Primary Function:

This individual is accountable for all Security Engineering and Operations teams for Grainger and its global subsidiaries as appropriate. This includes the Security Operation Center (SOC), security solution design, implementation and support, incident response, forensics and investigations, documentation, and RCA’s.  This individual is accountable for establishing the technical security standards and guidelines for the Grainger enterprise and reviews and advises on any solutions that fall outside of these specifications.

Principal Duties & Responsibilities:  

• Oversees managers and supervisors responsible for  Security Engineering and Operations teams in their delivery of projects and services to the organization
• Influence and collaborate with other senior leaders and teams as necessary to design solutions and ensure customer service levels are met
• Ensure the delivery of the following activities:
  • Design and development of Security Solutions to protect Grainger IT assets world-wide
  • Establishment of standards and specifications for security application development, connectivity (intra and intercompany), Internet facing solutions, eCommerce, Mobility, etc.
  • Updates to procedures and policies to better ensure safeguarding of information assets throughout the Global Enterprise
  • Proactively protect the integrity and confidentiality of Information Assets in all systems and environments
  • Perform proactive and ongoing monitoring and analysis of the Global Network via security tools and managed security services providers
  • Standards and guidelines incorporate  regulatory and contractual requirements as well as appropriate security controls
• Influence and lead positive security changes to operational business processes by developing secure, workable solutions aligned with business objectives
• Collaborate with senior leaders to incorporate security best practices into their work processes and align to the corporate vision
• Own and manage a budget to ensure proper risk mitigation and alignment with business drivers
• Oversee teams in the selection of vendors, devices and tools for security solutions
• Manage and hire managers, supervisors, individual contributors, interns and/or consultants
• Collaborate and oversee changes in the security landscape based on results from analysis received from Internal Controls & Compliance, Internal Audit, External Audit and other functions as deemed appropriate
• Oversee projects as required; Guide team to analyze, develop and implement security solutions which protect the information assets while enabling business functionality
• Develop, adopt and engage others in Continuous Improvement concepts
• Develop and engage subject matter expertise for Architecture, Planning and Roadmap sessions
• Develop and deliver periodic, comprehensive reviews of performance
• Oversee teams to ensure compliance with all regulations, frameworks and standards
• Aligns Corporate and EPS goals to S.M.A.R.T. Enterprise Security objectives
• Provides support for long range forecasting process
• Cultivates a team environment that balances risk and creativity in quickly responding to business opportunities

Preferred Education & Experience: 

Education:

• Bachelor’s degree in Information Systems or related degree, or equivalent job experience. 
• 7 to 10 years management experience in the following areas:
  • Developing and managing technical teams ranging in size of at least 10 people
  • Development and mentoring of people leaders
  • Managing budgets ranging in size up to $4M.
• CISSP Certification Required
• Experience with frameworks and standards such as PCI, NIST, ISO, COBIT

   Experience:

• 7+ years of experience or training in Security foundations and technologies
• Highly self-motivated
• Strong attention to detail
• Security Incident Response leadership experience
• Demonstrated experience managing large projects or programs
• Ability to effectively prioritize and execute tasks in a complex environment
• Solid understanding of standard business processes including Change Management, Problem Management, Work Prioritization, Quality Assurance, and Continuous Improvement best practices, etc
• Strong client relationship management skills
• Ability to communicate to Executive Leadership
• Very strong analytical and problem-solving skills
• Strong verbal and written communication skills
• Strong interpersonal and conflict management skills

 “Grainger is an Equal Opportunity / Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, gender identity, sexual orientation, disability, or protected veteran status.”