Envista Holdings Corporation Jobs

Envista

Job Information

Envista Holdings Corporation Sr. Director, Information Seciruty in Brea, California

Sr. Director, Information Seciruty

Brea,CA

JOB SUMMARY: The Director, Information Security owns the entire Information Security Management program and its related activities to protect and guarantee the availability, integrity and confidentiality of the key information assets. He/She owns the information Security Policy and is responsible to monitor and enforce compliance of this policy. The ideal candidate works closely with executive management to determine adequate and acceptable levels of risk for the organization and reports on a regular basis to the company board members on the companies Cyber Security status.

PRIMARY DUTIES & RESPONSIBILITIES:

• Develop, implement and monitor a strategic, comprehensive enterprise information security and IT risk management program.

• Provide guidance and counsel to the CIO and key members of the leadership team in defining objectives for information security, while building relationships and goodwill.

• Work directly with the business units to incorporate and facilitate risk assessments and risk management processes in their daily work.

• Provide leadership to the corporate information security organization.

• Partner with business stakeholders across the company to raise awareness of risk management concerns.

• Work with Internal Audit, Auditor General's Office and outside consultants as appropriate on required security assessments and audits.

• Coordinate and track all information technology and security related audits including scope of audits, business units involved, timelines, auditing agencies and outcomes. Work with auditors as appropriate to keep audit focus in scope, maintain excellent relationships with audit entities and provide a consistent perspective that continually puts the institution in its best light. Provide guidance, evaluation and advocacy on audit responses.

• Create education and awareness programs and advise operating units at all levels on security issues, best practices, and vulnerabilities.

• Keep abreast of security incidents and act as primary control point during significant information security incidents. Convene a Security Incident Response Team (SIRT) as needed, or requested, in addressing and investigating security incidences that arise.

• Examine impacts of new technologies on the company’s overall information security. Establish processes to review implementation of new technologies to ensure security compliance.

REQUIREMENTS:

• Bachelor's degree in business administration or a technology-related field required.

• 8+ years of experience in a combination of risk management, information security and IT roles at a publicly traded, global company.

  • Experience in software development or other best in class development practices.

  • Experience with Cloud computing/Elastic computing across virtualized environments.

  • Knowledge of common information security management frameworks, such as ISO/IEC 27001, and NIST.

PREFERRED QUALIFICATIONS:

• Professional security management certifications: CISSP, CISM, CEH

• Excellent written and verbal communication skills and high level of personal integrity

• Innovative thinking and leadership with an ability to lead and motivate cross-functional, interdisciplinary teams

• Experience with contract and vendor negotiations and management including managed services.

• Proficiency effectively addressing regulators and legal teams.

Job Ref: R1092340

DirectEmployers