Director, Cybersecurity in Livonia at Masco

Date Posted: 4/2/2018

Job Snapshot

Job Description

The Director, Cybersecurity has responsibility for coordinating and supporting governance and security efforts in collaboration with key stakeholders across the Masco enterprise, including cross-functional coordination of the governance and security aspects of Masco systems. This position will help identify and operationalize risk management initiatives and standards that need to be applied to the operating environment.

Responsibilities:

  • Consult with CIO council partners on Technology Controls and Information Security programs, policies, standards and incidents.
  • Support and drive the Security strategy across the enterprise and direct projects towards desired Security strategic goals.
  • Assign and oversee resources on risk assessments, required controls definition, control procedure appropriateness, vulnerability assessments etc.
  • Conduct comprehensive risk and control design assessments for an application portfolio, articulate and document impact of control gaps to the business and the overall risk mitigation and remediation plans, remediation strategy document or provide info security solutions to address risks.
  • Ensure technology, processes and governance are in place to monitor, detect, prevent, and react to security threats against the business.
  • Contribute to the definition, development, and oversight of a global network and endpoint security threat management strategy and framework.
  • Ensure team follows internal policies and procedures, technology control standards and applicable regulatory guidelines.
  • Adhere to and advise on, oversee, monitor, enforce enterprise frameworks and methodologies that relate to technology controls / information security activities.

Required Experience & Qualifications:

  • Bachelor’s degree in Information Services or a related field of study.
  • 10+ years of relevant experience.
  • Experience implementing security and compliance best-practice processes and procedures
  • Excellent communication, negotiation and organizational skills, including the ability to present options in business terms to both IT and business leaders.

    Preferred Experience & Qualifications:

  • Relevant Information Security certifications (ex. CISSP, GIAC, MCSE, CEH, CHFI, CISA, CISM, CRISC, etc.)