Global Information Security Manager

Chobani New York City , NY 10008

Posted Yesterday

This role will provide leadership, strategic direction, and operations management for the Information Security function for our US offices as well as our manufacturing sites in New York, Idaho and Australia. This role partners closely with IT counterparts as well as business groups across the company to continuously manage and improve Chobani's IT Security posture, leveraging an in-depth approach to measure, prioritize, and mitigate risks. This role is accountable for ensuring Chobani establishes and maintains security best practices and complies with all of our enterprise standards.

This position can be located in either our Twin Falls OR NYC Soho locations.

The responsibilities of this position include:

  • Measure risk and organization maturity leveraging standard cybersecurity frameworks to make recommendations

  • Manage and communicate routine status updates to stakeholders, aligning security related activities with business needs

  • Evaluation, selection, implementation, operation, and maintenance of Information Security products and services

  • Participate in threat and vulnerability assessments, in some cases followed by appropriate remedial action, to ensure that systems are protected from known and potential threats free from known vulnerabilities

  • Liaises with legal, manufacturing, and R&D teams, offering technical direction throughout the organization on information security matters

  • Implements necessary information security standards, procedures and guidelines

  • Leads the design and operation of related compliance monitoring and improvement activities to ensure compliance both with internal security policies etc. and applicable laws and regulations

  • Responds to and reports on all security incidents

  • Performs root cause analysis and promotes implementation of both proactive and reactive controls

  • Manages litigation related activities such as legal hold requests, data preservation and production

  • Performs and manages both internal and 3rd party security risk assessments and evaluation of associated controls

  • Responsible for developing and launching company-wide communications to promote awareness of current threats and security best practices

  • Guides the development of procedures to ensure compliance with regulatory agencies and performs internal audits

  • With input from IT and other business partners, recommends short and long-term priorities and budgets

  • Provide excellent leadership and coaching to the Information Security team through goal development, project management, and technical education

  • Provide IT team updates and education on security processes and procedures

The requirements of this position include:

  • Bachelor's in Information Systems, Business Administration or Engineering required. Master's degree preferred

  • 5-7 years of IT Security experience required

  • 3 years of IT security supervisor or management experience required

  • Technical proficiency with security-related systems and applications, especially Trend Micro, Active Directory, SIEM, CASB, Microsoft Advanced Threat Protection, SAP GRC

  • Knowledge of information security principles, including risk assessment and management, threat and vulnerability management, incident response, and identity and access management

  • Experience in developing, documenting and maintaining security procedures

  • Knowledge of network infrastructure, including routers, switches, firewalls, and associated network protocols and concepts

  • Experience in implementing SAP security framework is a plus

  • Experience with common information security management frameworks, such as PCI DSS, GDPR, ISO 27001, COBIT and NIST

  • Experience collaborating with Legal and Human Resources teams to address security risks

  • CISSP or CISM certification is required

  • Willingness to travel up to 25% per year

  • This position can be located in either our Twin Falls OR NYC Soho locations

About Us:

Since our founding 10 years ago, we've always been a different kind of company. After moving to New York from his native Turkey, our CEO Hamdi Ulukaya found that in America, yogurt just wasn't as delicious or widely available as it was back home. He thought everyone deserved better options, so he set about making delicious, nutritious, natural, and accessible Greek Yogurt right here in the U.S.

Our mission since day one has been to provide better food to more people. And now as the No. 1-selling Greek Yogurt brand in America and the second largest overall yogurt manufacturer, we believe every food maker has a responsibility to provide people with better options, which is why we're so proud of the way our food is made.

Our food philosophy of crafting quality products with simple ingredients is what makes Chobani a different kind of yogurt. Our belief that business done right has the ability to change lives and strengthen communities is what makes Chobani a different kind of company. From the way we source our ingredients to how we treat our employees, Chobani strives to make universal wellness happen sooner with everything we do. Certified as a Great Place to Work for the last two years, our culture is built on shared passion, dedication, and a commitment to doing what is right. Together, the Chobani family has created something unlike what any company has done before. The possibilities are endless.

Chobani is an equal opportunity employer. Chobani will not discriminate against any applicant for employment on any basis including, but not limited to: race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, veteran status, marital status, predisposing genetic characteristics and genetic information, or any other classification protected by federal, state and local laws.


See if you are a match!

See how well your resume matches up to this job - upload your resume now.

resumetriaasssdfel.jp… Change Resume
Find your dream job anywhere
with the LiveCareer app.
Download the
LiveCareer app and find
your dream job anywhere
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Governance Risk And Complia...

NYU Langone Medical Center

Posted Yesterday

VIEW JOBS 8/13/2018 12:00:00 AM 2018-11-11T00:00 NYU Langone Health is a world-class, patient-centered, integrated academic medical center, known for its excellence in clinical care, research, and education. It comprises more than 200 locations throughout the New York area, including five inpatient locations, a children's hospital, three emergency rooms and a level 1 trauma center. Also part of NYU Langone Health is the Laura and Isaac Perlmutter Cancer Center, a National Cancer Institute¿designated cancer center, and NYU School of Medicine, which since 1841 has trained thousands of physicians and scientists who have helped to shape the course of medical history. For more information, go to nyulangone.org, and interact with us on Facebook, Twitter, YouTube and Instagram. We have an exciting opportunity to join our team as a Governance, Risk and Compliance (GRC) Manager, Information Security. Position Summary: This position reports to the Chief Information Security Officer and is responsible for designing, implementing, managing, and overseeing the Information Security Risk Assessment process and procedures to ensure NYULH compliance with related regulations and industry requirements (i.e., HIPAA, Meaningful Use, FISMA, PCI, etc). The incumbent is expected to be fully aware of the enterprises security goals as established by its stated policies, procedures and guidelines and to actively work towards upholding those goals. Job Responsibilities: * Mentor and develop staff members and create a positive work environment that supports engagement with others. * Lead and direct a small team in the security assessment process. Set clear goals and expectations that accomplish objectives. * Leverage information on current threats to focus business and IT attention on emerging risk themes and issues. * Promote a risk aware culture and communicate best practices to business and IT contacts. * Review key audit and regulatory findings and develop and communicate risk themes and solutions to them. * Review security and control processes along with associated documentation and reporting. * Contribute to quarterly reports to MCIT Business-Partners on their respective application, infrastructure, and third party risk postures. * Develop and maintain key relationships with core teams in order to provide advice and oversight on new initiatives. * Provide expert and complex level advisories on NYULMC IT Risk framework, policies, standards and guidelines and contribute to their development where appropriate. * Provide technical and best practice guidance to remediate IT risks taking into account specific complexities of each business unit. * Advise and assist project teams regarding compensating control alternatives where security requirements cannot be met. * Manage a team and perform information security risk assessments of existing and new technology solutions as well as third parties. Oversee and track the remediation plans for all identified risks. Minimum Qualifications: * Must have a Bachelors degree from an accredited college/university. * Minimum six years of progressive experience in leading security and compliance management programs; interactions with and support of clients; risk management and other GRC responsibilities within a large IT organization, preferably within a professional services firm or similar. * Demonstrated experience with managing information security functions, including governance, frameworks, processes, tools, scorecards, and dashboards under aggressive deadlines and with competing priorities. * Knowledge of industry regulations and standards (e.g. HIPAA, Meaningful Use, FISMA, PCI) as well as core technology infrastructure (e.g. firewalls, vpns, servers, databases, Internet technologies). * Proven experience interacting with regulators, internal auditors and/or external auditors. * Demonstrated knowledge of industry authoritative sources such as COBIT, NIST, and ISO standards * Working knowledge of GRC tools such as Symantec CCS, Archer GRC, Modulo Risk Manager. * Certification requirements: CISSP, CISM, CISA, ISO 27001 Auditor, LSS Green Belt, or CRISC. Preferred Qualifications: * Masters degree from an accredited college/university preferred. * Ability to effectively prioritize and execute multiple assignments and tasks in a high-pressure environment. * Good written, oral, and interpersonal communication skills. * Ability to conduct research into IT security issues and products as required. * Ability to present ideas in business-friendly and user-friendly language. * Highly self-motivated and shows initiative. Ability to work independently and with other teams when needed to troubleshoot problems. * Capacity to learn new software and become proficient to provide support. * Keen attention to detail. * Team-oriented and skilled in working within a collaborative environment. Qualified candidates must be able to effectively communicate with all levels of the organization. NYU Langone Health provides its staff with far more than just a place to work. Rather, we are an institution you can be proud of, an institution where you'll feel good about devoting your time and your talents. NYU Langone Health is an equal opportunity and affirmative action employer committed to diversity and inclusion in all aspects of recruiting and employment. All qualified individuals are encouraged to apply and will receive consideration without regard to race, color, gender, gender identity or expression, sex, sexual orientation, transgender status, gender dysphoria, national origin, age, religion, disability, military and veteran status, marital or parental status, citizenship status, genetic information or any other factor which cannot lawfully be used as a basis for an employment decision. We require applications to be completed online. If you wish to view NYU Langone Health's EEO policies, please click here. Please click here to view the Federal "EEO is the law" poster or visit https://www.dol.gov/ofccp/regs/compliance/posters/ofccpost.htm for more information. To view the Pay Transparency Notice, please click here. NYU Langone Medical Center New York City NY

Global Information Security Manager

Chobani