Shire Jobs

JOB REQUIREMENTS: Manager, Global Information Security Risk - 27831 Summary: The Manager, Global Information Security Risk focus on driving alignment between security processes and business capabilities. The manager assists with reporting on the state of risk, providing visibility and helping business leaders and risk managers understand where risk resides and where improvements must be made to protect the business. The manager interacts with IT, Governance, Manufacturing and other business stakeholders to understand information security risks across all technology platforms and business environments to manage risk to appropriate tolerances and ensure controls are in place to protect SCJ. The manager will work collaboratively across SCJ to support current and upcoming products, services and initiatives to identify and manage risks to acceptable levels. This includes but is not limited to elevating Security Risk and Compliance Frameworks, assessment methodologies, inherent risk, residual risk models to achieve the objectives of the company leveraging a pragmatic approach. This is an onsite role in Racine, WI. Essential Duties and Responsibilities: * Lead the creation and implementation of frameworks for conducting comprehensive business and technology risk assessments * Drive strategic initiatives to identify, evaluate, and mitigate risks, while mentoring team members to ensure effective risk management practices * Consults on active projects for items related to business and information security risk and how to address gaps through recommended risk response * Provide subject matter expertise of business and the associated risks, balancing approach to both protect and enable the business, bringing line of business specific security requirements back to risk team leadership * Analyzes, communicates, and enforces all security controls identified for our company\'s information security compliance requirements * Performs risk management assessments, develop recommended risk response and communicate risk to leadership * Mentor and Coach Team Members and parties providing guidance and in developing their skills in risk management. BENEFITS AND PERKS: SC Johnson\'s total compensation packages are at or above industry levels. In addition to salary, total packages may include bonuses, long-term incentives, matching 401(k) contributions and profit sharing based on company profitability, job level and years of service. As a family company, we\'re committed to providing benefits such as subsidized health care plans, maternity/paternity/adoption leave, flexible work arrangements, vacation purchase options, recreation and fitness centers, childcare, counseling services and more. #LI-MHI Equal Opportunity Employer The policy of the Company is to ensure equal opportunity for all qualified applicants and employees without regard to race, color, religion, gender, marital status, sexual orientation, national origin, ancestry, age, gender identity, gender expression, disability, citizenship, pregnancy, veteran status, membership in any active or reserve component of the U.S. or state military forces, genetic history or information or any other category protected by law. ***** OTHER EXPERIENCE AND QUALIFICATIONS: Required Skills / Experience / Competencies: * Bachelors degree or equivalent is required * 5+ years of experience with risk management and/or security controls/frameworks * 1-3 years of demonstrated experience building recommended risk responses to address security gaps without hindering the business * 1-3 years demonstrated ability to apply data governance framework to effectively determine confidentiality level for company data * 1-3 years of proven ability of possessing business acumen and experience interfacing with business leaders and various levels including middle and senior management * Legally authorized to work in the United States Preferred Skills/ Exp rience: * 5+ years of overall experience in the information security or compliance field, audit, or operational risk * 3+ years of experience of working with/ implementing risk control frameworks and processes to drive a risk-based approach to information security (e.g. COBIT,NIST CSF,NIST 800 53 Rev 4, ISO 17799, ISO/IEC 27002, ITIL etc.) * 2+ years of experience conducting information security internal controls assessments, vendor risk assessments, metrics, dashboards and risk reporting. In-depth understanding of security controls and how to apply them to business use cases * Demonstrate strong knowledge in IT controls, risk assessments, and the design and testing of security measures * Experience building recommended risk responses to address security gaps without hindering the business * Ability to apply data ***** APPLICATION INSTRUCTIONS: Apply Online: https://ars2.equest.com/?response_id=cdfded0eaa1e1fe2faeb7eadec489e10 Other: Applicants ONLY to apply via URL link provided! Qualified females, minorities, and special disabled veterans and other veterans are encouraged to apply.