RPMGlobal
Senior Director Cyber Security & Governance
RPMGlobal, Salt Lake City, Utah, United States, 84193
Who We Are
Dyno Nobel is a global leader in the commercial explosives industry. We provide innovative blasting solutions and quality explosives products throughout North America, Australia, and selected customers in the Asia Pacific.
Join us in everything that’s great about Dyno Nobel: OUR culture, OUR values, OUR commitment to safety and most importantly our PEOPLE. This combination makes Dyno Nobel a terrific place to work.
Dyno Nobel is a subsidiary of Australian based Incitec Pivot Limited. IPL's 4500 employees also manufacture and market industrial chemicals and fertilizer products & services to customers around the world.
What You’ll Do
Oversees the effectiveness of safeguards, countermeasures, and security controls to protect the organization from cyber threats and data breaches.
Provide executive oversight and strategic direction for IT Governance, Risk, and Compliance initiatives, ensuring alignment with organizational goals and emerging threats.
Architect and execute a comprehensive Global Security Assurance Plan, ensuring adherence to legal, regulatory, and security standards (e.g., ASX / ASIC, SOC, CISA, NIST, ISO/IEC, PCI).
Establish and govern an Information Security Management System (ISMS) supported by an information security risk management framework (i.e. NIST Cyber Security Framework) that proactively identifies, assesses, and mitigates potential threats.
Define, refine, and enforce information security processes, policies, standards, and guidelines to fortify the Information Security Management System.
Develop and champion a Data & Information Governance strategy to safeguard the organization’s most critical data assets.
Oversee the strategic configuration, deployment, and maintenance of advanced cyber security tools and services.
Provide thought leadership on the strategic design and implementation of cyber security architecture, driving toward pattern-based designs that can secure any technology solution, data flow, customer product, third-party service, or integration.
Implement a risk management and assessment methodology that links to the enterprise risk management framework (i.e. ISO 31000).
Govern the comprehensive risk assessment of technology solutions and third-party vendors, ensuring adherence to the organization’s stringent security standards.
Provide expert IT GRC consultation for IT projects and support due diligence in Mergers, Acquisitions, & Divestments addressing potential cybersecurity risks and compliance issues.
Develop and maintain strong relationships with the Executive Leadership Team (ELT), Risk Management team, and the Board Audit & Risk Management Committee. Ensure regular communication and collaboration to align cybersecurity initiatives with organizational goals, risk management strategies, and governance requirements.
Forge strategic partnerships with regional business units and technology functions (extending beyond the traditional scope of IT) to establish and maintain robust, unified cyber security program and capabilities.
What We’re Looking For:
Bachelor’s or Master’s degree in Computer Science, Information Technology, Cybersecurity, or a related field.
10+ years of progressive experience in cybersecurity roles, with significant experience in senior leadership positions.
Professional Certification(s) preferred: CISSP, CISM, CISA, CRISC or similar.
Proven track record of managing cybersecurity risks in a global context.
Demonstrated experience in establishing and managing an Information Security Management System (ISMS) and information security risk management frameworks (e.g., NIST Cyber Security Framework, ISO 27001).
Strong understanding of cybersecurity frameworks and principles, risk management methodologies, and compliance monitoring and governance standards (e.g., ASX / ASIC, SOC, NIST CSF, ISO 27001, ISO 31000, ISA 62443, GDPR).
Demonstrated ability to develop and maintain strong relationships with the Executive Leadership Team (ELT), Risk Management team, and the Board Audit & Risk Management Committee.
Strong leadership and communication skills, with the ability to influence and collaborate with stakeholders at all levels.
Positive attitude, friendly demeanor, and a team player.
What We Offer:
Paid vacation time + 12 paid holidays + PTO days.
Full health benefits including employer HSA contributions + dental plan with an orthodontic option.
Matching 401K.
Generous tuition reimbursement program.
Generous paid parental leave.
Friendly and supportive coworkers.
Zero Harm for Everyone Everywhere
Value People – Respect, Recognize & Reward
Think Customer. Everyone. Every day.
Treat the Business as our Own
Care for the Community & our Environment
Challenge & Improve the Status Quo
Deliver on our Promises
Women and veterans are strongly encouraged to apply. Dyno Nobel is an equal employment opportunity employer and will give all qualified applicants consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national or ethnic origin, age, disability status, protected veteran status, genetic information or any other characteristic protected by law.
#J-18808-Ljbffr
Dyno Nobel is a global leader in the commercial explosives industry. We provide innovative blasting solutions and quality explosives products throughout North America, Australia, and selected customers in the Asia Pacific.
Join us in everything that’s great about Dyno Nobel: OUR culture, OUR values, OUR commitment to safety and most importantly our PEOPLE. This combination makes Dyno Nobel a terrific place to work.
Dyno Nobel is a subsidiary of Australian based Incitec Pivot Limited. IPL's 4500 employees also manufacture and market industrial chemicals and fertilizer products & services to customers around the world.
What You’ll Do
Oversees the effectiveness of safeguards, countermeasures, and security controls to protect the organization from cyber threats and data breaches.
Provide executive oversight and strategic direction for IT Governance, Risk, and Compliance initiatives, ensuring alignment with organizational goals and emerging threats.
Architect and execute a comprehensive Global Security Assurance Plan, ensuring adherence to legal, regulatory, and security standards (e.g., ASX / ASIC, SOC, CISA, NIST, ISO/IEC, PCI).
Establish and govern an Information Security Management System (ISMS) supported by an information security risk management framework (i.e. NIST Cyber Security Framework) that proactively identifies, assesses, and mitigates potential threats.
Define, refine, and enforce information security processes, policies, standards, and guidelines to fortify the Information Security Management System.
Develop and champion a Data & Information Governance strategy to safeguard the organization’s most critical data assets.
Oversee the strategic configuration, deployment, and maintenance of advanced cyber security tools and services.
Provide thought leadership on the strategic design and implementation of cyber security architecture, driving toward pattern-based designs that can secure any technology solution, data flow, customer product, third-party service, or integration.
Implement a risk management and assessment methodology that links to the enterprise risk management framework (i.e. ISO 31000).
Govern the comprehensive risk assessment of technology solutions and third-party vendors, ensuring adherence to the organization’s stringent security standards.
Provide expert IT GRC consultation for IT projects and support due diligence in Mergers, Acquisitions, & Divestments addressing potential cybersecurity risks and compliance issues.
Develop and maintain strong relationships with the Executive Leadership Team (ELT), Risk Management team, and the Board Audit & Risk Management Committee. Ensure regular communication and collaboration to align cybersecurity initiatives with organizational goals, risk management strategies, and governance requirements.
Forge strategic partnerships with regional business units and technology functions (extending beyond the traditional scope of IT) to establish and maintain robust, unified cyber security program and capabilities.
What We’re Looking For:
Bachelor’s or Master’s degree in Computer Science, Information Technology, Cybersecurity, or a related field.
10+ years of progressive experience in cybersecurity roles, with significant experience in senior leadership positions.
Professional Certification(s) preferred: CISSP, CISM, CISA, CRISC or similar.
Proven track record of managing cybersecurity risks in a global context.
Demonstrated experience in establishing and managing an Information Security Management System (ISMS) and information security risk management frameworks (e.g., NIST Cyber Security Framework, ISO 27001).
Strong understanding of cybersecurity frameworks and principles, risk management methodologies, and compliance monitoring and governance standards (e.g., ASX / ASIC, SOC, NIST CSF, ISO 27001, ISO 31000, ISA 62443, GDPR).
Demonstrated ability to develop and maintain strong relationships with the Executive Leadership Team (ELT), Risk Management team, and the Board Audit & Risk Management Committee.
Strong leadership and communication skills, with the ability to influence and collaborate with stakeholders at all levels.
Positive attitude, friendly demeanor, and a team player.
What We Offer:
Paid vacation time + 12 paid holidays + PTO days.
Full health benefits including employer HSA contributions + dental plan with an orthodontic option.
Matching 401K.
Generous tuition reimbursement program.
Generous paid parental leave.
Friendly and supportive coworkers.
Zero Harm for Everyone Everywhere
Value People – Respect, Recognize & Reward
Think Customer. Everyone. Every day.
Treat the Business as our Own
Care for the Community & our Environment
Challenge & Improve the Status Quo
Deliver on our Promises
Women and veterans are strongly encouraged to apply. Dyno Nobel is an equal employment opportunity employer and will give all qualified applicants consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national or ethnic origin, age, disability status, protected veteran status, genetic information or any other characteristic protected by law.
#J-18808-Ljbffr