The Director of Cyber Security will report to the companies Chief Information Security Officer and is a senior level cyber role responsible for overseeing enterprise cybersecurity (IT/OT). The role manages all aspects of cyber security including, GRC, strategy, design, development, implementation, incident response, budgets, and adherence to various regulations, standards, and cyber frameworks.
The candidate will coordinate security activities across Georgia-Pacific’s (GP) operating units and internal shared services providers in a complex multi-business, multi-platform IT environment. The role will assess new security solutions, determine effectiveness of existing solutions and work with internal teams to implement security. The candidate will facilitate the creation of security policies, standards & procedures across business and manufacturing environments. Additionally, provide leadership in development of security metrics, dashboards and execution of audit & assurance activities as needed.
The ideal candidate will provide strategic leadership, have extensive experience in leading cyber security functions and be well versed in cyber security technologies within both business and manufacturing environments. They must have a strong passion to work in a collaborative team environment to take a security to the next level.
What You Will Do
Key Responsibilities:
- Lead all aspects of cyber security including GRC, strategy, design, development, implementation, incident response, budgets, and adherence to various regulations.
- Facilitate development of security roadmaps with manufacturing and business IT teams.
- Consult with business units and manufacturing teams to ensure security solutions are designed and implemented to support manufacturing, cloud, IoT strategies and mobile technologies.
- Ensure development of an ongoing security assurance program to audit, monitor and verify the effectiveness of security; analyze data, develop trend analysis, and ensure compliance to existing standards, policies, and procedures.
- Develop methodologies and perform security framework audits to identify gaps and drive implementation of security policies, standards, and best practices across the organization.
- Manage and implement strategic security projects and initiatives as required.
- Regularly communicate security strategy and posture to all levels of leadership.
- Ensure compliance to legal/audit/government regulations and policies regarding cybersecurity (CFATS, MTSA, other regulatory requirements).
Knowledge, Skills & Abilities:
- Leadership, strategic thinking, ability to set a vision and gain alignment across the organization.
- Ability to communicate clearly, concisely and confidently (oral, written, presentation).
- Superior interpersonal and consultative skills with ability to manage others.
- Strong experience in a Microsoft centric infrastructure and clear understanding of modern security tools, networking, authentication methods and cloud security capabilities.
- Highly motivated and self-directed with strong organizational and project management skills.
- Strong knowledge in implementing and operating various security frameworks such as ISO 27001, NIST 800-53, NIST Cybersecurity Framework, C2M2, COBIT, or similar
- Ability to thrive in a dynamic landscape, exhibiting flexibility and adaptability in managing workloads, navigating high-pressure scenarios, meeting deadlines, and seamlessly adapting to evolving circumstances.
Who You Are (Basic Qualifications)
- Experience in managing security teams in large, federated organizations.
- Working knowledge in Microsoft security technologies, Active Directory, domain structures, user authentication, networks, and security monitoring capabilities.
- Hold one or more Industry security certifications, such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Systems Security Certified Practitioner (SSCP) or Global Information Assurance Certification (GIAC)
- Proven experience in operating a cyber program within industry best practices and cyber frameworks such as ISO 27001, NIST 800-53, NIST Cybersecurity Framework, C2M2, COBIT.
- A track record of successfully implementing cybersecurity measures, demonstrating your ability to manage complexities and security requirements specific to this environment.
What Will Put You Ahead
- Professional experience as a CISO, or deputy CISO in a large, federated manufacturing environment.
- Management of Business Continuity and Disaster Recovery functions in an organization.
At Koch companies, we are entrepreneurs. This means we openly challenge the status quo, find new ways to create value and get rewarded for our individual contributions. Any compensation range provided for a role is an estimate determined by available market data. The actual amount may be higher or lower than the range provided considering each candidate's knowledge, skills, abilities, and geographic location. If you have questions, please speak to your recruiter about the flexibility and detail of our compensation philosophy.
Hiring Philosophy
All Koch companies value diversity of thought, perspectives, aptitudes, experiences, and backgrounds. We are Military Ready and Second Chance employers. Learn more about our hiring philosophy here.
Who We Are
As a Koch company and a leading manufacturer of bath tissue, paper towels, paper-based
packaging, cellulose, specialty fibers, building products and much more, Georgia-Pacific works to meet evolving needs of customers worldwide with quality products. In addition to the products we make, we operate one of the largest recycling businesses. Our more than 30,000 employees in over150 locations are empowered to innovate every day – to make everyday products even better.
At Koch, employees are empowered to do what they do best to make life better. Learn how our business philosophy helps employees unleash their potential while creating value for themselves and the company.
Our Benefits
Our goal is for each employee, and their families, to live fulfilling and healthy lives. We provide essential resources and support to build and maintain physical, financial, and emotional strength - focusing on overall wellbeing so you can focus on what matters most. Our benefits plan includes - medical, dental, vision, flexible spending and health savings accounts, life insurance, ADD, disability, retirement, paid vacation/time off, educational assistance, and may also include infertility assistance, paid parental leave and adoption assistance. Specific eligibility criteria is set by the applicable Summary Plan Description, policy or guideline and benefits may vary by geographic region. If you have questions on what benefits apply to you, please speak to your recruiter.
Equal Opportunities
Equal Opportunity Employer, including disability and protected veteran status. Except where prohibited by state law, all offers of employment are conditioned upon successfully passing a drug test. This employer uses E-Verify. Please visit the following website for additional information: http://www.kochcareers.com/doc/Everify.pdf