Wolters Kluwer Director, IT Governance & Assurance, Global Business Services in Lansing, Michigan
Wolters Kluwer Global Business Services (GBS) is designed to provide services to the business units in the areas of technology, sourcing, procurement, legal, finance, and human resources. These global centers promote team collaboration using best practices around a specific focus area to drive results and enhance operational efficiencies. There is a constant endeavor to benchmark against best-in-class industry standards to improve the quality of deliverables, increase cost savings, enhance productivity and reduce time to market for products and applications.
We have an amazing opportunity for an Director, IT Governance & Assurance, available within our Global Business Services division! This position has been created due to growth! Director, IT Governance & Assurance will be responsible for working closely with project teams and internal / external groups to protect and enhance the confidentiality, integrity, and availability of Wolters Kluwer assets.
This position can be located in any of the locations listed (NY, IL, TX, GA, MN, PA, MA, etc.). and will allow for some telecommute, but working onsite in an office is strongly preferred, as this is a People Management position.
As a Director of IT Governance and Assurance, you will be a thought leader in the area of information security for the organization and you will be primarily responsible for developing and implementing programs to protect all personal and confidential information at WK. In this role, you will be required to have proficiency in formulating IT risk strategies at every aspect of security management. Your role will also include coordination with 3rd party audits, internal audits, vendor due diligence, and internal business unit IT on global information security initiatives and compliance tasks and/or projects. In this role, you will provide information security guidance to executive leadership by recommending information security investments which mitigate risks, strengthen defenses, and reduce vulnerabilities for development, internal and client facing systems and products. In this role, you are to stay informed of the most recent security management frameworks, compliance processes and continually sharpen skills and capabilities required of the position.
Support VP of Global Information Security in creating and implementing a strategy for the deployment of information security governance and compliance
Leads an experienced enterprise team that provides global coordination and oversight of divisional and business unit Information Security and Risk Management processes and strategies
Accountable for defining enterprise policy, advising on technology implementation, global controls and monitoring/reporting of performance
Coordinates audit and regulatory inquiries and external vendor activities to help represent the company from an information security, recovery and technology risk perspective
Participates in leading industry forums and consortiums to represent business interests and set standards/practices
Accountable for information security, risk vendor relationship management, product selection and negotiation of high-level contracts and consulting agreements to provide services and capabilities for the protection of organization assets globally
Support the investigation of reported security breaches and develop strategies to handle security incidents and trigger investigations
Orchestrate the analysis and delivery of findings to internal customers with impactful, comparative, interpretative security analysis in a clear, consistent, and factual manner.
Facilitate the tracking and reporting on divisional and business units' metrics, results, data modelling, processing, calculating and transformation into meaningful metrics and reports
Lead and coordinate internal security Audit the proper administration of, all computer security systems and their corresponding or associated software.
Promote and oversee strategic security relationships between internal resources and external entities, including government, vendors, and partner organizations.
Recommend and implement changes in security policies and practices in accordance with changes in applicable regulatory bodies.
Define and communicate corporate plans, procedures, policies, and standards for the organization for acquiring, implementing, and operating new security systems, equipment, software, and other technologies.
Collaborate with other management resources to establish and maintain a system for ensuring that security policies are communicated and met.
Bachelor's Degree in Computer Science/MIS or equivalent
Preferred certifications: CISSP, ISO, QSA, CRISC, CISM
5+ years of professional experience in running an information security function, including analyzing and applying information security risk, risk management, and privacy practices
4+ years of experience working with national and international regulatory compliance frameworks such as ISO, SOX, BASEL II, EU DPD, HIPAA, and PCI DSS
5+ years' experience in strategic planning, budgeting, and allocation
5+ years of relevant work experience, including consulting and general industry experience
Previous military, law enforcement, or national security experience
People and vertical management in projects, leading teams, and direct reports in a matrixed environment
An ability to motivate and manage a team of information security staff supporting the organization's goals and an ability to lead the process of developing an information security vision for the future
An ability to cultivate and build collaborative working relationships with a broad range of enterprise stakeholders
A well-developed understanding of and appreciation for business needs and a commitment to leading the information security team in delivering high-quality, prompt, and efficient service to the business
Strong decision-making capabilities, with a proven ability to weigh the relative costs and benefits of potential actions and identify the most appropriate one
An ability to effectively influence others to modify their opinions, plans, or behaviors
An ability to communicate complex and technical issues to diverse audiences, orally and in writing, in an easily-understood, authoritative, and actionable manner
Understanding of security in Cloud environments and a demonstrated understanding of the technical aspects of information security, such as network security, infrastructure security, and application security
Understanding global information security & Compliance requirements, standards, and regulations
Excellent understanding of project management principles.
Ability to set and manage priorities judiciously.
Excellent written and oral communication skills.
Exceptionally self-motivated with a superior analytical, evaluative, and problem-solving abilities.
Ability to motivate in a team-oriented, collaborative environment.
Strong understanding of security requirements in the application development life cycle
Experience in organizing change management, awareness and training for end users, as well as acting as an internal consultant to IT leaders, Architects and Operations for planning and implementing IT initiatives
Strong technical management skills in overseeing security assessments of external service providers, providing security guidance, and overseeing mock security breach exercises
Strong project management and business requirement development skills in a very fast paced, complex, and demanding environment
Experience with GDPR and GDPR compliance implementations
Knowledge of computer networks, hardware, operating systems, and software including understanding of application and patch development
Experience and/or SME knowledge of the ISO, NIST 800-53, NIST/CSF and PCI.
Occasional Domestic or International Travel, up to 25%
Wolters Kluwer N.V. (AEX: WKL) is a global leader in information services and solutions for professionals in the health, tax and accounting, risk and compliance, finance and legal sectors. We help our customers make critical decisions every day by providing expert solutions that combine deep domain knowledge with specialized technology and services.
Wolters Kluwer reported 2017 annual revenues of €4.4billion. The company, headquartered in Alphen aan den Rijn, the Netherlands, serves customers in over 180 countries, maintains operations in over 40 countries and employs 19,000 people worldwide. Wolters Kluwer shares are listed on Euronext Amsterdam (WKL) and are included in the AEX and Euronext 100 indices.
For more information about our solutions and organization, visit www.wolterskluwer.com, follow us on Twitter, Facebook, LinkedIn, and YouTube.
EQUAL EMPLOYMENT OPPORTUNITY
Wolters Kluwer U. S. Corporation and all of its subsidiaries, divisions and customer/business units is an Equal Opportunity / Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or protected veteran status.
Equal Opportunity Employer Minorities/Women/Protected Veterans/Disabled