- Support the VP of Global Information Security in creating and implementing a strategy for the deployment of information security technologies
- Define and support the development of additional IT control framework, enforce global controls, and monitor/report security performance application within the assigned division or business units
- Coordinate audit and regulatory inquiries, external customers and vendor activities to help represent the Wolters Kluwer business units from an information security, risk and technology risk perspective Performing IT security risk assessments and reporting on ways to minimize threats
- Tracking latest IT security innovations and keeping abreast of latest cyber security technologies
- Overseeing the investigation of reported security breaches and develop strategies to handle security incidents and trigger investigations
- Responsible for managing and coordinating the information security, technology risk, vendor relationship management, product selection and negotiation of contracts for the assigned division or business units
- Coordinate and lead security policy and IT risk management forums with operations and engineering leads as required to resolve outstanding/pending issues before requiring further escalation
- Work with divisional management to develop long term strategy, annual security plans, budget and tactical plans to reduce the IT risk
- Orchestrate the analysis and delivery of findings to internal customers with impactful, comparative, interpretative security analysis in a clear, consistent, and factual manner.
- Facilitate the tracking and reporting on divisional and business units' metrics, results, data modelling, processing, calculating and transformation into meaningful metrics and reports
- Stay abreast of the most recent security management frameworks, compliance processes and continually sharpen skills and capabilities
- Bachelor's Degree in Computer Science/MIS or equivalent work experience
- Minimum 10 years of demonstrated progressive experience in security engineering, security operations, risk & compliance and/or other security fields
- Minimum 5 years of information security management or security leadership
- Minimum 5 years experience with shared services model, vendor, and managed security services
- Minimum 2 years knowledge and understanding of data privacy regulations, such as GDPR, CCPA, HIPAA, and more
- Management, enterprise-wide transition and/or transformation programs
- Experience with security governance and IT general control frameworks such as ISO2700x, HiTrust, Cobit, ITIL, NIST CSF, NIST 800-53, PCI-DSS etc.
- In-depth knowledge and understanding of security standards, industry best practices and maturity frameworks.
- Strong knowledge of the following areas of technical expertise: information policy formulation, information security management, business risk management, IT risk assessment and management, IT continuity management, IT governance formulation, organizational change management, IT financial management, and IT audit
- Ability to manage with influence and communicate effectively with diverse audiences and executive teams
IT Security Director - New York, United States - Wolters Kluwer United States Inc.
Description
IT Security Director (Security Advisory Lead)
In this very high profile role, you are on point for our key business units as the IT Security Director (Security Advisory Lead). You will be primarily responsible for developing and implementing programs to protect information assets owned and in use at Wolters Kluwer.
Using your years of experience, your expertise, and your various certifications (CISSP, ISO, QSA, CRISC, CISM) you will be on point to ensure our divisions are managed with every secure precaution and mitigate risks.
Formulating IT risk strategies at every aspect of security management with your seasoned expertise and strong business acumen. You will be coordinating with 3rd party audits, internal audits, vendor due diligence, and IT global information security initiatives and compliance tasks and/or projects. You will provide information security guidance to executive leadership by recommending information security investments which mitigate risks, strengthen defenses, and reduce vulnerabilities for development, internal and client-facing systems, and products. And you will maintain oversight and drive remediation efforts for the gaps and vulnerabilities identified in your areas of responsibility, as well as participating in or leading security incident response activities as needed.
Wolters Kluwer is a global leader in professional information services. Professionals in the areas of legal, business, tax, accounting, finance, audit, risk, compliance, and healthcare rely on Wolters Kluwer's market leading information-enabled tools and software solutions to manage their business efficiently, deliver results to their clients, and succeed in an ever more dynamic world. Wolters Kluwer combines deep domain knowledge with specialized technology. Our portfolio offers software tools coupled with content and services that customers need to make decisions with confidence. Every day, our customers make critical decisions to help save lives, improve the way we do business, build better judicial and regulatory systems. We help them get it right.
The above statements are intended to describe the general nature and level of work being performed by most people assigned to this job. They are not intended to be an exhaustive list of all duties and responsibilities and requirements.
Wolters Kluwer U. S. Corporation and all its subsidiaries, divisions and customer/business units is an Equal Opportunity / Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or protected veteran status.
#LI-Remote
Compensation:
Target salary range CA, CT, CO, HI, NY, WA: $200,700-$284,100