Senior Director of Cybersecurity
Apply NowCompany: Arrow Electronics
Location: Columbus, OH 43230
Description:
Job Type
Full-time
Description
Arrow International is the world's largest manufacturer and supplier of charitable gaming products and solutions. We produce and distribute a wide array of products including consumables (pull tab tickets, bingo paper and ink, etc.) as well as world-class, state-of-the-art, electronic gaming products. Our products are sold, installed, and operated in numerous social and gaming venues around the world. We continue to grow at a record pace and offer this exciting career opportunity to join our team where we are focused on attracting and engaging exceptional talent, empowering colleagues to achieve fulfilling careers, and creating fun and engaging products that are second to none for our customers.
Job Overview:
The Senior Director of Cybersecurity is responsible for developing and executing a strategic vision to protect the organization's information assets in a compliance-driven environment. This role is part of the IT Leadership team, overseeing a team of analysts, and covering operations in North America and Europe. The Senior Director will collaborate with executive management to assess and mitigate risks as the company grows.
Key Responsibilities:
Strategic Leadership:
Risk Management:
Policy and Compliance: Develop, implement, and enforce security policies, standards, and procedures. Ensure compliance with relevant laws and regulations.
Incident Response: Oversee the incident response process, ensuring timely and effective resolution of security breaches.
Security Architecture: Guide to the design and implementation of secure IT architecture and systems.
Team Leadership: Lead and develop the information security team, fostering a culture of security awareness and continuous improvement.
Collaboration: Work with other executives and departments to integrate security into all aspects of the organization.
Awareness and Training: Establish security education and training programs to enhance employee awareness and adherence to security protocols.
Vendor and Contract Management: Oversee security-related vendor relationships and contractual agreements
Requirements
Qualifications:
Key Certifications:
Framework Experience:
Full-time
Description
Arrow International is the world's largest manufacturer and supplier of charitable gaming products and solutions. We produce and distribute a wide array of products including consumables (pull tab tickets, bingo paper and ink, etc.) as well as world-class, state-of-the-art, electronic gaming products. Our products are sold, installed, and operated in numerous social and gaming venues around the world. We continue to grow at a record pace and offer this exciting career opportunity to join our team where we are focused on attracting and engaging exceptional talent, empowering colleagues to achieve fulfilling careers, and creating fun and engaging products that are second to none for our customers.
Job Overview:
The Senior Director of Cybersecurity is responsible for developing and executing a strategic vision to protect the organization's information assets in a compliance-driven environment. This role is part of the IT Leadership team, overseeing a team of analysts, and covering operations in North America and Europe. The Senior Director will collaborate with executive management to assess and mitigate risks as the company grows.
Key Responsibilities:
Strategic Leadership:
- Develop and lead the implementation of a comprehensive information security strategy aligned with business goals.
- Collaborate with executive leadership to define cybersecurity priorities and investment strategies.
Risk Management:
- Identify, assess, and manage cybersecurity risks, ensuring effective protection measures and risk mitigation strategies are in place.
- Promote best practices in cybersecurity practices.
Policy and Compliance: Develop, implement, and enforce security policies, standards, and procedures. Ensure compliance with relevant laws and regulations.
Incident Response: Oversee the incident response process, ensuring timely and effective resolution of security breaches.
Security Architecture: Guide to the design and implementation of secure IT architecture and systems.
Team Leadership: Lead and develop the information security team, fostering a culture of security awareness and continuous improvement.
Collaboration: Work with other executives and departments to integrate security into all aspects of the organization.
Awareness and Training: Establish security education and training programs to enhance employee awareness and adherence to security protocols.
Vendor and Contract Management: Oversee security-related vendor relationships and contractual agreements
Requirements
Qualifications:
- Bachelor's degree in computer science, Information Technology, or a related field; master's degree preferred.
- Proven experience in IT applications and/or IT Infrastructure Management, with at least 10 years in a leadership role.
- Proven experience leading Cybersecurity Programs & digital transformation initiatives within a complex regulated organization.
- Excellent leadership, communication, and interpersonal skills, with the ability to influence at all levels of the organization.
Key Certifications:
- Certified Information Systems Security Professional (CISSP)
- Certified Information Security Manager (CISM)
- Certified Information Systems Auditor (CISA)
- Certified in Risk and Information Systems Control (CRISC)
- Certified Chief Information Security Officer (CCISO)
- Certified Information Privacy Professional (CIPP)
Framework Experience:
- NIST Cybersecurity Framework (CSF): Provides guidelines for managing and reducing cybersecurity risk.
- ISO/IEC 27001: Specifies requirements for establishing, implementing, and maintaining an information security management system (ISMS). CIS Controls: A set of best practices to secure IT systems and data against cyber threats.
- COBIT: Focuses on governance and management of enterprise IT.
- PCI DSS: Standards for securing credit card transactions and protecting cardholder data.
- MITRE ATT&CK: A framework for understanding adversary tactics and techniques.