Chief Information Security Officer

Company: Patrick Industries
Location: Elkhart
Posted on: June 17, 2022

Job Description:

DescriptionPatrick Industries is seeking a Chief Information Security Officer (CISO) to establish and maintain a corporate-wide information security program to ensure that the information assets are adequately protected. - Serving the RV, Industrial, Manufactured Housing, and Marine Industries, the role leads a team of cyber security professionals to support the approximately 4,500 users in these growing markets. This leader is responsible for direct components of the Organizational Strategic Agenda (OSA) and manages specific objectives linked directly to the OSA. Patrick Industries is a leading manufacturer and distributor of components products and building materials serving different industries throughout the United States including RV, Manufactured Housing, Industrial and Marine segments. With locations in 23 states and 12,000 Team Members, Patrick is a Company with a strong network of meaningful relationships with our brands and customers.Responsibilities will include: Develop, implement, and maintain the security strategy roadmap Establish the goals and priorities for the Information Security program aligned with the organization's business priorities Set and manage the budget for the Information Security program Provide leadership to organization's Information Security group and oversee the implementation of the organization's Information Security and Operations vision that aligns with the corporate strategy Define Information Security metrics and report them to the oversight committee Develop and mature the organization's information security program, ensuring compliance with relevant regulations and standard methodologies Certify and attest to technology compliance with company-wide Information Security policies Monitor the external threat environment for emerging threats and advise relevant business partners on the appropriate course of action. Collaborate with senior leaders and departments to evaluate risks, coordinate mitigation efforts, establish controls, and respond to incidents Investigate security incidents, communicate to key business partners and executive leadership, and oversee remediation and resolution Review and evaluate technology and incoming new vendors for future risks and opportunities to improve IT security Collaborate with the enterprise architecture team to ensure alignment between security and enterprise architecture Provide strategic risk guidance for organization's IT projects, including the evaluation and recommendation of technical controls Set strategic direction and advocates to executives and senior business leaders for appropriate funds to meet business demands for the Information Security function Oversee the security requirements in system development life cycle, business continuity planning, and disaster recovery Identify, develop, attract, and retain talent that have the knowledge, skills, and abilities to effectively identify, measure, monitor, and control relevant risks Partner with other IT executives and their teams to ensure technology strategies, plans, and advice aligns with the organization's information security program. This includes the identification of business alternatives, systems development, software acquisition, and ongoing systems maintenance Accountable for operating within established policies and guidelines, and acting in accordance with applicable laws, regulations, and supervisory guidance, including those related to consumer protection, including ensuring policy exceptions are promptly and effectively assessed and escalated Maintains a network of leading experts throughout the manufacturing and distribution industry to maintain current understanding of market trends and provide a foundation to influence directions.Key Competencies: Blends strategic vision with tactical execution across the organization Change leader - recognizes when and where change is needed and has the ability to be successful in selecting the right changes at the right time for the organizational culture to accept and embrace Brings thought leadership to a broad range of topics and has the ability to go deep on the majority of those topics Keen sense and ability to perpetuate and sustain a BetterTogether and Performance environment; Balance, Empowerment, Trust, Teamwork, Excellence and Respect and embeds these attributes as part of the culture and as "a way of doing business."Aligned with organization growth behaviors - Collaboration, Empowerment, Innovation, Rational Risks, Results DrivenCustomer Focus - Dedicated to meeting the expectations and requirements of internal and external customers; gets first-hand customer information and uses it for improvements in products and services; acts with customers in mind; establishes and maintains effective relationships with customers and gains their trust and respect.Drive for Results - Can be counted on to exceed goals successfully; is constantly and consistently one of the top performers; very bottom-line oriented; steadfastly pushes self and others for results.Organizational Agility - Knowledgeable about how organizations work; knows how to get things done both through formal channels and the informal network; understands the origin and reasoning behind key policies, practices, and procedures; understands the cultures of organizations.Requirements Degree in business administration or a technology-related field required Professional security management certification preferred Minimum of 8 to 12 years of experience in a combination of risk management, information security and IT jobs leading direct and indirect teams Knowledge of and experience of working with common information security management frameworks, such as ISO/IEC 27001, and NIST. Demonstrated data literacy/change management experience - ability to influence others to modify behaviors and provide support for the adoption of Information Security policies Proven greenfield experience in transforming complex business processes Experience organizing and leading effective cross functional teams to inclusively develop enterprise documentation requirements for Information Security organization Facilitation and conflict resolution skills Strong written (technical writer level) and verbal communications and interpersonal skills across all levels of the organization Ability to deconstruct and reconstruct complex business processes and visualize with process flow diagrams Relentless commitment and passion to promote the quality and continuous improvement of data assets that deliver desired business outcomes In collaboration with the Program Office, Legal and Procurement, establishing and overseeing the processes to selecting and acquiring new business solutions Establishing the design principles and use cases of each application in the portfolio Developing, overseeing, and managing the Enterprise Level Information Security Roadmap Ensuring coordination and collaboration of his/her team with all other areas of IS&T (infrastructure, support, security, etc.) Maximizing the value and the quality of the relationships between business users and IS&T Experience in a manufacturing or distribution industry is preferred Previous experience of working at a large, publicly traded company is highly desiredBenefits Include:Health, Dental, Vision, Life, Insurances, Paid Vacation, 401K Match, Holidays, Health Club, and Tuition ReimbursementAt Patrick Industries, BETTER Together is our commitment to being our best while striving to bring out the best in one another as we join forces individually, as teams, with our Business Units, with our Customers, our communities, and within our entire Patrick family. Patrick is an Equal Opportunity Employer.

Keywords: Patrick Industries, Elkhart , Chief Information Security Officer, Executive , Elkhart, Indiana