The CompanyHeico has a history of success. Since its founding over 40 years ago The Heico Companies has grown from a single business to over 78 separate companies through a strategic acquisition policy, and by reinvesting its earnings into internal growth and new prospects. Historically talented at restoring distressed companies, Heico now strategically targets acquisitions that will complement its ever-growing portfolio of companies in manufacturing, construction, and industrial services.These four core operations are organized into groups: Metal Processing Group, Construction Solutions Group, Applied Solutions Group, and Industrial Technologies Group. Once acquired, new Heico companies are assigned to a group and run on a stand-alone basis, allowing for great independence as well as the opportunity to share knowledge about markets, production processes, and management practices across other Heico groups and companies. Each Group has its own corporate team.Heico continues to seek out new opportunities and maintain its standard of success. The Heico Companies has remained a privately held company since its creation and maintains a majority ownership in each of its operations, which generates more than $3.3 billion dollars in revenues. Many of our businesses are certified Woman-owned Business Enterprises (WBE).More information about the holding company and overall organization can be found at (Link available when viewing the job).The PositionThe Senior Director, Deputy Chief Information Security Officer will design and execute the Information Security program roadmap. This position will provide leadership for the program by developing, maintaining, and executing strategic plans to safeguard the organization's information assets. Collaborate with leadership to establish a vision for the information security program including defining security functions and standards. This role will support multiple disciplines and domains including network, application, cloud, and endpoint security. This role will report to the Chief Information Security Officer and will be based out of our Warrenville office.Job DescriptionPrimary ResponsibilitiesDevelop and Drive Information Security roadmap to achieve compliance and risk management objectivesProvide strategic and tactical leadership for the Information Security organizationPerform program management and governance for Information Security initiatives, ensuring successful outcomesCreate, maintain, and enforce enterprise security standards, policies, procedures, patterns, and documentationDesign and maintain strategic plans and execute upon technology roadmaps to protect organization information assetsWork with IT leadership to establish a vision for the Information Security functions and standardsAnticipate and advance technical controls that enhance our ability to protect, detect, and respond to changing threatsResponsible for defining security capabilities to protect company information assets that is supported by a strategy and roadmapEngage with stakeholders in support of the organization and be an advocate for Information Security controls across the organizationParticipate in new system implementation projects to ensure that appropriate security controls are built into systems prior to “go-live”Drive process improvement and control implementation projects in coordination with the IT department and other functionsPartner with stakeholders across the organization to understand their strategic objectives, technology dependencies, and emerging trends to lead and collaborate on building security solutions into new systemsDevelop, maintain, and execute an enterprise-wide security strategy and roadmapBuild strong relationship and work with business counterparts, and leaders across the organization in defining the Cybersecurity program and solutions strategy, as well as the future roadmap for new capabilitiesJob RequirementsEducationFour-year bachelor’s degree requiredSkills & Relevant Work Experience15+ years’ experience in information SecurityExperience building security architectures for applications and systems deployed on or with the following technologies: SaaS, IaaS, PaaS, Microservices, Azure, AWS, Microsoft Windows Active Directory, Entra, SQL ServerAbility to drive standards to achieve a secure environment with deep knowledge of IP based protocolsDeep understanding of modern security architecture best practicesKnowledge of Software Security Architecture and Design and the ability to clearly articulate best practicesStrong working knowledge of application security, network security, security technologies and complex system threat modelingExperience formulating and prioritizing security requirements according to the organizations riskProven experience technical lead organizing and mentoring Managers and DirectorsWorking knowledge of security compliance standards (NIST, CMMC, GDPR, CCPA, ISO, PCI, SOC 2, etc.)Ability to exercise sound judgment with strong written and verbal communication skillsEOE M/F/D/V

#J-18808-Ljbffr