Security Governance, Risk, and Compliance / BCP Manager

Key Responsibilities

• Maintain and enforce Information Security policies, standards, and control frameworks
• Manage the risks associated with exceptions to Information Security policy and standards
• Identify and prioritize enterprise level Information Security threats and risks with Information Security leadership
• Support the measurement and reporting of cyber risks across the organization including documentation updates, scoping, assessments, management reporting, and driving remediation of issues
• Establish, monitor, and report key performance indicators and key risk indicators for cyber risks
• Communicate and present key security risks at a variety of levels including business and technology leaders to ensure a clear understanding of these risks
• Accountable for ensuring that identified audit and assessment findings and actions are tracked to closure and reported to leadership
• Serve as subject matter expert to service delivery on cyber risk, compliance, control and information security during planning and throughout solution delivery lifecycle
• Guide third party risk assessments to review adherence to business identified requirements, Information Security policies, and standards
• Administer, maintain, develop, and implement enterprise policies, standards and procedures to ensure that all systems have business continuity plans (BCPs) in place and processes and procedures are available in a disaster situation
• Drive implementation of Business Continuity Management (BCM) across Information Technology as per the enterprise BCM policy and mandated process and templates
• Accountability for effective and efficient BCP maintenance of Global IT BCP/DR as part of governance priorities
• Manage audits and tests related to the IT BCP and monitor compliance through ongoing audit and sample reviews
• Actively support the BCM incident management and monitor lessons learned implementation, including simulation exercises
• Provide required presence to essential functions in the workplace on a regular basis and work extra hours if needed. If applicable, ability to work overtime may be needed to ensure required staffing capacity to meet daily production objectives
• Work collaboratively with team members with different backgrounds and perspectives
• Assist other employees in pursuit of Huntsman company goals. Follow instructions and perform other duties as assigned by supervisor
• Participate in Environmental, Health, & Safety initiatives as set forth by the company. Participate in and complete company-required training programs
• 80% Governance, Risk, and Compliance (GRC) and 20% Business Continuity Planning (BCP) for IT function.

Qualification & Requirements

Minimum Qualifications

• Bachelor’s degree in computer science, Information Systems or related discipline and 7+ years in IT and business/industry.
• Experience working in a global/multi-national organization in a shared services organization.
• Experience in working across large geographically distributed and diverse teams, matrixed into a larger overall IT organization.

Certifications, Licenses, Or Registrations

• ITSM (preferred, focused on ITIL or COBIT)
• GRCP, CRISC, or other IT risk and compliance certifications

Skills And Knowledge

• Demonstrated experience managing business continuity within an organization, including overseeing service reliability engineering for systems and ensuring systems are equipped with business continuity plans
• Demonstrated experience in managing information security organizations, including incident response, data security and privacy, and data loss prevention
• Knowledge of current information security and experience in compliance and resolution
• Experience with hardware and software asset management as it relates to business continuity
• Experience leading a combination of global internal and third-party managed services resources
• Demonstrated skills with managing IT vendor service level agreements, risk and controls, contracts, and resources
• Demonstrated project and program management knowledge specific to business continuity, governance, risk, and compliance
• Experience with managing and enabling lean delivery and governance models
• Ability to understand and assess enterprise architecture blueprints to design business continuity plans
• Demonstrated leadership ability
• Demonstrated ability to engage and perform in outsourced and managed services environment
• Excellent consulting, communication and organization skills

Benefits

• Insurance Benefits
• Retirement Benefits
• Vacation Policy
• Other Perks and Benefits…