Loading...
Share this Job

Director - IT Security

Brand:  Matthews
Company:  Matthews International Corporation
Line of Business:  MATW Corporate
Location: 

Pittsburgh, PA, US, 15275

POSITION SUMMARY

The Director - IT Security leads the information security function globally. Responsible for the organization’s overall information security posture and user awareness levels. Ensures the protection of all information assets and resources. Develops corporate policies and standards for the protection of information. 
 

JOB RESPONSIBILITIES

  • Develops and implements a sustainable, strategic and long-term information and cyber security strategy to ensure that information assets are adequately protected.
  • Leads the development of, or authorship of, up-to-date information security policies and standards. 
  • Oversees the approval, dissemination, and maintenance of security policies and practices.
  • Leads the support for legal requirements such as litigation support, e-discovery and suspension orders.
  • Leads the creation, communication and implementation of a risk-based process for vendor risk management, including the assessment and mitigation of risks that may result from partners, consultants and other service providers.
  • Identifies, evaluates and reports on information security risks, practices and projects to Executive Leaders and the Board of Directors Audit Committee.
  • Implements the management practices of assessing risk tolerance, implementing and overseeing appropriate security processes and fostering a security-aware culture in a large corporate environment.
  • Works with senior leaders across the business to determine acceptable levels of risk and to ensure the security management program is in compliance with applicable laws, regulations, contractual requirements, and policies to minimize or eliminate risk and address audit findings.
  • Provides subject matter expertise to executive management on a broad range of security standards and best practices (e.g. Sarbanes Oxley, HIPAA, GDPR, the Payment Card Industry Data Security Standard, Cloud Security).
  • Liaises with IT organization to ensure alignment between the security and enterprise architectures, thus coordinating the strategic planning implicit in these architectures.
  • Directs the selection and implementation of upgrades, repairs, modifications, and replacements of information security devices and software.
  • Champions new products / security services and enhancements that will address identified security risks as part of annual investment.Leads, contributes to, and delivers information security related projects.
  • Develops effective disaster recovery policies and standards; coordinate the development of implementation plans and procedures to ensure that business-critical services are recovered in the event of a declared disaster, and provide direction and in-house consulting in these areas.
  • Leads, contributes to, and delivers information security related projects.
  • Manages the IT Security Incident Response Team, security incidents and events to protect corporate IT assets, including intellectual property, regulated data and the company's reputation.
  • Monitors the external threat environment for emerging threats, and advise relevant stakeholders on the appropriate courses of action and liaise with external agencies, such as law enforcement and other advisory bodies as necessary, to ensure that the organization maintains a strong security posture.
  • Influences and persuades other senior leaders regarding complex and/or controversial situations, and to use good judgment in staff oversight, collaboration with peers and policy implementation on all matters related to cybersecurity.
  • Relates business requirements and risk to technology implementation for security-related issues.
  • Plans, directs, and coordinates activities of employee(s) to ensure goals or objectives are accomplished.  Mentors, coaches, trains and develops team.
  • Manages the IT Security budget.
  • Additional duties as assigned. 

QUALIFICATIONS / REQUIREMENTS

  • Bachelor’s Degree in Information Technology or related field
  • Advanced degree (MBA, Master’s) preferred
  • 10+ years progressive information security related experience; or equivalent combination of education and experience
  • 8+ years in a leadership role (direct or indirect)
  • CISSP or other professional designation or certification related to Information Security preferred
  • Experience with developing strategic plans and KPI’s and Key Risk Indicators (KRI).
  • Experience in developing information security policies and procedures, as well as successfully executing programs that meet the objectives of excellence in a dynamic environment
  • Expert knowledge in IT security threats and control strategies
  • Knowledgeable regarding technologies and products relevant to information security
  • Strategic thinker with ability to identify and address future opportunities and challenges 
  • High degree of proficiency MS Office Suite, Outlook & Internet applications
  • Strong analytical, prioritizing, interpersonal, problem-solving, presentation, budgeting, project management (from conception to completion), & planning skills 
  • Strong verbal and written communication skills (including analysis, interpretation, & reasoning)
  • Solid understanding and application of mathematical concepts
  • Ability to develop and maintain collaborative relationships with peers and colleagues across the organization as well as internal and external clients
  • Ability to work well autonomously and within a team in a fast-paced and deadline-oriented environment.
  • Ability to work with and influence peers and senior management
  • Self-motivated with critical attention to detail, deadlines and reporting
  • Periodic travel either locally, nationally, and/or internationally may be required.

PHYSICAL ASPECTS / WORK ENVIRONMENT

  • Regularly required to stand; walk; sit; and talk, hear and see.  
  • Occasionally lift and/or move up to 10 pounds.

* Reasonable accommodations may be made to enable individuals to perform the essential functions.
#LI-CW2

At Matthews International, we believe in a world of inspired possibilities. We believe that taking pride in our past inspires growth for the future. And that we all have a responsibility to explore new ways of thinking, working and advancing our craft.  
 

Globally headquartered in Pittsburgh, Pennsylvania, Matthews International is home to a global network of employees operating in three distinct industries—SGK Brand Solutions, Memorialization and Industrial Technologies. We care deeply about what they do each day—because when we’re inspired, we can inspire others. We can make difference that goes beyond expectations—for our clients, our community and our company. 
 

Our dedication, drive and determination empower creativity and give us strength to transform inspired possibilities into inspiring realities. This is strengthened by our values which are fundamental to our business and guide how we work—to demonstrate integrity, cultivate employees, be our best, innovate and live the Matthews spirit. 
 

www.matw.com  
 

Matthews International affords equal employment opportunities to employees and applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, genetic information, age, disability or any other characteristic protected by federal, state or local law.  Equal Opportunity Employer Minorities/Women/Veterans/Disabled.

Matthews International endeavors to make our employment website and application process accessible to all users and applicants.  In doing so, Matthews International provides reasonable accommodations to applicants with disabilities. If you have a disability and require a reasonable accommodation or assistance completing the application process, please contact a member of our Human Resource Team.
 


Nearest Major Market: Pittsburgh