The Hertz Corporation Director, Cloud Security in Oklahoma City, Oklahoma

General Responsibilities

The Cloud Security Director is responsible for implementing a best in class Information Security program (e.g. practices, technology) for Hertz Cloud environments with minimal impact to the business, and continually increase awareness of these practices throughout the company. The Cloud Security Director must align the enterprise security strategies with IT and business strategies while ensuring the changing requirements of business partners as well as domestic and international regulatory requirements are met.

Key Result Areas:

  • Aid in development and maintain Global IT Security Strategies; ensure security technology integration is maintained across all cloud computing resources.

  • Manage the process of gathering, analyzing and assessing the current and future threat landscape, as well as providing management with a realistic overview of risks and threats in the enterprise environment.

  • Maintain an understanding of business operations and determine efficient cost effective methods to leverage business and security requirements. Recommend cost effective security measures

  • Work with enterprise architecture, engineering, development and leadership teams to ensure there is a convergence of business, technical and security requirements

  • Research, evaluate, design, test, recommend and plan the implementation of new or updated information security hardware, software and practices, and analyze its impact on the existing environment. Provide technical analysis and documentation to appropriate teams

  • Ensure Cloud Security practices are in compliance with global laws and regulations; provide support and guidance for legal and regulatory compliance efforts

  • Monitor potential and actual security incidents; minimize the impact of security vulnerabilities and incidents.

  • Provide oversight for outsourced security functions; ensuring SLA/SLOs are met and our policies and procedures are followed

  • Conduct cloud security strategy, readiness and discovery assessments; be familiar with cloud security frameworks, compliance requirements and security operations

  • Define and maintain metrics and reporting strategies that effectively communicate successes and progress of the security program.

  • Identify labor intensive activities which can be minimized/eliminated using new methodologies and technologies.

  • Provide proactive operating estimates for business planning purposes involving software, hardware, and staffing levels

  • Compare and contrast competing technologies with a focus on maximizing options, flexibility and scalability into the future. Negotiate with vendors on product evaluations and contracts

  • Manage a staff of information security professionals, hire and train new staff, conducts performance reviews, and provide leadership and coaching, including technical and personal development programs for team members.

Mandatory Requirements

Educational Background:

College degree or equivalent work experience.

Security and /or audit certification is preferred.

Professional Experience – Knowledge - Skills:

Mandatory Requirements:

  • 10+ years IT, Information Security, Audit, and/or Control experience.

  • Experience with multiple operating systems and/or security tools.

  • 5 years of leadership experience in managing multiple, large, cross-functional teams or projects, and influencing senior level management and key stakeholders.

  • Experience with cloud security architecture and models

  • Use of cloud security models in AWS, Azure, Google.

  • Experience handling IT incidents

  • Knowledge/experience with the latest IT security, control, and audit technologies and standards.

  • Knowledge of general societal, legal and regulatory issues related to information protection

  • Knowledge of IT Infrastructure and Processes (e.g. network, application development, change control, service desk, web design)

  • Handle adversarial and sensitive situations with tact and diplomacy

  • Leverage resources from different organizations to achieve security/control compliance

  • Creates synergy between ITSS and our business partners and other organizations

  • Communicate effectively with all levels of management; including presentations to Executive Management

  • Excellent collaboration, problem solving and project management skills

  • Leads with vision/strategic leadership

Preferred Requirements:

  • Experience implementing enterprise security software solutions.

  • Experience implementing and tracking service levels and metrics reporting

  • Experience monitoring supplier contracts, specifically tracking performance toward statements of work or service descriptions

  • Experience developing policies and procedures

  • Hertz business operations and controls

  • Organizational, leadership, and delegation skills

  • Cloud security certifications

EEO Statement

Hertz is an equal opportunity affirmative action employer and administers all personnel practices without regard to race, color, religion, sex, age, national origin, sexual orientation, gender identity or expression, marital status or domestic partnership status, disability, protected veteran status or military status, genetic information, or any other category protected under applicable law. Hertz is committed to taking affirmative steps to promote the employment and advancement of minorities, women, persons with disabilities and protected veterans.

Job ID 160306

# Positions 1

Category Information Technology

Division OKC - Technology Center

Position Type Regular Full Time