Director, Cyber Security

at  Walgreens

Job Summary
The Director, Cyber Security provides leadership and directs team(s) responsible for the detection and assessment of cybersecurity events and incidents across the organization’s cyber environment. Utilizes technical and industry experience to formulate technology strategies specific to area of responsibility, and responsible for achieving strategic and operational business goals. Evaluates and adjusts strategies to respond to competition. Outcomes directed have a moderate to significant impact on the organization’s short-term and long-term results, specific customers and/or partners. Decisions have moderate to significant impact on the organization.

Job Responsibilities

• Directs and leads the efforts of others in the achievement of the strategic and operational objectives for the organization’s cyber environment. Establishes operational objectives for managers and/or teams of professionals in order to achieve the strategic and operational objectives of the group.
• Provides technical leadership on all matters of security. Provides day-to-day administrative direction and oversight of key technology/information systems and general support activities.
• Stays abreast of industry leading best practices in attacker capabilities and brings them to the attention of the leadership team for innovative application, including practical hands-on demonstrations of current and emerging techniques.
• Works with key stakeholders to formulate a comprehensive technology plan that is consistent with the overall business objectives and budgetary considerations.
• Applies broad knowledge of security capabilities and environment to identify new growth areas, new technology and/or emerging opportunities.
• May structure repeatable “purple team” campaign strategies in partnership with Security Incident Response Team (SIRT) members.
• May implement policies and defines approach to strategy achievement. Analyzes long-term impact of new or anticipated strategies and decisions. Builds and enhances key internal and external contacts.
• Manages budgets, operational plans and performance requirements for the specified are of responsibility. Responsible for meeting budgetary goals and objectives.
• Oversees and manages senior managers, managers and individual contributors.
• Allocates available resources to meet operating objectives. Ensures the ongoing training and development of direct reports.
• Develops and mentors staff through on-boarding, open communication, training and development opportunities and performance management processes; builds and maintains employee morale and motivation; ensures the team is appropriately staffed with required competencies; fosters a diverse and inclusive workplace.

BASIC QUALIFICATIONS

• Bachelor’s degree and at least 8 years of experience in IT Security OR a High School Diploma/GED and at least 11 years of experience in IT Security
• At least 6 years of experience with relevant information security teams, such as penetration testing, red teaming, incident response, threat hunting, application security, and/or Information security consulting
• Experience establishing & maintaining relationships with individuals at all levels of the organization, in the business community & with vendors.
• Experience diagnosing, isolating, and resolving complex issues and recommending and implementing strategies to resolve problems
• Experience leading cross-functional teams.
• Experience interacting at the executive level.
• At least 5 years of experience contributing to financial decisions in the workplace.
• At least 5 years of direct leadership, indirect leadership and/or cross functional team leadership.
• Willing to travel up to/at least (10%) of the time for business purposes (within state and out of state).

PREFERRED QUALIFICATIONS

• OSCP, CRISC or CISM
  We will consider employment of qualified applicants with arrest and conviction records

• Directs and leads the efforts of others in the achievement of the strategic and operational objectives for the organization’s cyber environment. Establishes operational objectives for managers and/or teams of professionals in order to achieve the strategic and operational objectives of the group.
• Provides technical leadership on all matters of security. Provides day-to-day administrative direction and oversight of key technology/information systems and general support activities.
• Stays abreast of industry leading best practices in attacker capabilities and brings them to the attention of the leadership team for innovative application, including practical hands-on demonstrations of current and emerging techniques.
• Works with key stakeholders to formulate a comprehensive technology plan that is consistent with the overall business objectives and budgetary considerations.
• Applies broad knowledge of security capabilities and environment to identify new growth areas, new technology and/or emerging opportunities.
• May structure repeatable “purple team” campaign strategies in partnership with Security Incident Response Team (SIRT) members.
• May implement policies and defines approach to strategy achievement. Analyzes long-term impact of new or anticipated strategies and decisions. Builds and enhances key internal and external contacts.
• Manages budgets, operational plans and performance requirements for the specified are of responsibility. Responsible for meeting budgetary goals and objectives.
• Oversees and manages senior managers, managers and individual contributors.
• Allocates available resources to meet operating objectives. Ensures the ongoing training and development of direct reports.
• Develops and mentors staff through on-boarding, open communication, training and development opportunities and performance management processes; builds and maintains employee morale and motivation; ensures the team is appropriately staffed with required competencies; fosters a diverse and inclusive workplace