Manager Information Security Governance
Dallas, TX, US, 75254
Southern Glazer's Wine & Spirits
Southern Glazer's is the premier beverage distributor for wines, spirits, beer, and non-alcoholic products in the U.S. and Canada.What You Need To Know
Open the door to a groundbreaking tech career with an industry leader. Southern Glazer’s Wine & Spirits is North America’s preeminent wine and spirits distributor, as well as a family-owned, privately held company with a 50+ year legacy of success. To create a new era in alcohol beverage sales and service, we’re heavily invested in the most transformative new technologies – and the most brilliant tech professionals. Southern Glazer’s was named by Newsweek as a Most Loved Workplace and is included on the Forbes lists for Largest Private Companies and Best Employers for Diversity.
As a full-time employee, you can choose from a full menu of our Top Shelf Benefits, including comprehensive medical and prescription drug coverage, dental and vision plans, tax-saving Flexible Spending Accounts, disability coverage, life insurance plans, and a 401(k) plan. We also offer tuition reimbursement, a wellness program, parental leave, vacation accrual, paid sick leave, and more.
We offer continuous learning and career growth in a fast-paced environment where you are respected, your voice is heard, and technology is part of our strategy for success. If you’re looking to fill your glass with opportunity, come join our FAMILY.
Overview
The Manager, Information Security Governance role will manage the Information Security Governance team. This position is responsible for leading a team of Security Governance Analysts that perform day-to-day operations and assessments. Works with direct reports to help design, implement, and assess controls designed to protect the business, including drafting and roll-out of Information Security policies and procedures. This role will interface closely with leaders from other business units and provides guidance on Information Security to all areas of the business.
Specialized Skills and Technologies
- Excellent technical writing skills to draft and review policies and procedures
- Excellent understanding of various frameworks, including- NIST Control and Risk Assessment, PCI-DSS, ISO 2700X
- Ability to use, manage implementation/enhancement, and administer large GRC platform such as ServiceNOW IRM and other InfoSec Governance tools.
- Ability to manage and implement Information Security training programs.
- Ability to work with IT Architects in advisory capacity on Information Security matters
- Participate in enterprise wide initiatives and testing for DR, BCP, IR, and large system implementation
- Excellent teaching, problem-solving, communication, and interpersonal skills
- A solid understanding of networking, systems, and security related technologies and frameworks
- Able to build and maintain relationships, provide mentorship, and present ideas in an effective manner.
- Able to utilize staff strengths, develops staff in weak areas, and constructively address staff performance problems
- Strong communication and decision-making skills
- Strong ability to influence others
- Proven ability to analyze and solve problems with excellent attention to detail
- Strong team player who can work across multiple functions and disciplines
Primary Responsibilities
- Manages and maintains information security policies and procedures.
- Manages internal operations projects that may require cross-department resources and coordination
- Monitors the IT ticketing system to ensure timely correction of any incidents, exception requests and assurance needs.
- Analyzes activities and documented resolutions, identifies problem areas, devise, and deliver solutions to enhance quality of service and prevent future issues
- Helps to define key operational metrics, develop reporting, and set targets to continuously improve
- Directs and participates in Information Security projects and supports team efforts for day-to-day operations
- Responsible for setting staff goals and training, defining technology priorities, and developing long-term strategies to manage and scale the information security program
- Supervises one or more staff and provides them with technical guidance and mentoring
- Aggressively automates repeated tasks to allow the team to scale with the organization’s growth
- Communicates and acts as liaison with end users and colleagues
- Communicates progress on priorities and budget to management and team
- Serves as a member of the team in a technical and process expertise roles
- Serves as a subject matter expert inside of SGWS and assists with complex issues pertaining to Information Security and Governance as needed
- Participates in on-call rotation as needed to support Information Security team.
- Recruits staff to include interviewing, hiring, assigning work, training, coaching, and counseling ensuring consistent application of Employee Guidelines, processes, and procedures
- Conducts performance reviews and holds employees accountable for optimal performance of their responsibilities
- Organizes the Information Security Operations team to ensure it is focused on the information security related needs, goals, and concerns of our business
- Assesses the current information security program and makes recommendations regarding improvements as it relates to emerging risks and trends such as Artificial Intelligence and automation.
- Provides feedback on performance throughout the year, initiates performance plans and disciplinary actions at appropriate times, plans to prepare and present appraisal to salaried employees
Preferred Qualifications
- Master’s Degree
- Active CISSP or other security-related certifications
- Prior experience with one ore more of the following skills: Security of Cloud Technologies, OT/IoT/ICS security, public accounting or large consulting firm experience.
- Working experience with ServiceNow IRM platform or other GRC platforms.
- Familiarity with conducting information risk assessments, audits, and assessments.
Minimum Qualifications
- Bachelor’s degree and formal education in relevant disciplines (Business, Engineering, Information Systems, Computer Science, Mathematics or relevant degreed)
- Minimum 10 years of experience working with technical configurations and varying technologies in a fast-paced environment OR 7 years of experience with large accounting or consulting firm.
- Minimum 5 years of experience in managing a team of Information Technology professionals
- Critical and creative thinker
- Problem Solver
- Strategic Thinker
- Excellent presentation and facilitation skills
- Adaptability and ability to manage change
- Superior interpersonal, communication and presentation skills
- Demonstrates ability to monitor project progress by tracking activities, issues/ risks/dependencies, and provides recommendation for resolution
- Business Acumen
- Effective Communication
Agile Delivery Values
- Openness – Team and stakeholders agree to be open about all work and challenges
- Commitment – Personally commit to achieving the goals of the team
- Respect – Respect your team members to be capable and independent
- Courage – You have courage to do the right thing and work on tough problems
- Focus – Everyone focus on the work in the sprint and the goal of the scrum team. Rise and fall as a team
Physical Demands
- Physical demands include a considerable amount of time sitting and typing/keyboarding, using a computer (e.g., keyboard, mouse, and monitor), or mobile device
- Physical demands with activity or condition may occasionally include walking, bending, reaching, standing, squatting, and stooping
- May require occasional lifting/lowering, pushing, carrying, or pulling up to 20lbs
EEO Statement
Southern Glazer's Wine and Spirits, an Affirmative Action/EEO employer, prohibits discrimination and harassment of any type and provides equal employment opportunities to all employees and applicants for employment without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training. Southern Glazer's Wine and Spirits provides competitive compensation based on estimated performance level consistent with the past relevant experience, knowledge, skills, abilities and education of employees. Unless otherwise expressly stated, any pay ranges posted here are estimates from outside of Southern Glazer's Wine and Spirits and do not reflect Southern Glazer's pay bands or ranges.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Agile Artificial Intelligence Audits Automation CISSP Cloud Computer Science Governance ICS IoT Mathematics NIST Risk assessment Scrum Strategy Teaching
Perks/benefits: Career development Competitive pay Flex hours Flex vacation Health care Insurance Medical leave Parental leave Wellness
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Senior Cybersecurity Engineer jobs
- Open Cloud Security Architect jobs
- Open Security Operations Engineer jobs
- Open Principal Security Engineer jobs
- Open Information Security Specialist jobs
- Open Information Security Officer jobs
- Open Senior Cyber Security Engineer jobs
- Open Senior Product Security Engineer jobs
- Open Chief Information Security Officer jobs
- Open IT Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Senior Penetration Tester jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Senior Network Security Engineer jobs
- Open Cybersecurity Consultant jobs
- Open Security Consultant jobs
- Open IT Security Analyst jobs
- Open Manager Pentest H/F jobs
- Open Senior Information Security Analyst jobs
- Open Security Operations Analyst jobs
- Open Information Security Architect jobs
- Open Information System Security Officer jobs
- Open Agile-related jobs
- Open Risk assessment-related jobs
- Open SOC-related jobs
- Open Analytics-related jobs
- Open Network security-related jobs
- Open CISA-related jobs
- Open ISO 27001-related jobs
- Open GCP-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Threat intelligence-related jobs
- Open Vulnerability management-related jobs
- Open DevOps-related jobs
- Open DoD-related jobs
- Open Security Clearance-related jobs
- Open APIs-related jobs
- Open CEH-related jobs
- Open Security assessment-related jobs
- Open SaaS-related jobs
- Open Malware-related jobs
- Open Kubernetes-related jobs
- Open Java-related jobs
- Open EDR-related jobs
- Open TS/SCI-related jobs