Dover Corporation - Downers Grove, IL
posted about 2 months ago
Full-time - Senior
Downers Grove, IL
10,001+ employees
Machinery Manufacturing
About the position
The Chief Information Security Officer (CISO) at Dover Corporation is responsible for developing and implementing a comprehensive information security strategy to protect the organization's data and technology assets. This role involves leading a team of security professionals and collaborating with senior leadership to align security initiatives with business objectives, particularly in multi-cloud environments. The CISO will oversee security policies, risk assessments, incident response, and compliance with relevant regulations, while also managing relationships with various stakeholders.
Responsibilities
- Develop and maintain the information security strategy, policies, standards, and procedures.
- Present Cyber and Connected Product Security Risks and progress to key stakeholders, including Dover's Board of Directors and Senior Executives.
- Create periodic and ad-hoc executive updates reporting key team achievements and progress against plan.
- Lead risk assessments and ensure compliance with relevant regulations and standards.
- Oversee incident response planning and execution, coordinating with legal and external security providers.
- Collaborate with IT and other departments to implement security solutions and best practices.
- Conduct security awareness training for employees in multiple languages.
- Stay current with industry trends and threats to enhance security posture.
- Manage relationships with internal auditors, external auditors, third-party vendors, and regulatory bodies.
- Design and implement a governance model for Cloud-hosted infrastructure and cloud-based technology services.
- Build and leverage KPIs to measure the effectiveness of the Dover Security model tied to NIST CSF.
- Manage Cyber and Product Security department financial metrics, team goals, and performance.
Requirements
- Minimum of B.S. or equivalent in Computer Science, Information Technology, or Information Security.
- 10+ years of working experience in Cyber Security, with a minimum of 4 years in a Senior Cyber Security role.
- Working knowledge of traditional security controls and technologies, such as SIEM systems, IDS/IPS, IDAM systems, antivirus, and firewalls.
- Experience with newer offerings such as EDR, threat intelligence platforms, security automation, and application controls.
- Background in global manufacturing or Industrial Services is a plus.
- CISSP, CISM, and/or SANS certification is a plus.
Nice-to-haves
- Experience with enterprise on-prem and multi-cloud architecture.
- Familiarity with NIST CSF 2.0, NIST 800-53, CMMC, ISA/IEC 62443, and PCI DSS.
