VP, Data Protection Engineering Leader

Job Description:

Role Summary/Purpose:

The VP, Data Protection Engineering Leader within the Information Security organization will be responsible for leading and driving an enterprise-wide data protection program to safeguard and secure the organization's data. This includes designing and building capabilities to identify, detect, and protect data. In this role, this individual will be the Data Protection product owner for Information Security, working with the cyber security leadership and key business stakeholders to help define the strategy and roadmap and influencing teams to deliver on this strategy across the company. This leader will be responsible for the development and implementation of cyber security capabilities to address current and emerging threats and requirements.

This position is remote, where you have the option to work from home. On occasion we may request for you to commute to our nearest office for in person engagement activities such as team meetings, training and culture events.

Essential Responsibilities:

• Accountable for designing and building effective capabilities to protect and safeguard the organization's data.

• Acts as the Data Protection product owner defining the intent, roadmap, and strategy to ensure execution and delivery of the roadmap.

• Partners closely with key stakeholders such as CTO, application engineering, Chief Data Office, Privacy, Platform teams etc. to ensure tooling and capabilities are efficient, reducing overlap in capabilities, and working to improve the overall organization data strategy.

• Manages the Data Protection security service within Information Security and ensures all capabilities, tools, and products are cataloged, appropriately dispositioned on the common capabilities, and learnings are incorporated into roadmaps.

• Responsible for the development and management of Data Protection metrics.

• Support business initiatives and public cloud migration with an emphasis on prioritizing Data Protection.

• Stays current with emerging threat landscape and develops/enhances capabilities and strategies to safeguard the business from various threats.

• Supports the organization through any incidents related to tooling and/or capabilities.

• Acting as a subject matter expert to assist with solving enterprise problems, especially as it relates to the Data Protection security service.

• Develops a strong Data Protection engineering excellence program focused on automation and efficiency, effective change and incident management processes.

• Leads a team of Data Protection engineers, providing people management responsibilities and ensuring to build a team of engineers focused on breadth and depth of technology while also promoting fungibility across the team.

• Partners closely with Information Security Architecture to ensure proper designs are implemented and engineered effectively into capabilities and tech stacks.

• Partners closely with key stakeholders to ensure alignment of roadmaps, architectures, and implementation of capabilities.

• Engineers and builds for cyber security capabilities and technologies.

• Builds strong relationships with stakeholders to ensure transparency with regards to Data Protection Information Security.

• Work with the company's third parties and/or M&As to ensure Data Protection capabilities are implemented and maintained appropriately.

• Serves as an information security expert, trusted advisor, and central point of contact for IT and business stakeholders.

• Assists with the development of standards, best practices, and guidelines for the organization's policies, standards, and procedures.

• Builds and maintains relationships with key vendors to understand the market and direction of information security, and ensure these learnings are embedded into the roadmap.

• Ensures that as part of designing and building efficient cyber security capabilities these capabilities are achieving industry best practices, compliance and regulatory requirements such as PCI-DSS, HIPAA, etc.

• Perform other duties and/or special projects as assigned

Qualifications/Requirements:

• Bachelor's degree with a minimum of 5 years of experience in Information Security, Engineering, Application Development, or related field OR in lieu of a degree, a High School Diploma/GED and minimum 9 years equivalent work experience.

• Minimum 5 years of experience in an information security architect role

• Minimum 3 years of experience in a leadership role (as a security architect is preferred)

• Minimum 5 years of experience with regulatory compliance and information security management frameworks (e.g., IS027000, COBIT, NIST 800, etc.)

Desired Characteristics:

• Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Security Auditor (CISA), and/or Global Information Assurance Certification (GIAC)

• Certified AWS Certified Security

• Specialty and AWS Solutions Architect

• Demonstrate an understanding of the impact of emerging business and end-user technologies have on information security requirements and architecture

• Demonstrate an understanding of business needs and commitment to delivering high-quality, prompt, and efficient service to the business

• Proven strong decision-making capabilities, with a proven track record of weighing the relative costs and benefits of potential actions and identifying the most appropriate one

• Demonstrated technical expertise in existing security and IT systems and an ability to keep pace with changing security and IT technologies

• Strong interpersonal skills, with an emphasis on demonstrating previous experience effectively influencing others at all levels within the organization and cross functionally

• A team-focused mentality with proven experience to work effectively with diverse stakeholders

• Demonstrated experience communicating complex and technical issues to diverse audiences, verbally and in writing, in an easily understood, and actionable manner

Grade/Level: 13

The salary range for this position is 150,000.00 - 250,000.00 USD Annual and is eligible for an annual bonus based on individual and company performance.

Actual compensation offered within the posted salary range will be based upon work experience, skill level or knowledge.

Salaries are adjusted according to market in CA, NY Metro and Seattle.

Eligibility Requirements:

• You must be 18 years or older

• You must have a high school diploma or equivalent

• You must be willing to take a drug test, submit to a background investigation and submit fingerprints as part of the onboarding process

• You must be able to satisfy the requirements of Section 19 of the Federal Deposit Insurance Act.

• New hires (Level 4-7) must have 9 months of continuous service with the company before they are eligible to post on other roles. Once this new hire time in position requirement is met, the associate will have a minimum 6 months' time in position before they can post for future non-exempt roles. Employees, level 8 or greater, must have at least 18 months' time in position before they can post. All internal employees must consistently meet performance expectations and have approval from your manager to post (or the approval of your manager and HR if you don't meet the time in position or performance expectations).

Legal authorization to work in the U.S. is required. We will not sponsor individuals for employment visas, now or in the future, for this job opening. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.

Our Commitment:

When you join us, you'll be part of a diverse, inclusive culture where your skills, experience, and voice are not only heard-but valued. We celebrate the differences in all of us and believe that our individual, unique perspectives is what makes Synchrony truly a great place to work. Together, we're building a future where we can all belong, connect and turn ideals into action. Through the power of our 8 Diversity Networks+, with more than 60% of our workforce engaged, you'll find community to connect with an opportunity to go beyond your passions.

This starts when you choose to apply for a role at Synchrony. We ensure all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status.

Reasonable Accommodation Notice:

• Federal law requires employers to provide reasonable accommodation to qualified individuals with disabilities. Please tell us if you require a reasonable accommodation to apply for a job or to perform your job. Examples of reasonable accommodation include making a change to the application process or work procedures, providing documents in an alternate format, using a sign language interpreter, or using specialized equipment.

• If you need special accommodations, please call our Career Support Line so that we can discuss your specific situation. We can be reached at 1-866-301-5627. Representatives are available from 8am

• 5pm Monday to Friday, Central Standard Time

Job Family Group:

Information Technology