Chobani New York City , NY 10008
This role will provide leadership, strategic direction, and operations management for the Information Security function for our US offices as well as our manufacturing sites in New York, Idaho and Australia. This role partners closely with IT counterparts as well as business groups across the company to continuously manage and improve Chobani's IT Security posture, leveraging an in-depth approach to measure, prioritize, and mitigate risks. This role is accountable for ensuring Chobani establishes and maintains security best practices and complies with all of our enterprise standards.
This position can be located in either our Twin Falls OR NYC Soho locations.
The responsibilities of this position include:
Measure risk and organization maturity leveraging standard cybersecurity frameworks to make recommendations
Manage and communicate routine status updates to stakeholders, aligning security related activities with business needs
Evaluation, selection, implementation, operation, and maintenance of Information Security products and services
Participate in threat and vulnerability assessments, in some cases followed by appropriate remedial action, to ensure that systems are protected from known and potential threats free from known vulnerabilities
Liaises with legal, manufacturing, and R&D teams, offering technical direction throughout the organization on information security matters.
Implements necessary information security standards, procedures and guidelines
Leads the design and operation of related compliance monitoring and improvement activities to ensure compliance both with internal security policies etc. and applicable laws and regulations
Responds to and reports on all security incidents
Performs root cause analysis and promotes implementation of both proactive and reactive controls
Manages litigation related activities such as legal hold requests, data preservation and production
Performs and manages both internal and 3rd party security risk assessments and evaluation of associated controls
Responsible for developing and launching company-wide communications to promote awareness of current threats and security best practices
Guides the development of procedures to ensure compliance with regulatory agencies and performs internal audits
With input from IT and other business partners, recommends short and long-term priorities and budgets
Provide excellent leadership and coaching to the Information Security team through goal development, project management, and technical education
Provide IT team updates and education on security processes and procedures
The requirements of this position include:
Bachelor's in Information Systems, Business Administration or Engineering required. Master's degree preferred
5-7 years of IT Security experience required
3 years of IT security supervisor or management experience required
Technical proficiency with security-related systems and applications, especially Trend Micro, Active Directory, SIEM, CASB, Microsoft Advanced Threat Protection, SAP GRC
Knowledge of information security principles, including risk assessment and management, threat and vulnerability management, incident response, and identity and access management
Experience in developing, documenting and maintaining security procedures
Knowledge of network infrastructure, including routers, switches, firewalls, and associated network protocols and concepts
Experience in implementing SAP security framework is a plus
Experience with common information security management frameworks, such as PCI DSS, GDPR, ISO 27001, COBIT and NIST
Experience collaborating with Legal and Human Resources teams to address security risks
CISSP or CISM certification is required
Willingness to travel up to 25% per year
This position can be located in either our Twin Falls OR NYC Soho locations
Since our founding 10 years ago, we've always been a different kind of company. After moving to New York from his native Turkey, our CEO Hamdi Ulukaya found that in America, yogurt just wasn't as delicious or widely available as it was back home. He thought everyone deserved better options, so he set about making delicious, nutritious, natural, and accessible Greek Yogurt right here in the U.S.
Our mission since day one has been to provide better food to more people. And now as the No. 1-selling Greek Yogurt brand in America and the second largest overall yogurt manufacturer, we believe every food maker has a responsibility to provide people with better options, which is why we're so proud of the way our food is made.
Our food philosophy of crafting quality products with simple ingredients is what makes Chobani a different kind of yogurt. Our belief that business done right has the ability to change lives and strengthen communities is what makes Chobani a different kind of company. From the way we source our ingredients to how we treat our employees, Chobani strives to make universal wellness happen sooner with everything we do. Certified as a Great Place to Work for the last two years, our culture is built on shared passion, dedication, and a commitment to doing what is right. Together, the Chobani family has created something unlike what any company has done before. The possibilities are endless.
Chobani is an equal opportunity employer. Chobani will not discriminate against any applicant for employment on any basis including, but not limited to: race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, veteran status, marital status, predisposing genetic characteristics and genetic information, or any other classification protected by federal, state and local laws.