AVP-Global IT Security & Infrastructure (Finance)
As a premier global food provider, the OSI Group partners with the world's leading foodservice and retail food brands to provide concept-to-table solutions that delight consumers around the globe.
Join us and discover a work experience where diverse ideas are met with enthusiasm, and where you can learn and grow to your full potential. We're looking for individuals who thrive in an entrepreneurial environment and who enjoy working as a team to deliver unparalleled service and solutions to our customers.
The salary range posted represents the low and high end of OSI's salary range for this position. Salaries will vary based on various factors, including but not limited to, location, education, skills, experience and performance. Base salary is one component of OSI's overall total rewards package. Other components may include bonuses, special pay programs, comprehensive time off, 401k with match and a full suite of benefit offerings for you and your family.
Position Summary:
This role is responsible for providing a vision and leadership for developing and supporting information security initiatives as well as IT Infrastructure at a Global level. The Information Security and Infrastructure leader directs the planning and implementation of enterprise IT system, business operation, and facility defenses against security breaches and vulnerability issues. This individual is also responsible for auditing existing systems, while directing the administration of security policies, activities, and standards at a Global level.
Principal Duties & Responsibilities:
• Job manages a team, has authority to hire and performance-manage the team.
• Job leads/supervises/manages 1-5 employees.
• Defines the strategy and vision within Security and Infrastructure solutions across the globe.
• Viewed as a Subject Matter Expert within the organization.
• Directs and manages the activities and employees associated with providing technical services to internal customers by identifying, prioritizing, and confirming resolution of reported problems.
• Interprets and explains information to audiences who are not familiar with the subject matter often requiring persuasion.
• Uses experience or precedent to identify solutions or to adapt existing approaches to resolved issues.
• Selects, develops, and evaluates personnel to ensure the efficient operation of the function.
• Participate as a member of the IT senior management team in governance processes of the organization's security strategies.
• Provide guidance to the executive team and Board on strategy and best practices.
• Develop and communicate security strategies and plans to executive team, staff, partners, customers, and stakeholders
• Develop business case justifications and cost/benefit analyses for IT Risk-based spending and initiatives.
• Assist with the design and implementation of disaster recovery and business continuity plans, procedures, audits, and enhancements.
• Lead strategic security planning to achieve business goals by prioritizing defense initiatives and coordinating the evaluation, deployment, and management of current and future security technologies using a risk-based assessment methodology.
• Develop, implement, maintain, and oversee enforcement of policies, procedures, and associated plans for system security administration and user system access based on industry-standard best practices.
• Define and communicate corporate plans, procedures, policies, and standards for the organization for acquiring, implementing, and operating new security systems, equipment, software, and other technologies.
• Manage and assess the cyber risks introduced through the merger or acquisition, and establish a cohesive, unified security infrastructure that protects the interests of the combined entity.
• Review the target company's cybersecurity documentation, incident response plans, and compliance certifications.
• Act as advocate and primary liaison for the company's security vision via regular written and in-person communications with the company's executives, department heads, and end users.
• Work closely with global IT teams on corporate technology development to fully secure information, computer, network, and processing systems.
• Ensure the administration of all computer security systems and their corresponding or associated software, including firewalls, intrusion detection systems, cryptography systems, and anti-virus software are completed.
• Develop, track, and control the security services annual operating and capital budgets for purchasing, staffing, and operations.
• Recommend and implement changes in security policies and practices in accordance with changes in local or federal law.
• Creatively and independently provide resolution to security problems in a cost-effective manner.
• Assess and communicate any and all security risks associated with any and all purchases or practices performed by the company.
• Collaborate with IT leader, defined privacy roles and human resources to establish and maintain a system for ensuring that security and privacy policies are met.
• Promote and oversee strategic security relationships between internal resources and external entities, including government, vendors, and partner organizations.
• Remain informed on trends and issues in the security industry, including current and emerging technologies and prices. Advise, counsel, and educate executive and management teams on their relative importance and financial impact.
• Supports and maintains effective relationships with business functions.
• This role has the responsibility to understand and places in practice appropriate safety procedures. This responsibility is achieved through education, training, use of protective equipment (as applicable) and by following safety policies, regulations, standards, and laws.
• Perform other duties as assigned.
Experience & Skills:
• 10 years of experience in related field is preferred.
• Experience in managing and/or directing an IT and/or security operation and working in the manufacturing industry at Global level.
• Excellent proficiency in all Microsoft Office Suite Products.
• Proven experience in driving a strong security approach within an organization.
• Proven experience in planning, organizing, and developing IT security and facility security system technologies.
• Experience in planning and executing security policies and standards development.
• Excellent knowledge of technology environments, including information security, building security, and defense solutions.
• Considerable knowledge of business theory, business processes, management, budgeting, and business office
operations.
• Substantial exposure to data processing, hardware platforms, enterprise software applications, and outsourced systems, including Office 365, ERP systems, SharePoint and Operational Technologies (OT).
• Good understanding of computer systems characteristics, features, and integration capabilities.
• Experience with systems design and development from business requirements analysis through to day-to-day management.
• Demonstrated ability to apply IT in solving security and infrastructure problems.
• In-depth knowledge of applicable laws and regulations as they relate to security and privacy.
• Proven leadership ability.
• Proficiency in English, other languages are a plus.
Preferred Education
• BA/BS or equivalent is preferred.
• Desired Certification: in one or more of CISM, OSCP, CISSP, CGEIT.
Work Environment:
• Work is generally performed within a business professional office environment, with standard office equipment available.
• Work conditions are typical of an office environment.
• This role requires both domestic and international travel.
• Position may require the physical agility of lifting up to 15 pounds
• Position may require frequent and/or infrequent of bending, squatting, pushing, pulling, stretching/reaching, use hands or fingers, talk, hear, feel objects, tools, controls and standing/walking on concrete flooring.
• Position may require the physical ability to stand/walk for Less than 4 hours.
