Sr Director, Information Security

  • Location:
    RTP, North Carolina, US
  • Area of Interest
    Security
  • Job Type
    Professional
  • Technology Interest
    Security
  • Job Id
    1380283

The role of the Sr. Director of Information Security is to provide the leadership and guidance vital for Cisco to handle the risks to the confidentiality, integrity, and availability of the organization's intellectual property and information technology assets.

Working with the Chief Information Security Officer in the Security and Trust Organization, this InfoSec Leader will be dedicated to Information Security and compliance. The position is responsible for the development and enforcement of Cisco’s security compliance policies, strategies, and Cisco’s alignment to legal requirements and IT standards.

This strategic role will bridge the technical and business worlds and is accountable for driving and supporting the creation, improvement, and implementation of internal security strategy for key business functions and the overall planning, execution, and success of major transformational programs across the company (Example: Build Environment Security / Source Code Management Security / SBOM).


Essential Duties And Responsibilities

  • Establish and maintain global security policies, standards, guidelines, metrics, and implement processes and procedures to ensure an acceptable risk level is maintained with alignment to a recognized framework.
  • Information protection responsibilities will include network security architecture, network access, and monitoring, data access and monitoring, identity and access management, employee education, and awareness.
  • Review and approve security and compliance policies and controls to handle risk. All relevant domains.
  • Identify and, approve the selection and design of security, processes, systems, tools, and devices.
  • Assist and support the establishment and management of the Information Security, Cyber Security, and Risk Management Strategy, inclusive of the Incident Response Policy and Process.
  • Support incident response planning as it pertains to the security and compliance landscape. Provide domain expertise to investigate security breaches and participate in the investigation, mitigation, and legal matters associated with such breaches as vital. Review investigations after breaches or incidents, including impact analysis and recommendations for avoiding similar vulnerabilities.
  • Maintains current understanding of security standards and regulations and ensures compliance with the changing laws and regulations; translates that knowledge to the identification of risks and actionable plans to protect the business.
  • Maintains and communicates threat landscape for the industry and develop plans to address.
  • Liaise with the global teams to ensure that developments are consistent and compliant with Access Management, Identity, Cloud Security, Change Management, Software Development Life Cycle, and Risk Management policies and processes.
  • Adhere to program management commitments, development and release plans, and service level agreements.
  • Operate according to the Cisco’s approved COBC and all Methodologies and Policies.
  • Identify protection goals, objectives, and metrics consistent with corporate risk management strategy.
  • Schedule periodic security audits and penetration tests and track remediation of all issues identified.

Additional Responsibilities

  • Provide advice on key decision and strategy for the business related to all aspect of Information Security
  • Responsible for providing information technology leadership to the business organization
  • Support complex systems implementations or can be called upon to lead specific areas of implementation.
  • Functions as consulting resource on system development & security plans and issues as required by management
  • Works with business clients to resolve process and system issues as required
  • As needed reviews cross-functional requirements and makes recommendations as they relate to information security technology or as assigned.
  • Recognizes and identifies potential areas where existing policies and procedures require change, simplification, or where new ones need to be developed, especially related to information security, cybersecurity, etc.

Competencies

  • Strive for Excellence: demonstrates a passionate desire to win in the marketplace and grow the business. Sets bold goals for the function and self
  • Innovative: creates new and better solutions to ensure a competitive advantage
  • Change Ready: demonstrates the ability to flex with changes within an organization and the capability to navigate through change
  • Collaborative: involves key partners appropriately and makes sure the right people are informed. Fosters teamwork and open communication at all levels of the organization.
  • Self-Aware: demonstrates awareness of his/her strengths and weaknesses on a professional, technical and personal level.
  • Job Knowledge: possess sufficient technical expertise and experience to perform assigned duties in a successful and competent manner

Interpersonal Skills

  • Strong collaborative skills to work across multiple stakeholder groups to translate business strategies, initiatives, goals, and objectives
  • Ability to communicate technical concepts and break down complex business problems into easily understood communications
  • Leadership quality including the ability to motivate, inspire, counsel, and facilitate individuals and teams to take responsibility and accountability for the goals
  • Transformational Leadership skills with a deep understanding and practical application of change management framework that will enable the continued transition of activities in alignment with our strategy
  • Strategic thinking/problem solving
  • Proven team leadership/coaching/mentoring
  • Negotiation, facilitation, stakeholder management
  • Cost/quality/schedule controls
  • Must have the ability to motivate and maintain good morale and productivity and create and maintain team spirit and harmony.
  • Must have strong customer service and interpersonal skills, ability to coordinate and work with others to accomplish goals
  • Excellent ability to work collaboratively with individuals and groups from a wide variety of backgrounds and organizational levels, to incorporate their ideas, adapt to their needs, and form a consensus in appropriate situations.
  • Excellent supervisory and leadership skills to coach and mentor direct reports to develop talent and next-generation leaders
  • Skilled at conflict resolution and problem-solving to achieve win-win outcomes

Exceptional Communication Skills

  • Strong interpersonal and communication skills
  • Influence, collaboration, and expectation management to work with Global Information Technology and business teams to deliver expected results

Why Cisco

At Cisco, each person brings their unique talents to work as a team and makes a positive impact.

Yes, our technology changes the way the world works, lives, plays and learns, but our edge comes from our people.

We connect everything: people, processes, data, and things. We innovate everywhere, from launching a new era of networking that adapts, learns and protects, to building Customer Experience that accelerates businesses and business results. Our technology powers entertainment, retail, healthcare, education, connected cars and more – from Smart Cities to your everyday devices.

And we do it in style with unique personalities who aren’t afraid to change the way the world works, lives, plays and learns. We are thought leaders, tech geeks, pop culture aficionados, and we even have a few purple haired rock stars. We celebrate the creativity and diversity that fuels our innovation, having built the Internet, we’re now re-inventing it.

We are dreamers and we are doers. We Are Cisco CX.

Colorful hair? Don’t care. Tattoos? Show off your ink. Like polka dots? That’s cool. Pop culture geek? Many of us are. Be you, with us! #WeAreCisco

We will ensure that individuals with disabilities are provided reasonable accommodation to participate in the job application or interview process, to perform essential job functions, and to receive other benefits and privileges of employment. Please contact us to request accommodation.

Cisco Covid-19 Vaccination Requirements
The health and safety of Cisco's employees, customers, and partners is a top priority. Our goal is to protect and mitigate the spread of COVID-19 infection for strong business resiliency during the pandemic. Therefore, Cisco may require new hires to be fully vaccinated against COVID-19 if the role requires business-related travel, meeting with customers/partners (including visiting third-party sites on behalf of Cisco), attending trade events, and Cisco office entry, unless otherwise prohibited by applicable law, and in countries where COVID-19 vaccination is legally required. The company will consider legally required accommodations/exceptions for medical, religious, and other reasons as per the requirements of the role and in accordance with applicable law. Additional information will be provided to candidates about the requirements and accommodation process at the offer time based on region.

Share