Senior Director, Information Security

Treehouse Foods Oak Brook , IL 60523

Posted 2 months ago

Employee Type:

Full time

Location:

IL Oak Brook

Job Type:

Information Technology

Job Posting Title:

Senior Director, Information Security

Job Description:

Reporting to the Chief Information Officer, this position serves as a key member of the Information Technology organization's leadership team providing oversight, development, implementation and verification of security standards and best practices for the organization. The position is located at the Company's Headquarters in Oak Brook, IL.

The role covers all security technologies and services, physical and logical access control and user profile and lifecycle management. The position, also has responsibility for controlling access to sensitive and protected data and proprietary information, the development, training and maintenance of security policies, standards and organizational awareness.

The Senior Director is responsible for managing data and information risks related to technology solutions, crisis management, data security compliance, working collaboratively with the regulatory and compliance organizations and third-party advisors and consultants. The role also directs the adoption and implementation of policies and procedures, manages cyber threat analysis activities, assesses incident risks and communicates with departmental leaders and senior management. The role will provide guidance on the information security technical architecture and security standards, controls, procedures and guidelines for the computer platforms, applications and networks including utilization of cloud technologies.

The position is responsible for scheduling, driving and managing all security certifications and their respective audits, both internal and external as required by customers and regulating federal and governmental agencies and the adherence to local and foreign security and privacy standards. The scope of this responsibility should consider that the role supports an organization with customers and offices in global locations.

This role requires the Senior Director to be a thought leader, a partner to all contributing groups and individuals and stakeholder in all aspects of corporate cyber-security and must be experienced at implementing security cultural change and evangelizing its benefits to all employees and business associates.

Roles & Responsibilities:

  • Establish a company-wide IT security strategy and roadmap to ensure that information assets are adequately protected.

  • Oversee the development of security policies, standards and procedures and ensure these are complied with by the company and its staff.

  • Maintain a current understanding the IT threat landscape for the industry

  • Ensure compliance with the changing laws and applicable regulations

  • Oversee identity and access management

  • Direct and approve system security design

  • Serve as the focal point for security incident response planning, execution, and awareness

  • Review investigations after breaches or incidents, including impact analysis and recommendations for avoiding similar vulnerabilities

  • Using a defined risk analysis methodology and risk classification scheme, identify risks and actionable plans to protect the business

  • Oversee technical security analyses and evaluations of current and strategic platforms and applications to determine security weakness and recommended control measures

  • Manage all teams, employees, contractors and vendors involved in IT security, including appropriate hiring

  • Provide training and mentoring to security team members

  • Brief the Board and executive team on status and risks, including taking the role of champion for the overall strategy and necessary budget

  • Communicate best practices and risks to all parts of the business, outside IT

  • Work with senior leaders across the business to assess and communicate acceptable levels of risk.

  • Ensure that the security management program is in compliance with applicable laws, regulations, and contractual requirements.

  • Act as the champion for the enterprise information security program and foster a security-aware culture.

  • Manage regular intrusion detection and vulnerability reporting and the coordination of all required fixes.

  • Develop business metrics to measure the effectiveness of the security management program, and increase the maturity of the program over time.

  • Monitor the industry and external environment for emerging threats and advise relevant stakeholders on appropriate courses of action.

  • Oversee and lead the creation, communication and implementation of a process for managing vendor risk and other third party risk.

Requirements:

  • Bachelor's degree in the field of Computer Science, Information Security, Management of Information Systems, or related field, required, advanced degree preferred

  • Minimum of 15 years of experience in a combination of risk management, information security and information technology fields

  • At least 5 years of experience in a senior leadership role

  • Employment history must demonstrate increasing levels of responsibility

  • Experience operating in a fast-paced ever changing environment

  • Ability to operate across a large organization

  • Strong influencing skills

  • Executive level presence and presentation skills

  • Extensive knowledge of business risk, risk assessment and risk-based decision making

Disability Assistance

TreeHouse Foods is an Equal Employment Opportunity Employer and offers opportunities to all job seekers, including those with disabilities. If you need a reasonable accommodation to assist with your job search or application for employment, please contact us by sending an email to disability-accommodations@treehousefoods.com. In your email please include a description of the specific accommodation you are requesting and a description of the position for which you are applying.

EEO Considerations

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, citizenship, disability or protected veteran status.


icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Sr Executive Protection Security Specialist

Pepco Energy Services

Posted 5 days ago

VIEW JOBS 4/15/2019 12:00:00 AM 2019-07-14T00:00 PRIMARY PURPOSE OF POSITION Conducts sensitive investigations which require significant understanding of depth and scope of potential impact that investigative results may have upon employees and/or business initiatives. Determines and pursues courses of action necessary to obtain desired, investigative results, and makes recommendations in support of correcting internal controls issues, and/or policy/procedural deficiencies surfaced by the investigation. Plans, organizes and conducts minimal to complex investigations of alleged violations of law or the company's code of business conduct. Conducts investigative as well as information-seeking interviews of employees and non-employees, documents investigations, handles evidence, maintains liaison with internal and external resources, in order to achieve favorable results that support Exelon's business units and efforts. Conducts independent, highly complex, significant, confidential investigations throughout the Corporation. Provides recommendations to operating management to strengthen controls and further mitigate risk. Prepares clear, comprehensive and cohesive investigative reports based upon established procedures. Provide secure tactical driving services for Exelon executives on a 24/7 availability. Conduct counter-surveillance on selected executives for Exelon Corporation. Maintain the highest level of confidentiality and discretion regarding all corporate matters, especially executive conversations and communications. Provides security/protective services for events held by or attended by selected Exelon executives and ensure a smooth transition from each venue. Conduct security assessments and investigations on an as needed basis. Interface with and maintains a working relationship with Federal, State and Local law enforcement professionals, executive protection specialist in other corporations; and vendors providing executive protection services. Ability to carry and employ a firearm and other weapons platforms as needed. Ability to obtain certification for weapons as well as Non-Lethal Defense. Plan and provide protection services for international travel. Provide residential security services to select Executives, including coordination of security system installations/upgrades. PRIMARY DUTIES & ACCOUNTABILITIES Conducts complex and confidential internal/external investigations for the Corporation. Identifies internal controls issues, works with BU management toward corrective action, so as to preclude additional, like problems and inputs investigative incidents and results into Security case management system. (35%) Provide secure tactical driving services for Exelon executives on a 24/7 availability. Conduct counter-surveillance on selected executives for CEG Corporate Security. Maintain the highest level of confidentiality and discretion regarding all corporate matters, especially executive conversations and communications. (35%) Provides support for other Corporate Security functions and activities (Annual Shareholder Meeting, tabletop exercises, Executive Protection, Crisis Management and BCP) (10%) Provide employee training regarding such areas, but not limited to violence in the workplace, fraud, employee safety, physical site security, executive protection and any other Security programs. (5%) Establishes and maintains federal, state, county and local law enforcement contacts and relationships. (5%) POSITION SPECIFICATIONS Bachelor's degree in a related field and/or the equivalent combination of formal education/training and years of work experience. Ten years law enforcement experience with a medium to large agency or the equivalent combination of law enforcement/private investigative experience. Ability to obtain Concealed Carry Permits for Illinois, Maryland, Pennsylvania and other states as necessary. Excellent written, verbal and communication skills. Knowledge of PC/desktop workstation applications; Microsoft Word, Excel, Outlook. Strong working knowledge of regulatory and accounting regulations (SOX, US Federal Sentencing Guidelines and GAAP) and company policies and procedures (Code of Conduct, Corporate Governance, etc.). Must be available 24/7 and have the ability to travel as necessary Preferred: Advanced Degree. Certified Protection Professional (CPP), Certified Fraud Examiner (CFE), and/or other related certifications. Experience in conducting vulnerability assessment of physical facilities. Experience in Business Continuity and Crisis Management. Prior corporate security experience Ability to obtain (Law Enforcement Officers Safety Act (LEOSA) qualifications POSITION SCOPE * Provides driving and protective services for the senior management including personal protection, residential security, travel security and special event security. * Position requires interaction with all levels of employees, to include senior executives, and corresponding outside parties. * Investigations are conducted to support or refute allegations, with an emphasis on independent and impartial fact finding and investigating any actions which are perceived to be violative of the Company's Code of Business Conduct. * When properly executed, the Position's functions will serve to mitigate threats to the Company's, people, infrastructure, and assets, responding to an array of emerging security issues, potentially impacting Exelon Corporation. * Works under minimal supervision. Pepco Energy Services Oak Brook IL

Senior Director, Information Security

Treehouse Foods