ASM Full-time Jobs

Job Information

Advantage Solutions Director GRC in United States


Position Summary

The Director Information Security and Compliance, is responsible for developing, implementing, and monitoring a strategic and comprehensive enterprise cybersecurity and IT compliance management program. The Director will provide the vision and leadership necessary to manage the security risks to the organization and will ensure business alignment and effective governance.


The Company is one of North America’s leading sales and marketing agencies specializing in outsourced sales, merchandising, category management and marketing services to manufacturers, suppliers and producers of food products and consumer packaged goods. The Company services a variety of trade channels including grocery, mass merchandise, specialty, convenience, drug, dollar, club, hardware, consumer electronics and home centers. We bridge the gap between manufacturers and retailers, providing consumers access to the best products available in the marketplace today.

Essential Job Duties and Responsibilities

Job Duty

Leadership and Strategy Management

· Sets the direction for the company’s data and cybersecurity protection and oversee Technology governance and policies

· Directs strategic risk guidance for IT projects, including evaluation and recommendation of technical controls

· Develops the company’s security strategy, security awareness programs, security architecture, and security incident response

· Manage existing Identity and Access Management solutions and provide guidance for improvements to processes and technology

· Provides project management and leadership to staff and external resources in support of established goals and objectives, improved efficiencies, and problem resolution

Enterprise Cybersecurity Management

· Develops effective security controls by evaluating new cybersecurity threats and IT trends. Oversees development of security awareness programs

· Evaluates potential security breaches, coordinates response, and recommend corrective actions

· Assess existing environments (applications and infrastructure) for existing vulnerabilities

· Educates the companies leaders on appropriate security risk and mitigation strategies

· Define and report on information security metrics

IT Compliance Management

· Develops, maintains and publishes up-to-date security policies, standards and guidelines. Oversees training and dissemination of security policies and practices

· Collaborates with business units as needed and coordinates the IT component of both internal and external audits, federal and state audits to ensure security programs follow relevant laws, regulations and policies

· Maintains current knowledge of industry and regulatory trends and developments for the enterprise

· Ensures accomplishment of all objectives in accordance with the company’s policies, procedures, and strategic direction

People Management

· Manages and responsible for hiring, developing, and retaining talent using company-wide processes, tools, and resources. Manges the day-to-day operations of the team

· Execute all aspects of the performance management culture, including development discussions and regular coaching and feedback, Performance Improvement Plan creation and delivery

· Responsible for building and growing a high performing team through strategy sessions providing innovative thoughts and solutions

Supervisory Responsibilities

Direct Reports

  • Hires, retains, trains, coaches, guides, directs, and develops direct reports using company-wide processes, tools and resources

Indirect Reports

  • May delegate work of others and provide guidance, direction and mentoring to indirect reports

Travel and/or Driving Requirements

  • Travel and Driving are essential duties and function of this job

  • Travel up to 20 %

Minimum Qualifications The following are the minimum job-related qualifications which an individual needs in order to successfully perform the essential duties and responsibilities of the job

Education Level: (Required): Bachelor's Degree or equivalent experience

(Preferred): Master's Degree Or equivalent experience

Field of Study/Area of Experience: Computer Science or Information Technology Systems Security, or related field

· 10+ Years of experience in cybersecurity with at least 15 years of experience in the field of Information Technology

· Certified Information Security Manager (CISM) or Certified Information Systems Security Professional (CISSP) Certification

Skills, Knowledge and Abilities

· Excellent Written & Verbal Communication Skills

· Well Organized, Detail Oriented, & able to Handle Fast Paced Work Environment

· Ability to Provide Cross-Functional Leadership

· Ability to Direct, Lead, & Develop People

· Ability to Ensure High Levels of Service & Quality are Maintained

· Team Building Skills

· Expert Technical Knowledge of Software Applications, Processes, Products, & Hardware Architecture

· Knowledge of Information technology infrastructure library (ITIL) (certification preferred) with respect to security administration and information technology governance in a multiplatform environment

· Knowledge in establishing cybersecurity and risk metrics for reporting

· Sustained leadership in a large organization involving multiple stakeholders

· Management skills, e.g., budget development and administration, policy development and implementation, personnel administration, staff training and development

· Ability to work with diverse people; effective oral and written communication skills

Important Information

The above statements are intended to describe the general nature and level of work being performed by people assigned to this position. They are not intended to be an exhaustive list of all responsibilities, duties and skills required of associates so classified.

The Company is committed to providing equal opportunity in all employment practices without regard to age, race, color, national origin, sex, sexual orientation, religion, physical or mental disability, or any other category protected by law. As part of this commitment, the Company shall provide reasonable accommodations of known disabilities to enable an applicant or employee to apply for employment, perform the essential functions of the job, or enjoy the benefits and privileges of employment as required by the law.

Job Locations US

Primary Posting Location : Country US

Requisition ID 2021-356358

Position Type Full Time

Category Professional: (IT, Finance, Legal, HR, Talent Acquisition, Administrative, Customer Service)