The Hertz Corporation Director, Cloud Security in Oklahoma City, Oklahoma
The Cloud Security Director is responsible for implementing a best in class Information Security program (e.g. practices, technology) for Hertz Cloud environments with minimal impact to the business, and continually increase awareness of these practices throughout the company. The Cloud Security Director must align the enterprise security strategies with IT and business strategies while ensuring the changing requirements of business partners as well as domestic and international regulatory requirements are met.
Key Result Areas:
Aid in development and maintain Global IT Security Strategies; ensure security technology integration is maintained across all cloud computing resources.
Manage the process of gathering, analyzing and assessing the current and future threat landscape, as well as providing management with a realistic overview of risks and threats in the enterprise environment.
Maintain an understanding of business operations and determine efficient cost effective methods to leverage business and security requirements. Recommend cost effective security measures
Work with enterprise architecture, engineering, development and leadership teams to ensure there is a convergence of business, technical and security requirements
Research, evaluate, design, test, recommend and plan the implementation of new or updated information security hardware, software and practices, and analyze its impact on the existing environment. Provide technical analysis and documentation to appropriate teams
Ensure Cloud Security practices are in compliance with global laws and regulations; provide support and guidance for legal and regulatory compliance efforts
Monitor potential and actual security incidents; minimize the impact of security vulnerabilities and incidents.
Provide oversight for outsourced security functions; ensuring SLA/SLOs are met and our policies and procedures are followed
Conduct cloud security strategy, readiness and discovery assessments; be familiar with cloud security frameworks, compliance requirements and security operations
Define and maintain metrics and reporting strategies that effectively communicate successes and progress of the security program.
Identify labor intensive activities which can be minimized/eliminated using new methodologies and technologies.
Provide proactive operating estimates for business planning purposes involving software, hardware, and staffing levels
Compare and contrast competing technologies with a focus on maximizing options, flexibility and scalability into the future. Negotiate with vendors on product evaluations and contracts
Manage a staff of information security professionals, hire and train new staff, conducts performance reviews, and provide leadership and coaching, including technical and personal development programs for team members.
College degree or equivalent work experience.
Security and /or audit certification is preferred.
Professional Experience – Knowledge - Skills:
10+ years IT, Information Security, Audit, and/or Control experience.
Experience with multiple operating systems and/or security tools.
5 years of leadership experience in managing multiple, large, cross-functional teams or projects, and influencing senior level management and key stakeholders.
Experience with cloud security architecture and models
Use of cloud security models in AWS, Azure, Google.
Experience handling IT incidents
Knowledge/experience with the latest IT security, control, and audit technologies and standards.
Knowledge of general societal, legal and regulatory issues related to information protection
Knowledge of IT Infrastructure and Processes (e.g. network, application development, change control, service desk, web design)
Handle adversarial and sensitive situations with tact and diplomacy
Leverage resources from different organizations to achieve security/control compliance
Creates synergy between ITSS and our business partners and other organizations
Communicate effectively with all levels of management; including presentations to Executive Management
Excellent collaboration, problem solving and project management skills
Leads with vision/strategic leadership
Experience implementing enterprise security software solutions.
Experience implementing and tracking service levels and metrics reporting
Experience monitoring supplier contracts, specifically tracking performance toward statements of work or service descriptions
Experience developing policies and procedures
Hertz business operations and controls
Organizational, leadership, and delegation skills
Cloud security certifications
Hertz is an equal opportunity affirmative action employer and administers all personnel practices without regard to race, color, religion, sex, age, national origin, sexual orientation, gender identity or expression, marital status or domestic partnership status, disability, protected veteran status or military status, genetic information, or any other category protected under applicable law. Hertz is committed to taking affirmative steps to promote the employment and advancement of minorities, women, persons with disabilities and protected veterans.
Job ID 160306
# Positions 1
Category Information Technology
Division OKC - Technology Center
Position Type Regular Full Time