CSO

Division Information Security Officer (DISO)
Multiple US positions: California, Georgia, Kentucky, Nevada, Texas, Wyoming
Our Client: a top 5 auto manufacturer

The business need for this position is as follows: This position is accountable for ensuring cost-effective protection and integrity for this manufacturer's information assets while enabling world-class information access. This position is also accountable for developing and implementing a corporate technology strategy that ensures the secure and uninterrupted operation of all information technology systems. This position supports all corporate strategies due to heavy reliance on technology to achieve its goals. Candidates should have at least 20 + years in leading - managing information technology / information security operations and influencing and managing change.

The Primary responsibilities of this position are as follows:
1. Accountable for developing the overall information security vision, strategy, and architecture for the enterprise, including policy and guidelines to support vision and strategic direction.
2. Ensure effective security and maintenance of the corporate database and all facilities, including software and hardware within the corporation.
3. Ensure applicable compliance with Sarbanes Oxley and information technology internal controls computers and network. Establish procedures and standards necessary to control the IT environment; select and use appropriate test procedures and tools; and maintain an orderly system through which modifications may be made to existing systems.
4. Maintain a high level of expertise and knowledge on technology trends and best practices in technology, specifically in information security arena.
5. Ensure effective recruitment, development, performance and retention of qualified and motivated staff to achieve Technology Advancements Group objectives.

Primary Deliverables:
- He / She will manage many aspects of our client's Information Security operations - eg) provisioning, customer service, group and access management as this is an area in which our client has its larger challenges
- She / He will also manage an Operating Budget of approximately $ 5.7 million
- He / She will be accountable for all corporate information data security, ensuring appropriate access to the right information by the right people at the right time
- She / He will provide direct supervision to 5 directors and manage a 100+ total team
- He /She will have to manage the sticky integrity and ethical issues common to the Information Security space.
- He / She will have overall accountability for the following groups:
Information Security "Operations"
Network Security & Monitoring
Information Security Programs and Policies
Information Security Solutions
Security and Risk Assessments

Must Have Requirements:
- Have at least 20 + years in leading - managing information technology / information security and influencing change
- Experience managing Information Security Operations - eg) provisioning, customer service, group and access management
- Experience managing a 100 + team
- Experience managing the sticky integrity and ethical issues common to the Info Security space
- Experience in technical knowledge
- Experience and strong technical knowledge of Information Security Processes and Access Controls
- Experience in developing security architecture
- Experience in integration of enterprise wide systems and change management practices
- Extensive leadership experience, including successful project or change management accomplishments
- Other Certifications and Credentials key to this position IE: CISSP, CISA TNCP, CHP & CHSS
- Bachelor's degree required -- having a Graduate degree is a plus
- Have expertise in online security methodologies and practices

Hiring Requirements
- Financial and criminal background check
- Education and credentials verification
- Credit check
- Drug Testing

Resume and references to: voreilly@s3grp.com