Senior Director Cybersecurity, Legal and Compliance
Location:Akron, Ohio, United States, 44316
Company: Goodyear
Requisition ID: 126280
Sponsorship Available: No
Relocation Assistance Available: Yes

KEY EXPERIENCE

• 14 or more years of experience in running the Information Security Office - Analyzing/Applying information security risk, risk management and privacy practices.
• Experience managing a large global organization with direct/indirect reports.
• Relevant work experience (including Consulting and General Industry experience).
• Knowledge of national and interpersonal regulatory compliances and frameworks (such as ISO, COBIT, DPD, HIPPA and PCI DSS).
• Extensive experience in strategic planning, budgeting and allocation.
• Experience in law enforcement and/or national security - desired.
• Bachelors degree in Computer Science, Management Information Systems, Engineering or a related discipline is required; Advanced degree preferred.

KEY SKILLS

• Excellent Leadership, Presentation, Interpersonal and Communication Skills (both verbal and written).
• Able to analyze/grasp a situation quickly from different perspectives and create well-reasoned solutions.
• Working knowledge of IT Financial Management and IT Audit.
• Competent in IT Risk Assessment/Management, IT Continuity Management, IT Governance Formulation and Organizational Change.
• Expert in Information Policy Formulation, Information Security Management and Business Risk Management.

• Cybersecurity Strategy and Governance:- Provide strategic oversight for risk and strategies - Dealing with potential risk through contingency planning and risk mitigation
• Develop/Align the IT risk and security strategy/roadmap to progress our security and risk processes/tools to improve critical business capabilities
• Oversee business continuity, mitigate risk and ensure compliancy through the existence of secure/sustainable IT security policies
• Set usage and security policies for information sharing on internal/external platforms
• Leadership to Global IT Risk and Security Team:
• Responsible for the organizational development of direct/indirect reports and providing feedback
• Assure needed capabilities/skills are available to achieve planned results in collaboration with global Technology leaders
• Coach, mentor and empower team members to deliver results and become future leaders
• Perform managerial activities (i.e., performance management, associate development, team staffing, recognition plans, performance improvement plans, disciplinary actions and communication/enforcement of policies and procedures)
• Educate the Global Organization:
• Educate global Business Unit Leaders and Service Managers on IT security policies
• Understand the trade-offs required to manage the different levels of IT risk tolerance/risk exposure across the organization and balance this with risk investments
• Educate Executive Leadership on cyber risks and create an information security awareness program with custom communication tools and campaigns for each business unit and integrated services group
• Serve as a strategic business partner for the global business continuity planning process across business units and the Integrated Services group.Ensure corporate provides IT security services (globally) that protect the company (at an acceptable level of risk) and promotes business growth