Director, Cybersecurity

Company: Graham Packaging
Location: Lancaster
Posted on: May 3, 2021

Job Description:

Graham Packaging is a leading manufacturer of sustainable packaging. From the kitchen to the laundry room, Graham Packaging is part of your everyday life. Theyre the kind of people you want as your friends and neighbors as well as your partners and suppliers. By building strong relationships and creating value for our customers, our employees embody the innovative spirit thats inherent to Graham. We truly are people building a better tomorrow.

Overview

The Director, Cybersecurity is responsible for providing vision, leadership, and supporting all the company’s security initiatives. The Cybersecurity Director oversees the planning and implementation of enterprise IT systems, business operations, facility, and manufacturing system defenses against security breaches and vulnerability issues. This individual is also responsible for auditing existing systems, while directing the administration of security policies, activities, and standards in alignment with the organization’s security risk profile and tolerance.

The Director is accountable for promoting a ‘security aware’ organization and instilling the practices and technology-based capabilities to minimize the exposure to cybersecurity and data-related risks.  In carrying out the functions and responsibilities of the position, s/he is responsible for the total life cycle and the processes, policies, and procedures related to the same.   The individual will work in close partnership with technical staff, business leaders and users, and external providers.

Excellent organizational, leadership, decision-making and communication skills are necessary to perform the functions as described. Incumbent must be adept at navigating the business, persuading, influencing and negotiating with others as necessary to effect change and providing strategic direction as described. Strong business and financial acumen with a sense of shareholder responsibility are essential.

Essential Duties and Responsibilities

• Define, promote, and implement the information security program and actively participate in the governance processes of the organization’s security strategies that align with the business’ objectives.
• Lead strategic security planning; prioritize defense initiatives and coordinate the evaluation, deployment, and management of security technologies using a risk-based assessment methodology.
• Develop and communicate security strategies and plans to executive team, staff, partners, customers, and stakeholders.
• Assist with the design and implementation of disaster recovery and business continuity plans, procedures, audits, and enhancements.
• Develop, implement, maintain, and oversee enforcement of policies, procedures, and associated plans for system security administration and user system access based on industry-standard best practices.
• Define and communicate corporate plans, procedures, policies, and standards for the organization for acquiring, implementing, and operating new security systems, equipment, software, and other technologies.
• Act as advocate and primary liaison for the company’s security vision via regular written and in-person communications with the company’s executives, department heads, and end users.
• Work closely with the IT department on corporate technology development to fully secure information, computer, network, and processing systems.
• Support the management and administration of all computer security systems, connected technologies, and associated software, including firewalls, intrusion detection systems, cryptography systems, and anti-virus software.
• Develop, track, and control the security services annual operating and capital budgets for purchasing, staffing, and operations. Creatively and independently provide resolution to security problems in a cost-effective manner.
• Remain informed on trends and issues in the security industry, including current and emerging technologies and prices. Advise, counsel, and educate executive and management teams on their relative importance and financial impact.
• Recommend and implement changes in security policies and practices in accordance with changes in local or federal law.
• Supervise recruitment, development, retention, and organization of security staff in accordance with corporate budgetary objectives and personnel policies, as required.
• Perform other duties as assigned or required.

Core Proficiencies and Skills

The Director, Cybersecurity is required to interact with managers, employees, vendors, and customers. Therefore, the following skills and proficiencies are also essential of the position:

• Team player; demonstrates exemplary leadership and is able to build relationships, interface effectively with all levels of the organization.
• Progressive thinker; able to analyze, think and influence strategically across teams.
• Able to understand complex issues and clearly articulate complex ideas.
• Keen attention to detail.
• Change leader; able to champion change, influence, and drive results.
• Experienced managing relationships across multiple cultures and geographies up to the highest levels of the organization.
• Effective communication; able to convey facts and information both verbally and orally.
• Ability to work independently and under pressure to meet objectives and deadlines while maintaining a positive attitude and providing exemplary customer service.
• Collaborative, customer-focused style; proactively contributes to group objectives, volunteers to help others.

 

Education and Work Experience

• Bachelor’s degree in computer science, engineering, or other technical discipline.
• Professional certifications strongly preferred (e.g. CISM, CISSP, or similar).
• Strong knowledge and 7+ years’ experience managing and / or directing IT security functions, programs, and operations.
• Proven experience in planning, organizing, and developing IT security and facility security system technologies.
• Experience in designing, planning, and implementing security policies, procedures, and standards.
• Excellent knowledge of technology environments ranging from on-premise, cloud (IaaS, PaaS, SaaS) in a global setting. Substantial exposure to data processing, hardware platforms, enterprise software applications, and outsourced systems.
• Demonstrated ability to apply IT in solving security problems.
• In-depth knowledge of applicable laws and regulations as they relate to security.
• Proven leadership ability.
• Willingness to travel up to 10%.

Graham Packaging is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, sex (including pregnancy), sexual orientation, religion, creed, age, national origin, physical or mental disability, gender identity and/or expression, marital status, veteran status or other characteristics protected by law.

Keywords: Graham Packaging, Lancaster , Director, Cybersecurity, Other , Lancaster, Pennsylvania

Click here to apply!

Loading more jobs...