Logo
IT-XY GmbH

VP-IT Chief Information Security Officer

IT-XY GmbH, Union, New Jersey, us, 07083


VP-IT Chief Information Security Officer

Organization:

IFFLocation:

Union Beach, NJDescription:

Job Description

It’s an exciting time to be part of the IFF Global IT Team. The VP, Chief Information Security Officer will lead the security organization from end to end. They will work to advance the capabilities and create the roadmaps necessary to embed security into business and technology processes, implement appropriate controls to detect and mitigate risk. If you are a CISO with an excellent leadership skill and a solid experience in the fields mentioned below this role is for you!

You Will Spend Your Time Doing

Lead The Information Security, Strategy and Governance:

Develop and execute an enterprise-wide Information Security strategy and roadmap that manages risk

Create and maintain strategic direction and vision for this function; ability to strike the right balance between risk posture, business agility, complexity, and funding.

Partner with engineering, architecture, legal and audit, teams to assure effective policy and control implementations to protect company information assets and comply with local data privacy regulations, Sarbanes-Oxley compliance and General Data Protection Regulation.

Present the state of cybersecurity updates to executive and board leadership

Establish and maintain a culture of constant vigilance, information risk management, and industry awareness of information risk and protection of IFF’s information assets and critical business systems and processes.

Build, maintain relationships and extract value from industry-specific cyber security councils.

Chair a business aligned Information Security Risk Steering Committee and program to identify & manage risks and provide regular updates and a decision-making forum

Oversee the maintenance of a global information security and IT risk register, manage & prioritize risks identified.

Develop And Oversee Security Architecture & Engineering:

Collaborate with key stakeholders to ensure the development and continuous review of a multi-year Security Architecture that is designed within budget and time constraints to achieve business goals and objectives

Participate in architectural review board meetings for establishing standards, tool selection, and procedures

Design and implement enterprise-level security architectures and solutions to protect the information assets of the organization. Ensure ongoing analysis of threats, vulnerabilities, and market trends. Ensure that security architecture policies, standards, and security engineering and operations procedures are available and enacted consistently across projects and programs.

Deliver Information Security, Risk Assessment and Data Security Capabilities:

Embed and deliver effective security and control practices to protect company information assets.

Lead, respond to and resolve security exposures and incidents, observing proper forensic, legal & privacy procedures.

Oversee selection & execution of vendors to perform penetration assessments and remediation

Establish a vendor risk assessment framework

Establish and execute M&A due diligence and secure integration assessments and architectures

Develop a data security program, partner with Legal/Privacy and business to identify/classify data to implement appropriate controls to monitor for data loss

Security Operations :

Oversee the projects that determine scope, funding, and timelines for deploying security capabilities prioritized against the NIST risk weighting factors and risk register entries.

Manage data leak protection detection and malicious software detection/response.

Provide direction, support and in-house consulting for new and existing vendor risk profiles, Software Development Life Cycle, vulnerability scanning, and secure coding methods.Qualifications:

Professional Experience/Qualifications

• 10+ years of progressive experience in tech and information security, includingexperience with cloud, network, security operations, security architecture, DevOps, andaudit / compliance

• Bachelor’s degree in relevant discipline, master’s degree preferred.

• Current and valid security certification such as CISM, CISA, CRISC or CISSP, stronglypreferred.

• Strong analytical, consultative, and problem-solving skills / business judgment

• Exceptional communications with both technical and non-technical leadership, frontlineemployees, and senior executives including Board of Director presentation experience

• IFF is a global leader in Health & Biosciences, Food & Beverages and Home & Personal care products, offering our customers a broad range of solutions and accelerating our growthstrategy. At IFF, we believe that your uniqueness unleashes our potential. We value the diversemosaic of the ethnicity, national origin, race, age, sex or veteran status. We strive for an inclusiveworkplace that allows each of our colleagues to bring their authentic self to work regardless oftheir religion, gender identity & expression, sexual orientation, or disability.Visit IFF.com/careers/workplace-diversity-and-inclusion to learn more.We know how to fine-tune corporate security because we've led effective and efficient Fortune 500-level security programs. The SEC helps businesses find the best balance of risk mitigation, cost and innovation.Want insight delivered to your inbox? Subscribe to Security Insight newsletter.#J-18808-Ljbffr