Information Security Program Manager - HSIT

Working at Yale means contributing to a better tomorrow. Whether you are a current resident of our New Haven-based community, eligible for opportunities through the New Haven Hiring Initiative, or a newcomer, interested in exploring all that Yale has to offer, your talents and contributions are welcome. Discover your opportunities at Yale!

This position will serve as the HSIT Information Security Program Coordinator and primary liaison with central Information Security, Legal, Compliance, and system owners. The Information Security Program Coordinator will:

• Coordinate security incidents, audits, SPAs, and third‑party reviews including DUA, BAA, and vendor risk activities with clear tracking and escalation.
• Partner with system owners to document data flows, classifications, and control implementation aligned with HIPAA and NIST-based requirements.
• Maintain audit readiness, monitor compliance, and track remediation for vulnerabilities, findings, and control gaps across HSIT environments.
• Apply risk management as a core function: identify, document, assess, and prioritize security risk and ensure mitigation plans are tracked to closure.
• Communicate risk clearly to stakeholders, including senior leadership, translating technical findings into business impact and facilitating informed decisions.
• Perform complex data/information gathering techniques; evaluate the quality of the information by considering the source, relevancies, and timeliness.
• Collaborate with team members and clients to drive development of project deliverables and strategies.
• Research, aggregate, and analyze a variety of data/information; synthesize large and complex quantities of information; extract meaningful insights and make recommendations.
• Develop and present comprehensive and complex reports, recommendations, trainings, and presentations to a variety of audiences.

Required skills and abilities:

• Proven experience in complex project management.
• Analytical, creative thinking and problem‑solving skills.
• Interpersonal, written, communication, presentation and organizational skills.
• Proven ability to develop detailed proposals, presentations and plans.

Preferred experience:

Prior experience working in information security.

Required education and experience:

Bachelor's degree and seven years of experience or equivalent education and experience.

The University is committed to basing judgments concerning the admission, education, and employment of individuals upon their qualifications and abilities and seeks to attract to its faculty, staff, and student body qualified persons from a broad range of backgrounds and perspectives. In accordance with this policy and as delineated by federal and Connecticut law, Yale does not discriminate in admissions, educational programs, or employment against any individual on account of that individual’s sex, sexual orientation, gender identity or expression, race, color, national or ethnic origin, religion, age, disability, status as a special disabled veteran, veteran of the Vietnam era or other covered veteran.

Inquiries concerning Yale's Policy Against Discrimination and Harassment may be referred to the Office of Institutional Equity and Accessibility (OIEA).

Note:

Yale University is a tobacco‑free campus.