The Director of Information Security is responsible for defining and maintaining the information security program to ensure that information assets and the associated technology, applications, systems, infrastructure and processes are adequately protected in the company's digital ecosystem. The position requires a strategic and results driven individual to lead the overall information security strategy, vulnerability management, incident management, execution of application security standards, and security monitoring with a global focus. The Executive Director is responsible for identifying, evaluating and reporting on legal and regulatory items, IT, fraud and cyber security risk to information assets, while supporting and advancing business objectives and compliance with our business model.
Determine global vision for information security assets, policies and standards
Develop and maintain continuous up-to-date information security policies, standards and guidelines. Oversee the approval and publication of these information security policies and procedures.
Identify and communicate security protection goals and objectives with suitable measurement KPIs to support the business security requirements.
Provide regular reporting on current status of information security program to senior leadership team.
Audit all aspects of information security and facilitate integration with revenue optimization, fraud, and merchant management teams to ensure that all information owned, collected or controlled by or on behalf of the company is processed and stored in accordance with applicable laws and other global regulatory requirements, such as data privacy.
Monitor the external threat environment for emerging threats and advise relevant stakeholders on the appropriate courses of action.
Evaluate and provide recommendation for risk mitigation and insurance policies for cybersecurity.
Define and build partnerships with internal partners for providing investigation, incident response support and other services as identified.
Serve as an internal information security consultant to the CP&S stakeholders to assist / advise / educate on all aspects of information security and compliance.
Ensure effective levels of data asset protection are in place and monitored including data loss / data leakage and intrusion detection and prevention.
Establish governance and monitor compliance with the organizations security policies and procedures among employees, contractors and other third parties and take corrective action where necessary including roles and responsibilities with regard to information ownership, classification, accountability and protection of information assets.
Create and manage a unified control framework to integrate and normalize the wide variety and ever-changing requirements resulting from global laws, standards and regulations.
Monitor advancements in information security.
Manage and Oversee systems implementation and new tools to be used in the organization. Guarantee Rockwell and Customer Data are protected and ensure compliance business wide.
Travel could be as high as 50% globally.
EOE, M/F/Disabled, Vet
Internal Number: 2580592
About Rockwell Automation
When you choose Rockwell Automation, you join countless talented employees who have helped us establish our leadership position in the automation industry over the past century.
You join a diverse, inclusive and global community with a passion for innovation. A place where you can partner with great minds and inspiring people. And a corporation backed by the financial strength that drives growth – and career opportunities.
As much as we focus on our customers, we know our employees are key to our success and future. Helping you develop a rewarding career is a top priority. Because when you succeed, we succeed.