Chief Information Security Officer
Dover Corporation, Downers Grove, IL, United States
Chief Information Security Officer
Location: Downers Grove, IL, US, 60515
Company: Dover Corporation
Dover is a diversified global manufacturer with annual revenue of over $8 billion. We deliver innovative equipment and components, specialty systems, consumable supplies, software and digital solutions, and support services through five operating segments: Engineered Products, Clean Energy & Fueling, Imaging & Identification, Pumps & Process Solutions and Climate & Sustainable Technologies.
Position Summary:
As the Chief Information Security Officer (CISO), you will be responsible for developing and implementing an information security strategy that protects our organization's data and technology assets. You will lead a team of security professionals and work closely with senior leadership to align security initiatives with business goals. You will be responsible for designing security solutions that protect the business while enabling the business to execute and innovate in multi–cloud environments, including Azure / Azure Gov–Cloud, Oracle Cloud Infrastructure (OCI) and Amazon Web Services (AWS).
Essential Duties and Responsibilities:
- Develop and maintain the information security strategy, policies, standards and procedures, including both Cyber Security as well as Connected Products security.
- Present Cyber and Connected Product Security Risks and progress to key stakeholders, including Dover's Board of Directors, Senior Executives, and OpCo management.
- Create periodic and ad–hoc executive updates reporting key team achievements, architecture design, and progress against plan, in a succinct format for an executive audience.
- Lead risk assessments and ensure compliance with relevant regulations and standards, specifically with NIST CSF 2.0, NIST 800–53, CMMC, ISA/IEC 62443, and PCI DSS.
- Oversee incident response planning, execution alongside coordination with legal and external security providers.
- Collaborate with IT and other departments to implement security solutions and best practices.
- Conduct security awareness training for employees in multiple languages.
- Stay current with industry trends and threats to enhance security posture.
- Manage relationships with internal auditors, external auditors, third–party vendors and regulatory bodies.
- Experience with enterprise on–prem as well as multi–cloud architecture in Dover's public and private–cloud operational centers.
- Design and implement a governance model for Cloud–hosted infrastructure and cloud–based technology services.
- Build and leverage KPIs to measure the effectiveness of the Dover Security model tied to NIST CSF; provide influence on IT Operations SLAs in tandem with operational targets to ensure security and business objectives are mutually managed.
- Manage Cyber and Product Security department financials metrics, team goals and performance.
- Demonstrate commitment to industry standards, company policy, integrity, ethics and legal compliance.
Qualifications / Requirements/Desired Characteristics:
- Minimum of B.S. or equivalent in Computer Science, Information Technology or Information Security (MIS, Computer Science, CyberSecurity, Computer Engineering or similar discipline).
- 10+ years of working experience in Cyber Security, minimum 4 years in a Senior Cyber Security role.
- Working knowledge of traditional security controls and technologies, such as Security Information and Event Management (SIEM) systems, intrusion detection/prevention systems (IDS/IPS), identity and access management (IDAM) systems, antivirus and firewalls, in addition to newer offerings such as endpoint detection and response (EDR), threat intelligence platforms, security automation and orchestration, deception technologies and application controls.
- Background in global manufacturing / Industrial Services a huge plus.
- CISSP; CISM and/or SANS certification a huge plus.
Work Arrangement: Hybrid
#J-18808-Ljbffr