Lamb Weston LATAM · 1 week ago
VP Information Security
Eagle, ID
Full-time
Onsite
Director/Executive
$259K/yr - $388K/yr
10+ years expLamb Weston is a leading manufacturer in the food industry and a public Fortune 500 company. The VP Information Security will oversee the enterprise-wide IT Information Security vision, strategy, policy, operations, risk management, and business continuity, ensuring compliance and managing security risks.
Food Production
Responsibilities
Develop, implement, and maintain a comprehensive enterprise security strategy roadmap
Develop and mature the company’s information security program, ensuring compliance with relevant regulations and standard methodologies
Proactively monitor, evaluate, and implement standard methodologies related to enterprise information security practices. Provide internal guidance with respect to company response to emerging information security threats both internally and externally
Monitor the external threat environment for emerging threats and advise relevant business partners on the appropriate course of action that attains our goal of zero breaches
Collaborate with senior leaders and departments to assess risks, coordinate mitigation efforts, establish internal controls, respond to incidents, and manage shared concerns. Investigate security breaches, communicate to key business partners and executive leadership, and provide remediation and resolution
Serve as an expert advisor to executive leadership in the development, implementation, and maintenance of a strong information privacy and security program and infrastructure including network access and monitoring policies
Evaluate effectiveness of information security, privacy, and business continuity planning programs and procedures of third parties with whom the company engages as software, hardware, and/or service providers
Develop, maintain, and routinely exercise breach and ransomware approaches and processes
Identify and mitigate security events and incidents, compliance issues, operational inefficiencies, application vulnerabilities, network/infrastructure, and other vulnerabilities
Review and evaluate technology and incoming new vendors for future risks and opportunities to improve IT security
Establishes Information Security guidance for the Enterprise Architecture team and approves designs and strategies
Provide strategic risk guidance for the company’s IT projects, including the evaluation and recommendation of technical controls. Oversee the security requirements in system development life cycle, business continuity planning, and disaster recovery
Continuously improve a vulnerability management program which includes automated vulnerability scanning, customized vulnerability assessment, and penetration testing
Create and communicate a risk-based process for vendor risk management, including assessment and treatment for risks that may result from partners, consultants, and other service providers
Perform risk assessments and maintain the risk register
Oversee user access/provisioning for various systems used by the company
Qualification
Required
Demonstrated experience with various information security controls, including secure network architecture, access paths, ERP and mainframe security, global security & cybersecurity laws, systems security, encryption systems, and database security
Experience designing and maintaining information security policies and procedures, that are informed by the needs of the business
Develop and implement a multi-year information security roadmap and plan, which includes metrics to measure performance and can be understood by a variety of audiences
Deep knowledge and experience with security and regulatory compliance as well as external audits
Proven track record and experience in developing information security policies and procedures as well as successfully implementing programs that meet the objectives of excellence in a dynamic environment
Abreast of new tools and technologies related to OT & IT security
Experience working in a senior leadership security role for a publicly held company, creating and evolving an Information Security organization, and experience working for a global organization are required
Able to interpret technical security details and properly translate those into business terms for Executive leadership
Proven analytical ability to solve complex business and technical problems, critical thinker
Strong interpersonal skills to effectively collaborate with internal/external customers, senior management, and the Board of Directors
Ability to cultivate networks with people from across a variety of business units, technology disciplines, operational functions, and locations
Transparent leader with the ability to work in ambiguous situations and report a positive and clear 5-year cost effective roadmap to success
Strong people leader and developer of talent. Strong management, relationship building, and communication skills
Poise and the ability to act calmly and competently in high-pressure, high-stress situations where ownership, accountability, and responsibility for assets and information are not precisely understood
10+ years of experience in a senior level information security and risk management role required, including global information security management, planning, and policy development in a diverse information systems environment to include management experience
Bachelor's degree or equivalent in Information Security, Computer Science, or related fields
Strong understanding of regulatory requirements and industry standards (e.g., ISO 27001, NIST, GDPR)
Thrive in a diverse, fast paced, autonomous and decentralized environment
Ability to travel independently, both domestically and internationally, up to 25% of the time may be required
Preferred
Masters preferred
CISSP, CISM, CRISC or other security certifications preferred
Benefits
Health Insurance Benefits - Medical, Dental, Vision
Flexible Spending Accounts for Health and Dependent Care, and Health Reimbursement Accounts
Well-being programs including companywide events and a wellness incentive program
Paid Time Off
Financial Wellness – Industry leading 401(k) plan with generous company contributions, Financial Planning Services, Employee Stock purchase program, and Health Savings Accounts, Life and Accident insurance
Family-Friendly Employee events
Employee Assistance Program services – mental health and other concierge type services
Company
Lamb Weston LATAM
Lamb Weston es un proveedor líder de productos congelados de papas, boniatos, aperitivos y vegetales para restaurantes y minoristas de todo el mundo.
5001-10000 employees
Funding
Current Stage
Late StageCompany data provided by crunchbase