IT Security Director (Grc)

Wolters Kluwer Minneapolis , MN 55415

Posted 3 weeks ago

As the IT Security Director (GRC Advisory Security Services Lead), you will be primarily responsible for developing and implementing programs to protect information assets owned and in use at Wolters Kluwer. In this role, you will be required to have proficiency in formulating IT risk strategies at every aspect of security management. Your role will also include coordination with 3rd party audits, internal audits, vendor due diligence, and IT global information security initiatives and compliance tasks and/or projects. You will provide information security guidance to executive leadership by recommending information security investments which mitigate risks, strengthen defenses, and reduce vulnerabilities for development, internal and client-facing systems and products.

Essential Duties and Responsibilities:

  • Support VP of Global Information Security in creating and implementing a strategy for the deployment of information security technologies

  • Define and support the development of additional IT control framework, enforce global controls, and monitor/report security performance application within the assigned division or business units

  • Coordinate audit and regulatory inquiries, external customers and vendor activities to help represent the Wolters Kluwer business units from an information security, risk and technology risk perspective Performing IT security risk assessments and reporting on ways to minimize threats

  • Tracking latest IT security innovations and keeping abreast of latest cyber security technologies

  • Overseeing the investigation of reported security breaches and develop strategies to handle security incidents and trigger investigations

  • Responsible for managing and coordinating the information security, technology risk, vendor relationship management, product selection and negotiation of contracts for the assigned division or business units

  • Coordinate and lead security policy and IT risk management forums with operations and engineering leads as required to resolve outstanding/pending issues before requiring further escalation

  • Work with divisional management to develop long term strategy, annual security plans, budget and tactical plans to reduce the IT risk

  • Orchestrate the analysis and delivery of findings to internal customers with impactful, comparative, interpretative security analysis in a clear, consistent, and factual manner.

  • Facilitate the tracking and reporting on divisional and business units' metrics, results, data modeling, processing, calculating and transformation into meaningful metrics and reports

  • Stay abreast of the most recent security management frameworks, compliance processes and continually sharpen skills and capabilities

Education/Certifications:

  • Bachelor's Degree in Computer Science/MIS or equivalent

  • Preferred certifications: CISSP, ISO, QSA, CRISC, CISM

Minimum Qualifications:

  • 10+ years-of demonstrated experience in information security management, security engineering,

  • 5+ years of hands on experience / knowledge of industry standards as they relate to IT Risk Frameworks

  • 5+ Experience with in shared services model, vendor and managed security services management, enterprise wide transition and transformation programs

  • Experience with governance, IT general control framework, ISo2700x, HiTrust, Cobit, ITIL, etc.

Required Qualifications/Experience:

  • An ability to communicate complex and technical issues to diverse audiences, orally and in writing, in an easily-understood, authoritative, and actionable manner

  • Strong knowledge of the following areas of technical expertise: information policy formulation, information security management, business risk management, IT risk assessment and management, IT continuity management, IT governance formulation, organizational change management, IT financial management, and IT audit

  • Deep experience implementing and leading information security policy and risk management programs with regard to regulation and guidance

  • In-depth and hands on expertise to guide the organization on current information security and IT risk management frameworks and threats, and ability to recommend means to address those threats

  • Strong influencing skills and the ability to champion security and educate staff on the latest security risk, software protection, assurance methods and technologies

  • Strong work ethic, excellent use of discretion and judgment, and the mature ability to establish credibility and rapport with senior executives and technical and non-technical team members

Preferred Qualifications/Experience:

  • Strong understanding of security requirements in the application development life cycle

  • Experience in organizing change management, awareness and training for end users, as well as acting as an internal consultant to IT leaders, Architects and Operations for planning and implementing IT initiatives

  • Strong technical management skills in overseeing security assessments of external service providers, providing security guidance, and overseeing mock security breach exercises

  • Strong project management and business requirement development skills in a very fast paced, complex, and demanding environment

  • Experience with GDPR and GDPR compliance implementations

  • Knowledge of computer networks, hardware, o

icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Environmental Health And Safety Director
New!

Flagstone Foods

Posted Today

VIEW JOBS 4/7/2020 12:00:00 AM 2020-07-06T00:00 It’s an exciting time to join Flagstone Foods as we are on a mission to become the finest private label snacking company in the world. We are locating our new corporate headquarters in Minneapolis, Minnesota and looking to hire bright, talented, collaborative people to support an exciting, entrepreneurial and rapidly growing firm.<br />  <br /> <strong>Company Overview:</strong><br /> Flagstone Foods is one of the largest manufacturers and distributors of private label healthy snacks in North America, holding the leading market position in the nut, trail mix and dried fruit categories. The company’s over 800 associates are located in plants in Robersonville, North Carolina, El Paso, Texas, and Dothan, Alabama. These facilities source, process, package and distribute nuts, trail mixes and other wholesome snacks to premier retail customers across the country.<br />  <br /> <strong>Background:  </strong><br /> We are fortunate to have Atlas Holdings as our new owners as of August 2019, reestablishing Flagstone Foods as a standalone business. Headquartered in Greenwich, Connecticut and founded in 2002, Atlas and its affiliates own and operate 20 platform companies which employ more than 18,000 associates at more than 150 facilities worldwide. Atlas has a long and distinguished record of strengthening and growing companies, investing both the human and financial capital needed to create long-term, sustainable value. <br /> <br /> <strong><u>Position Summary:</u></strong> <ul> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">Oversees organizational compliance with local, state and federal environmental, health, and safety regulations.</li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">Ensures that environmental policy and procedure manuals and standard operating procedures are always available and up to date.</li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">Ensures compliance with all environmental, health and safety regulations, and keeps abreast of any changes to laws and regulations that impact the organization.</li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">Ensures projects and workstreams to support the role are completed on time and are sustainable.</li> </ul> <strong><u>Job Responsibilities:</u></strong> <ul> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">Manage and develop departmental staff including selection, orientation, training, succession planning, performance management, evaluation, coaching and discipline.</li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">Develop and implement a plan, based on the requirements of the corporate EHS framework, which utilizes assessment, training, and monitoring techniques to ensure compliance.</li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">Assist in the development and revision of the written plans in order to meet local, state, and federal laws, regulations, and standards.</li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">Establish effective programs, systems, and training methods to communicate and enforce established safety rules, company and facility policy, and regulatory mandates.</li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">Act as an EHS resource for the plant or site facility EHS contacts with EHS related issues.</li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">Act as a Workers Compensation (WC) claims management resource and assist the facility contacts with WC issues.</li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">Act as a Property Risk Management resource and assist the facility EHS contacts with fire, storm and flood management property issues.</li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">Perform evaluations and attend training/seminars to ensure facilities are kept abreast of new and developing regulations.</li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">Be an active leader and participant in the continuous improvement process to achieve the EHS targets.</li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">Ensure all required documentation is maintained with accuracy and accessibility in accordance with local, state, and federal guidelines.</li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">Notify appropriate management personnel regarding, the impact an EHS regulation may have on a plant or site.</li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">Assist the plant or site EHS contacts in conducting facility assessments and readiness.</li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">Conduct thorough contractor evaluations to minimize risks that are associated with the work that is to be conducted.</li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">Participate in each facility’s budget development, pertaining to EHS issues. Assess expense authorizations to determine potential environmental and safety impacts.</li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">Take a lead role in the implementation and execution of company-wide web-based Job Safety Education programs for EHS and HR training and for management of chemicals, forklifts, or other risk prone areas of the business.</li> </ul> <strong><u>Qualifications:</u></strong> <ul> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">Bachelor’s Degree in Environmental Science, Biology or related field or equivalent combination of education and experience.</li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">Minimum of 7 years of relevant experience in the EHS field of work including with environmental compliance within the manufacturing sector, along with working with governmental agencies on compliance, remediation initiatives, etc. </li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">Safety or Hazard specific training viewed is a plus.</li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">EHS Professional Certificate is a plus.</li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">Knowledge and understanding of industry developments, trends, and experiences related to manufacturing of products or product components.</li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">Knowledge of methodologies, tools, and techniques for designing, building, and managing the manufacture of new products.</li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">Knowledge of the methodology and associated phases, activities, and deliverables for manufacturing new or enhancing existing products.</li> <li style="padding: 0; margin: 0;" style="padding: 0; margin: 0;">Knowledge and associated ability to apply technical, scientific, and analytical knowledge to design and implement materials, structures, machines, devices, systems and processes that safely realize a desired objective.</li> </ul> <div style="padding: 0; margin: 0;">Flagstone Foods is an Equal Opportunity/Affirmative Action employer.  All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, sex, sexual orientation, gender identity, age, status as a protected veteran, status as a qualified individual with disability, or any other category that may be protected by law.<br />  </div> Flagstone Foods Minneapolis MN

IT Security Director (Grc)

Wolters Kluwer