Director, Information Security and Compliance

Information Technology

Job Overview

Job title: Director, Information Security and Compliance

Job description: The GS1 Canada team is on the search for a hands-on, dynamic, and strategic information security leader. In this role, as the Director, Information Security & Compliance you will drive the execution of GS1 Canada’s information security strategy focused on managing the organization’s cyber risk. You will strive to deliver change across the organization to ensure security is an enabler to GS1’s mission. As a strategic security leader, you will improve and maintain a security management program that governs the creation and administration and maintains oversight of enterprise-wide information security activities. Continuous improvement, implementation, and management of enterprise information security services, governance, cyber resilience, and risk management will be a part of the key responsibilities. With your passion, you will proactively provide direction to the organization in areas of policy and planning for data processing and related functions.

GS1 Global is a neutral, not-for-profit organization that develops and maintains global standards for efficient business communication. At GS1 Canada, it is in our DNA to do the right thing. We believe in the power of standards to transform the way we live and work. We believe in the uniqueness, drive, and passion of our people to carry our values and vision forward. We are a team of friendly and passionate people, optimistic about our capabilities. Together with our people-centered culture and innovative solutions, our vision is to become a strategic partner to the industry that inspires, leads, and enables best-in-class supply chain standards.

KEY RESPONSIBILITIES:

  • Serve in a leadership role responsible for security compliance and communications across GS1 Canada
  • Improve the strategic and comprehensive information security program that defines, develops, maintains, and implements controls, policies and processes enabling consistent and effective information security practices for systems containing GS1 Canada data in collaboration with internal stakeholders and external auditors
  • Evaluate security and compliance trends, evolving threats, risks and vulnerabilities and remediate and/or apply tools to mitigate risk as necessary
  • Work with the Technology team to maintain and update all IT controls, standard procedures, policies, and enforcement of processes to enable compliance and regulatory requirements
  • Ensure the department is aligned with business processes, tactical planning, and strategic vision
  • Direct and architect the security of the cloud infrastructure environment supporting GS1 Canada production systems and its security, availability, and optimal performance
  • Develop, update, and regularly test GS1’s Incident Response, Disaster Recovery & Business continuity plans.
  • Prepare and facilitate relevant presentations and reports while running the Cybersecurity Governance Committees
  • Take ownership of key Cybersecurity Projects
  • Develop and maintain relationships across the organization, the security industry, peer organizations and other entities, as necessary
  • Lead and manage the Security Architecture, Security Operations, Incident Response, and Security Engineering resources (including the team responsible for DevSecOps)
  • Lead major Cyber Incident Response Teams
  • Design and deliver plans, directing teams to achieve a high level of operational excellence that aligns with department and organizational goals and objectives
  • Manage vendor relationships to ensure that Service Level Agreements (SLAs) are met, services and invoices are aligned, and contracts are proactively managed and re-negotiated

KNOWLEDGE, SKILLS, AND EXPERIENCE:

  • Bachelor’s Degree in information technology or Computer Science
  • Master of Science in Computer Sciences or Information Technology is an asset
  • Superior, proven oral and written communications skills, skilled at making presentations to internal and external stakeholders
  • Certified Information Systems Security Professional (CISSP) or similar certification required
  • 10+ years of progressive experience that includes designing and implementing an enterprise information security strategy and program
  • Expertise in information security, technology, and risk management
  • Business and financial acumen, change management, and budget and resource management
  • Effective time management skills and strong working knowledge of Project Management methodologies

GS1 Canada is an equal opportunity employer. If selected for an interview, please advise our Human Resources team if you require accommodation due to a disability during the interview and assessment process.

Company: GS1 Canada

Expected salary:

Location: London, ON

Job date: Fri, 24 Sep 2021 22:48:59 GMT

Job Source: Careerjet.ca

Apply for this job
Share:

A job board that helps you to get the right job based on your skills and experience.

T&C

Terms & Conditions

Contact Us

info@firstnationswork.com