At GXO, we're constantly looking for talented individuals at all levels who can deliver the caliber of service our company requires. You know that a positive work environment creates happy employees, which boosts productivity and dedication. On our team, you'll have the support to excel at work and the resources to build a career you can be proud of.
We are motivated to transform an industry through technology, and we understand that the security of our technology and data is critical to our success. As the Business Information Security Officer for AMAPAC, you are the face of Information Security when supporting senior business executives. The role is a key partner in ensuring that business functions understand and address cyber risk in their respective functions but also that their needs and concerns are communicated back into the IT Function. This role is critical in positioning GXO for long-term success.
Pay, benefits and more.
We are eager to attract the best, so we offer competitive compensation and a generous benefits package, including full health insurance (medical, dental and vision), 401(k), life insurance, disability and more.
What you'll do on a typical day:
Serve as a trusted advisor and liaison with business unit senior leadership.
Support InfoSec leadership to effectively communicate and implement InfoSec requirements into the way of working of the business units.
Represent the business units when working with other parts of the Information Security function to ensure the goals, challenges, requirements, and ways of working of the business are fully understood by the team.
Be actively informed and engaged in security projects across the business.
Develop and communicate high-quality executive reports outlining the key areas requiring focus and to champion the InfoSec team within the business.
Enforce the strong security culture set forth by the CISO, ensuring uniformity across security leadership, business units and employees.
Foster strong relationships with internal business units and excel in cybersecurity communication.
Advise business units on enterprise-wide people, process, and technology security recommendations.
Maintain up-to-date knowledge related to security threats, vulnerabilities and mitigations set forth to reduce the attack surface; circulate this knowledge through the business units.
Ensure that Information Security is included at the relevant points of all business initiatives including new customers, new projects and/or M&A activity.
Identify and document threats and vulnerabilities that may impact the business and address them regularly with business units.
In conjunction with security and business leaders, define key Risk indicators (KRIs) and metrics aligning with business initiatives and deliver them to non-technical teams in terms that are accessible and comprehensible.
Provide motivation to business units to adopt cybersecurity controls.
Remove complexity and obstacles that hinder efficient security controls enterprise-wide.
Represent GXO on all Information Security topics when communicating with current or potential customers.
What you need to succeed at GXO:
At a minimum, you'll need:
Bachelor's degree in related field, or equivalent related work or military experience
7 years of experience in Information Security and technology including 4 years in leadership roles
Self-starter requiring minimal supervision
To be highly organized and efficient
Demonstrated strategic and tactical thinking, along with decision-making skills and business acumen.
Demonstrated experience in application security practices, key network and technical security controls and IT Risk and Security governance
Demonstrated experience in risk assessment and remediation.
Experience in project/program management
Experience with automation and efficiency to improve programs and processes
Proven interpersonal, leadership and collaboration skills with the ability to effectively supervise, coach and influence employees
Outstanding written and verbal business and cybersecurity communication skills. This includes production of executive level presentations and reports
Solid complex problem solving and analytical skills
Process driven and detail-oriented
It'd be great if you also have:
Certified CISA, CISM or CISSP and/or ISO 27001 Lead Auditor Certification (Preferred).
2 years of experience in project and program management
Experience with OT and IoT Security.
We engineer faster, smarter, leaner supply chains.
We are proud to be an Equal Opportunity/Affirmative Action employer. Qualified applicants will receive consideration for employment without regard to race, sex, disability, veteran or other protected status.
GXO adheres to CDC, OSHA and state and local requirements regarding COVID safety. All employees and visitors are expected to comply with GXO policies which are in place to safeguard our employees and customers.
All applicants who receive a conditional offer of employment may be required to take and pass a pre-employment drug test.
The above statements are intended to describe the general nature and level of work being performed by people assigned to this classification. They are not intended to be construed as an exhaustive list of all responsibilities, duties and skills required of personnel so classified. All employees may be required to perform duties outside of their normal responsibilities from time to time, as needed.
