5 - 7 years experience • Consumer Goods / Miscellaneous
Works on information security problems that are diverse and highly complex. Selects methods and techniques for identifying and advocating effective security solutions.
Develops approaches to address critical information security issues. Develops and administers schedules and performance requirements. Supports Stanley Black & Decker’s Human Resources business processes, including compliance reporting.
Defines and implements information security strategies and procedures.
Works with engineering teams to define and refine information security and systems management policies and settings.
Monitors and assesses vendor and 3rd party information security reports/lists.
Evaluates new and emerging products, technologies and make recommendations to leadership concerning introduction of new technologies.
Reviews, prioritizes and recommends information security improvements as they relate to the achievement of Stanley Black & Decker’s business goals and objectives.
Coordinates, administers, manages and monitors the use of access control systems security tools and intrusion detection systems to identify anomalous events and security infractions that exploit system vulnerabilities.
Integrates information security controls into an environment to identify risks and reduce their impact.
Provides analysis of potential risk to information security and recommends solutions.
Creates and maintains information security documentation.
Communicates information security procedures to users.
Reviews and recommends changes to information security policies.
Required Skills & Experience
Expanding knowledge of related disciplinary areas.
Broad knowledge within own specialty discipline.
- Deep specialized knowledge in specific aspects of discipline.
- Enhances own knowledge through understanding business trends and objectives.
- Understands and foresees implications of decisions.
Knowledge of industry and business principles.
- Understands the core business process and purpose of the functional area.
- Places issues in context of organizational and functional objectives.
In-depth customer knowledge to provide appropriate solutions.
Develops and applies project management techniques.
Applies analytical skills to evaluate and interpret complex situations/ problems using multiple sources of information.
- Qualitative information
- Quantitative research
- Trend data
Presents problem analysis and recommended solutions in a creative and logical manner.
- Forecasts, models, and utilizes advanced analytical tools.
- Creates new procedures and processes to drive desired results.
Handles diverse range of issues that require evaluation of a variety of factors including current business trends.
- Develops skills to analyze ambiguous problems.
Identifies opportunities for process and procedure enhancements to drive efficiency and customer service levels.
Works with minimal direction.
Work is guided by operational and project objectives.
- Manages multiple assignments and processes.
- Independently determines approach to project.
- Anticipates and prevents potential problems.
Independently develops solutions that are thorough, practical, and consistent with functional or customer objectives.
May be responsible for specific programs, customers and/or projects.
May provide technical guidance or influence the work of others.
Updates management on project/activity status.
Contributes to area by ensuring quality of tasks/services provided by self and others.
Extends capabilities by working closely with senior staff/experts within and outside the internal organization.
Provides process and policy advice.
- Explains assumptions and methodologies.
- Articulates pros and cons of an action in a clear manner.
- Simplifies difficult concepts for non-technical users.
Regularly interacts with colleagues or customers generally up to senior level management.
4-6 years of relevant experience or equivalent combination of education and work experience
Knowledge of risk management concepts.
Basic knowledge of systems and network administration. i.e desktop, server.
Familiarity with information security /compliance technologies and issues on multiple platforms.
Knowledge of globally accepted security/compliance standards.
Basic knowledge of network security that pertains to communications, computer system environments and related infrastructures.
Knowledge of server and desktop configurations that will protect systems from unauthorized access and software invasion.
Preferred: CISSP, GIAC, CISA, SSCP or, CEH
Undergraduate degree in Computer Sciences or a related field and 4-6 years relevant experience , or
Graduate degree and 2-4 years of relevant experience.