Skip to content


Advertise your job!

Lake Forest Illinois - 170-200k +bonus Full Time Posted: Friday, 11 January 2019
Applicants must be eligible to work in the specified location

Director of IS/GRC


  • Understands the enterprise strategy and influences the integration of security into business strategies and processes while ensuring that the results are documented and actionable, with clear ties to Enterprise Security frameworks
  • Align the security team scope, budget and staffing to the company level strategy, emerging technologies and changes in the threat landscape
  • Build, develop and sustain a team structure that supports the progression of team members, builds a bench of resources and incorporates recruitment
  • Works closely with external partners to ensure the security and integrity of Company data is not compromised and is available when needed
  • Directs the assigned security functions of Enterprise Information Security as they relate to Security Architecture, Security Risk and Compliance, Security Engineering, Security Administration, Security Operations, and IT Risk Management
  • Responsible for effectively executing specific ES Risk Management and Compliance activities, including management of Enterprise Systems Sarbanes-Oxley (SOX) controls with associated supporting processes, collaboration with process owners to ensure that risk mitigations are appropriate and to report on progress with respect to the designed plan, all in alignment with company Enterprise Risk Management (ERM) guidelines
  • Lead a functional Security team to manage information risk and availability to an acceptable level to meet the business and compliance requirements of the organization globally
  • Establish and manage the capability to identify, protect, detect, respond and recover from information incidents to minimize business impact. Analyzes and provides assessments of IT Security Incidents & trends and their impact on Company's Global business to Senior Management
  • Establish, monitor, evaluate and report key performance and key risk indicators (KPIs and KRIs) to provide leadership with accurate information regarding the effectiveness of the information risk & security strategy
  • Establishes and maintains relationships outside of Company to inform on strategy and best practices
  • Represents Company at security conferences and functions to understand and industry trends
  • Collaborates with all levels of management to raise security and IT risk awareness
  • Provides Information Security and IT Risk input to the EPS strategy and planning efforts
  • Communicates strategy with the security team and performs changes management as necessary
  • Ensures new development, major changes and improvements to applications and systems continue to provide necessary and appropriate security, IT risk and continuity, within all applicable environments. Manages the integration of new security technologies and services into the suite of applications and operating systems with minimal negative impact
  • Advises Contract and Legal Teams to ensure terms and conditions protect Company and comply with Company's risk profile


  • 10+ years of successful experience in an Information Security field
  • Current CISM and or CISSP certification preferred
  • 5+ years of successful experience directly managing technical individual contributors, supervisors and managers
  • Ability to translate complex IT Security problems and issues into simple business terms & business impact
  • Experience in executing security programs in companies that have a Multi-Billion Dollar E-commerce Business, Brick & Mortar businesses, as well as External & Inside Sales
  • Demonstrated ability to motivate, mentor, coach and lead technical teams; must be able to work directly with individuals at all levels of the Company
  • Strong verbal and written communication, facilitation, and interpersonal skills
  • Ability to manage vendor/supplier relationships, including contract negotiation, ongoing maintenance & support and problem-resolution

Lake Forest Illinois, United States of America
170-200k +bonus
Request Technology - Kyle Honn
Kyle Honn
1/11/2019 2:55:06 PM

We strongly recommend that you should never provide your bank account details to an advertiser during the job application process. Should you receive a request of this nature please contact support giving the advertiser's name and job reference.