Senior Manager, Information Security Risk

WestRock   •  

Norcross, GA

Industry: Transportation


11 - 15 years

Posted 209 days ago

This job is no longer available.

The opportunity:

WestRock is a large multi-national manufacturer with a complex IT environment that is growing largely through acquisition.  This is a senior role that will be responsible for understanding enterprise ITrisks and creating strategic plans to mitigate risk on a priority basis.  Risks that are not remediated immediately must understood and accepted by corporate executives when appropriate.   This role will lead a small team of otherITrisk professionals.

How you will impact WestRock:

·         Maintain a risk registry of all enterprise risks

·         Maintain the NIST Cybersecurity Framework process for the enterprise

·         Translate business unit risk into prioritized action plans

·         Drive corporate information security strategy based a risk-based methodology

·         Perform risk management to minimize risks to acceptable levels

·         Help lead the creation of and socialization the corporate Information Security strategy

·         Review new business initiatives, identifying risk and make remediation recommendations

What you need to succeed:

·         Bachelor’s degree or a similar level of training in IT and Information Security

·         12 years of ITexperience with 8 focused on Information Security

·         Minimally 5 years in an Information Security leadership role

·         Must have strong communications skills with the ability to interface with both executives and technical staff

·         Experience running risk management programs

·         Experience with ITarchitecture planning

·         Travel up to 30% although this may be higher when ramping up

·         Self-starter with the capability to motivate others

·         Experience leading small teams of direct reports across a global enterprise

·         Experience coordinating geographically-dispersed virtual teams

·         Certifications a plus such as:  CISSP, CISM, CRISC and other similar certs


What we offer: 


·         Corporate culture based on integrity, respect, accountability and excellence

·         Comprehensive training with numerous learning and development opportunities

·         An attractive salary reflecting skills, competencies and potential

·         A career with a global packaging company where Sustainability, Safety and Inclusion are business drivers and foundational elements of the daily work.