Business Information Security Officer:

In this role you will recruit, lead, manage and direct the Regional Security Architecture, Engineering, Operations, Governance, Risk, Compliance and Security Incident Response teams and processes.

You will be responsible for delivering all security capabilities in the geographic region, necessary to protect the global enterprise while maintaining contractual and regulatory requirements.

In addition:

• Drive regional development and deployment of security capabilities, architectural implementation, configuration, risk management, data collection and analysis as well as logging and alerting requirements.
• Enhance existing regional security and risk management capabilities through a mix of people, processes and technologies which increase capability maturity and reduce the likelihood that threat actors will circumvent security capabilities within the region.
• Provide expansive information security expertise in the diagnosis of control requirements shortfalls, identification of business risks, evaluation of solution alternatives and delivery of systems solutions to assist in the identification, prevention, detection, response, and eradication of threat activity within the region.
• Serve as a key advisor for information security, data privacy, disaster recovery, and physical security on trends and emerging risks within the region.
• Represent Global Security, Governance, Risk Management, Security Operations, and Incident Response advocating for information security, data privacy, disaster recovery, and physical security best practices working with all other appropriate stakeholders.

Ideally you will have:

• 10+ Years progressive professional experience evaluating, delivering, and/or managing in a complex IT environment(s) as well as people management experience
• 15+ Years professional experience in information security
• 3+ Years experience in technology architecture and development
• 3+ Years experience engaging with and defeating advanced threat actors
• Experience as a security technology leader with implementation skills
• Knowledge of Information Security technologies, markets and vendors
• Knowledge in the field of information systems security, including such areas as identity and access management, security operations, incident response, security program policies, processes and procedures and various supporting security technologies
• Project management skills. Demonstrates ability to evaluate project objectives and scope feasibility, gain understanding, schedule resources, and manage budget to plan
• Certified Information Systems Security Professional or similar (e.g. CISSP, ISC or CISM) Required