Manager, Business Information Security Office (BISO) in San Francisco, CA at Advance Auto Parts

Date Posted: 1/11/2020

Career Snapshot

  • Employee Type:
    Full-Time
  • Career Type:
  • Experience:
    Not Specified
  • Date Posted:
    1/11/2020

Career Description



Job Description

Advance Auto Parts is searching for a dynamic information security leader to fill a new role within the security leadership team. Candidates should possess a passion for information security, a proven track record of balanced risk reduction, and a strong understanding of diverse technologies. This position will be based in [Worldpac location to be decided] and be responsible for the execution and ongoing refinement of the information security program within that site. They will serve as the single point of contact for all security related matters and will have the support of the broader team based in the US. The scope of the information security program includes:

  • Implementation and evolution of effective information security control measures.
  • Participate in deployment of security technologies and program enhancements.
  • Developing and managing an information security and privacy awareness program.
  • Developing and maintaining information security policies, standards, guidelines, and procedures.
  • Providing oversight for an incident response function containing elements of security monitoring, forensic investigation, and malware analysis.
  • Monitoring developments in the information security and privacy fields to identify new opportunities and new risks.
  • Allocating resources correctly and efficiently.
  • Prepare financial forecasts and budgets for security operations.
  • Staying current on security vulnerabilities and threats.
  • Interpreting and building controls for emerging information security requirements emanating from new legislation and regulatory compliance.
  • Provide leadership, training and guidance to staff members.
  • Implement education programs on user awareness and security compliance.
  • Provide supervisorial guidance of Information Security staff through the entire lifecycle of employment.

REQUIREMENTS:
 

Education:

  • Computer Science or Information Security college degree or equivalent work experience is preferred

Certification/License:

  • Preferred Global Information Assurance Certification (GIAC), Certified Information
  • Systems Security Professional (CISSP) and/or Certified Information Security Manager (CISM)

Experience:

  • 10 years of technology experience with 5 years in Information Security related positions
  • 5 years or more in supervisory position of security related staff

Knowledge, Skills & Abilities:

  • Excellent oral and written communication skills, with the ability to express complex technical concepts clearly and effectively.
  • Requires wide range of security knowledge and experience with one or more platforms or technologies (e.g., Enterprise Server Security, Network Technology Security, Desktop Security, Active Directory, Application Middleware)
  • Requires strong leadership, systems and security risk analysis and organizational skills
  • Strong analytical, planning, problem solving, project management and time management skills
  • Requires interpersonal skills to interface with technical and business personnel