Senior Manager, Information Security – GRC

Position Title: Senior Manager, Information Security – GRC

Reports to: Director, Information Security – GRC

Location: Atlanta

Position Summary:

The Senior Manager of Information Security – Governance, Risk and Compliance (GRC) reports to the Director of Information Security – GRC and is responsible for aligning security initiatives with enterprise programs and business objectives and for ensuring that information assets and technologies are adequately protected. The Senior Manager will be responsible for driving Information Security GRC initiatives on a global level across all regions and will act as the business facing lead for Information Security in the NOAM region. Initiatives may include, but are not limited to, work in Policy Management & Publication, Incident Response, PCI Compliance, Third-Party Risk Assessments, Risk Management and Security Training.

The Senior Manager of Information Security (GRC) is responsible for proactively protecting information assets from unauthorized or inappropriate access, use or disclosure as well as business disruptions. In addition to working closely with IT and the Business, regular interaction with internal and external auditors, Legal, Privacy and Ethics officers is also key to the success of the role.

Position Duties:

• Develop an understanding of Newell Brands current and forward-looking threat profile and using requirements to improve the Newell Brands Information Security Program.
• Responsible for managing regional Information Security Risk & Compliance functions to implement our global security policies, standards and controls.
• Responsible for ensuring that international, national and local Information Security and Privacy regulations are being followed.
• Protects valuable information and maintains the confidentiality and integrity of data through: Knowledge of security management, network & protocols, data and application security solutions
  • Knowledge of industry trends and current and emerging risks
    • Directs risk analysis discussions with global businesses.
    • Supports electronic discovery and digital forensic investigations.
    • Provides expertise, guidance and advice related to all information security issues within the region.
    • Monitors and reviews regulatory updates and issues relative to pertinent security regulatory requirements (such as GDPR, PCI or SOX) and escalates findings appropriately.

Required Skills:

• 7+ years of progressive IT experience in a combination of Risk Management, Information Security and IT roles.
• Knowledge of applicable industry rules (ISO27001, GDPR, PCI, SOX, etc.), and expertise in Information Security best practices and implementing Information Security Frameworks
• PCI-DSS experience – Lead auditor or current/former PCI QSA/ISA – is a plus.
• Risk management experience with proven ability to effectively apply risk principles to challenging business situations
• Impeccable executive presentation and communication skills
• Excellent influencing and problem resolution skills
• Global experience preferred

Required Education and Certification: 

• Bachelor’s degree in Information Security, Computer Science, Information Management Systems, or related field.
• Certificate in Risk and Information Systems Control (CRISC), Certified Information Systems Security Professional (CISSP) or Certified Information Systems Manager (CISM) preferred. May substitute an equivalent combination of education, experience and other relevant industry certifications.

Newell Brands (NASDAQ: NWL) is a leading global consumer goods company with a strong portfolio of well-known brands, including Paper Mate, Sharpie, Dymo, EXPO, Parker, Elmers, Coleman, Marmot, Oster, Sunbeam, FoodSaver, Mr. Coffee, Graco, Baby Jogger, NUK, Calphalon, Rubbermaid, Contigo, First Alert, and Yankee Candle. For hundreds of millions of consumers, Newell Brands makes life better every day, where they live, learn, work and play. Newell Brands and its subsidiaries are Equal OpportunityEmployers and comply with applicable employment laws. EOE/M/F/Vet/Disabled are encouraged to apply.