Senior Manager, Cyber Security
About the role
The Senior Manager, Cyber Security role is responsible for developing, implementing, and monitoring a comprehensive enterprise information security and IT risk management program. This role works closely with IT, Digital, Legal, Compliance, and business leaders to ensure secure business outcomes while managing risk pragmatically.
Responsibilities
Develop, implement and monitor a strategic, comprehensive enterprise information security and IT risk management program.
Facilitate information security governance through implementation of a hierarchical governance program, including the formation of an information security steering committee or advisory board.
Create, maintain and publish up-to-date security policies, standards and guidelines, and oversee training and dissemination of security policies and practices.
Create and manage information security and risk management awareness training programs for all employees, contractors and approved system users.
Work directly with the business units to facilitate IT risk assessment and risk management processes, and work with stakeholders through the enterprise on identifying acceptable levels of residual risk.
Provide strategic risk guidance for IT projects, including the evaluation and recommendation of technical controls.
Liaise with the JDE Peets global security and enterprise architecture teams to ensure alignment between the security and enterprise architectures.
Coordinate information security and risk management projects with resources from the IT organization and business unit teams.
Manage security incidents and events to protect corporate IT assets, including intellectual property, regulated data and the company's reputation.
Act as an escalation point for complex security issues and risk decisions.
Financial Discipline and Vendor Management
Identify the right balance of in-house versus professional services consultants to meet the demand for services.
Negotiate favorable software and professional services contracts with reputable vendors.
Drive effective governance and engagement with partners and suppliers to ensure cost effectiveness and timely deliverables.
Keep informed of issues and risks across all technology organizations, anticipate impact, and mitigate risks.
Essential Skills & Knowledge
Gets things done, with both a short and long-term view in mind.
Pragmatic and outcome-oriented, leveraging data to make decisions.
Thrives in a fast-paced, agile environment with excellent organizational skills and ability to re-prioritize on a consistent basis.
Excellent planning and organizational skills, along with a high degree of detail orientation.
A hands-on and adaptable leadership style with commitment to driving results.
Collaborative with the ability to build trusting relationships across a diverse and potentially global workforce.
Qualifications
Bachelor’s degree in computer science, engineering, information systems, business, or a related discipline is required.
10+ years of progressive experience in information security, IT risk, or cyber security roles.
5+ years of experience leading and managing security teams, including direct and matrixed resources.
CISSP certification is a plus.
Expertise in PCI, SOX, and HIPAA security requirements and the certification process for each.
Experience with Cisco, Juniper, Palo Alto Networks, Meraki, Trustwave, Microsoft and their network security technology capabilities.
Familiarity with cloud environments (Azure preferred) and associated security controls.
Experience with Operational Technologies (OT) security in a manufacturing environment.
Direct experience endpoint detection and response providers.
Direct experience with cloud-based SIEM providers.
What We Offer
Recharge Time – Paid vacation, holidays, and sick days.
Health & Wellness – Medical, dental, and vision coverage.
Future You – 401(k) plan with generous match program to help you save.
Peace of Mind – Life insurance, disability, and options for HSAs and FSAs.
Everyday Perks – Free coffee, fresh baked goods, and discounts.
Growth & Support – Career development and an Employee Assistance Program when you need it.