stack: Expertise in cloud architecture AI-assisted Endpoint Detection and Response (EDR)/ Extended Detection and Response (XDR) and Security Orchestration Automation and Response (SOAR) platforms to stop attacks.

Crisis Management: Maintains composure under pressure with deep experience leading digital forensics.

Strategic Mindset: Ability to align security with County goals and technology strategic plans.

Why Join Us

Autonomy: You have the mandate to lead our security architecture IAM initiatives and develop strategic cyber defense-in-depth frameworks.

Innovation: Applying existing tools AI and automation to protect County infrastructure data and Community data.

Influence: A seat at the table in the Office of the CIO where your voice directly impacts the Countys strategic direction.

Purpose: Cybersecurity is not just a product but is a combination of relationships and processes that strengthen our community and employees and enables the safe use of innovative technology.

Informational Session: Fireside Chat

Virtual Q&A Sessions for Candidates: We are hosting an informational session for potential candidates to learn more about Multnomah County our department this position and the application process.

We welcome you to join us via the Google Meet link below to hear more details and ask any questions you may have. You can access the meeting directly through the link but if you would prefer to receive a specific calendar invitation please email

Date: Wednesday February 11 2026

Time: 12:00pm - 1:00pm Pacific Daylight Time (PDT)

Link: (US)1 PIN:#; Link to More phone numbers

To Qualify

We value the unique paths people take to gain expertise. We will consider any combination of relevant work experience volunteering education and transferable skills.

Minimum Qualifications:

• Bachelors degree in Information Technology Computer Science Cybersecurity Public Administration or a related field (qualifying professional-level experience may substitute for the required education on a year-for-year basis.)

AND

• Six (6) years focused on managing information security in a complex matrixed environment

• Advanced experience in building executing and overseeing enterprise-level information security programs including budgetary planning and large-scale programmatic oversight.

• Experience managing and professional development of an experienced team of direct reports (5)

• Experience with Federal and State security legislation (e.g. HIPAA CJIS PII PCI) and the implementation of strategic frameworks (e.g. NIST Cybersecurity Framework ISO/IEC 27001 or CIS Controls).

• Expert-level understanding of secure software development lifecycles (DevSecOps) artificial intelligence data governance and enterprise application integrity.

• Experience implementing IAM or Zero Trust Architecture in complex government and regulatory environments.

• Certified Information Systems Security Professional (CISSP)

• Criminal Justice Information Systems (CJIS) authorization is required prior to the start of this position which includes a records check and fingerprinting upon acceptance of the employment offer.

• Required: A cover letter that expands on your resume addresses why you are interested in this position and demonstrates how your experience and skill set align with the minimum and preferred qualifications listed.

Preferred Qualifications (Transferable Skills):

• Experience working in the public sector or another highly regulated industry such as healthcare or finance.

• Active involvement in MS-ISAC or other national information security organizations.

• Certified Information Security Manager (CISM)

• Certified Information Systems Auditor (CISA)

• Cloud platform specific professional certifications e.g. Google Cloud Microsoft Azure AWS etc.

**Transferable skills: Your transferable skills are any skills you have gained through education work experience (including the military) or life experience that are relevant for this position. Be sure to describe any transferable skills on your application and clearly explain how they apply to this position.

Screening and Evaluation

Your completed application must include the following items:

• Required: A completed online application.

• Required: A resume covering relevant experience and education. Please be sure your resume includes the following for each employer: name of employer location dates of employment your title a brief summary of your responsibilities the number of employees under your supervision.

• Required: A cover letter that expands on your resume addresses why you are interested in this position and demonstrates how your experience and skill set align with the minimum and preferred qualifications listed.

Note: The application resume and cover letter should demonstrate your work experience/skills and how it is related to those shown in the Overview and To Qualify sections of the job announcement. Please be thorough as these materials may be scored and determine your eligibility for an interview.

The Selection Process: For details about how we typically screen applications review our overview of the selection process page. We expect to evaluate candidates for this recruitment as follows:

• Initial review of minimum qualifications: We may do an additional preferred review and/or send out additional supplemental questions to identify those highest qualified.

• Consideration of top candidates: We will consider qualified candidates in order of rank and score from the list of eligible candidates. This may include panel interview(s) a hiring interview and/or additional testing to determine the best candidates for a position.

• Background check and reference checks: All finalists must pass a thorough reference check

Our Commitment to Safety Trust and Belonging

At Multnomah County we dont just provide services; we strive to create a workplace where everyone can reach their full potential. The 2024-2028 Workforce Equity Strategic Plan approved in March 2024 is our roadmap for identifying and addressing structural barriers to equality. We are committed to Inclusively Leading with Race ensuring that our security policies protect even our most vulnerable populations.

Additional Information

Multnomah County offers an exceptional benefits package including employer-funded retirement savings; health and dental insurance at very low cost to full-time employees and their dependents; paid parental leave; wellness programs; a focus on work-life balance; and much more. Find more details on our benefits website.

Equal Pay Law: Please be advised that the pay range listed for this position is intended to provide general guidance on the earning potential for the role. However actual compensation will be determined in accordance with the Oregon Equal Pay Law and will take into account factors such as the candidates relevant experience education seniority training and/or tenure. Candidates should expect that initial offers will be made within the listed pay range and may not be at or near the top of the range.

Location and Schedule

• Type of Position: This is an at-will executive position that serves at the pleasure of the DCA Director and may be subject to discharge at any time. This salaried executive position is not eligible for overtime.
  

• Work Location: The official work location is the Multnomah Building 501 SE Hawthorne Blvd. Suite 400 Portland OR 97214.
  

• Telework Schedule: This position is designated for Hybrid Telework. You will be working both remotely (from home) and in person at the work location. Onsite work is anticipated to be one day per week in the office as well as ad hoc onsite for required meetings.
  

• Residency Requirement: All employees must reside in Oregon or Washington. We are unable to sponsor work visas including H-1B F-1 OPT or STEM OPT.

Serving the Public During Disasters: All County employees have a role in serving the public during inclement weather natural disaster or other types of community emergency response. During these emergency responses county employees may ultimately be reassigned from their current position to a role in the emergency response to support the critical needs presented by our communities.

In accordance with Oregon Law Multnomah County is not collecting school attendance dates in the initial application process; please do not include these dates in your resume cover letter and other application materials.

Diversity and Inclusion: At Multnomah County we dont just accept difference; we value it and support it to create a culture of dignity and respect for our employees.

We are proud to be an Equal Opportunity Employer. We evaluate qualified applicants without regard to race color religion sex sexual orientation gender identity national origin disability veteran or protected veteran status genetic information and other legally protected characteristics. The EEO Know Your Rights poster is available for your reference. Multnomah County is a VEVRAA Federal Contractor. We request priority protected veteran referrals.

Veterans Preference: Under Oregon Law qualifying veterans may apply for veterans preference. Review our veterans preference page for details about eligibility and how to apply.

Accommodation under the Americans with Disabilities Act: We gladly provide reasonable accommodation to anyone whose specific disability prevents them from completing an application or participating in this recruitment process. Please contact the recruiter below in advance to request assistance. Individuals with hearing or speech impairments may contact the recruiter through the Telecommunications Relay Service by dialing 711.

Questions

Recruiter:

Email:

Phone:

Application information may be used throughout the entire selection process. This process is subject to change without notice.

Disclaimer: This announcement is intended as a general descriptive recruitment guide and is subject to change. It does not constitute either an expressed or implied contract.

Job Profile: