Virtual Chief Information Security Officer (vCISO)

About the position

Virtual Chief Information Security Officer (vCISO) Part-Time (Remote)

Location: Remote (U.S.-based)
Job Type: Contract | Part-Time
Industry: Higher Education
Client-Facing Role

About Mfinite Consulting

At Mfinite Consulting, we deliver tailored solutions that enhance operations, drive innovation, and strengthen organizational resilience. As a proud minority-, woman-, and veteran-owned business, we specialize in IT strategy, cybersecurity, and talent deliveryearning national recognition for our performance and impact.

We are seeking an experienced Virtual Chief Information Security Officer (vCISO) to provide high-level, part-time cybersecurity leadership for one of our higher education clients. This strategic advisory role will shape the institution's long-term security posture, improve compliance, and mitigate risks through a collaborative, hands-on approach.

Key Responsibilities

Strategic Security Leadership

• Define and execute a long-term cybersecurity roadmap aligned with the client's mission and risk tolerance.

• Serve as a trusted advisor to executive leadership on all cybersecurity matters.

Risk & Compliance Oversight

• Lead cyber risk assessments and threat modeling.

• Ensure compliance with regulatory frameworks such as GLBA, FERPA, and NIST.

• Deliver quarterly reports and briefings to client leadership.

Program & Policy Development

• Build and enhance the client's cybersecurity program using CIS Controls (IG1).

• Oversee the development and maintenance of security policies and procedures (Incident Response, Data Governance, Vendor Risk, etc.).

Incident Response & Business Continuity

• Direct incident response operations and post-incident reviews.

• Design and execute tabletop exercises and recovery plans.

Cloud & Infrastructure Security

• Advise on cloud security configurations and shared responsibility models.

• Guide Zero Trust Architecture (ZTA) planning, IAM, EDR, and network segmentation strategies.

Vendor & Third-Party Risk Management

• Conduct assessments using toolkits such as HECVAT.

• Review vendor management processes and recommend improvements.

Security Operations & Metrics

• Define and track KPIs/KRIs.

• Present executive-level dashboards on risk, compliance, and operational performance.

Training & Awareness

• Review existing cybersecurity awareness programs.

• Recommend or develop role-based training aligned with emerging threats.

Threat Intelligence

• Provide quarterly briefings tailored to higher education.

• Integrate threat feeds into monitoring and security operations.

Cyber Insurance & Resource Planning

• Evaluate current cyber insurance coverage and recommend risk-reducing controls.

• Provide input on staffing, managed services, and multi-year budget planning.

Qualifications

• Education: Bachelor's degree in Cybersecurity, IT, Computer Science, or a related field required; Master's degree preferred.

• Certifications: Must hold one or more of the following:

  • CISSP (Certified Information Systems Security Professional)

  • CISM (Certified Information Security Manager)

  • CISA (Certified Information Systems Auditor)

• Experience:

  • 7 -10+ years in cybersecurity with proven leadership experience.

  • Experience serving in an advisory or executive-level role (vCISO, CISO, or Director-level).

• Skills:

  • In-depth knowledge of cybersecurity frameworks (CIS, NIST, ISO 27001).

  • Strong communication skills with the ability to present complex security concepts to technical and non-technical audiences.

  • Understanding of higher education cybersecurity challenges is a plus.

Why Join Mfinite Consulting?

Work with a values-driven, award-winning consulting firm
Flexible, remote engagement with high-impact deliverables
Make a difference in the cybersecurity posture of a mission-focused institution
Collaborate with experienced professionals across multiple industries

Apply Today

If you're a forward-thinking cybersecurity leader ready to drive strategy, manage risk, and protect mission-critical systems, we'd love to hear from you.

To apply: Submit your resume and a brief statement of interest to careers@mfiniteconsulting.com
Or apply directly through our website: www.mfiniteconsulting.com/careers

Place of work