Full Job Description
Kraft Heinz, The Company
As one of the world’s largest food and beverage companies, we are proud to spark joy around mealtimes with a global portfolio of more than 200 brands. Some are iconic master brands like Heinz, Kraft and Planters. Others are fast growing new sensations that defy status quo like DEVOUR and Primal Kitchen. No matter the brand, we are united under one vision To Be the Best Food Company, Growing a Better World . Bringing this vision to life are our 36,000+ teammates around the world, making food people love.
Together, we help provide meals to those in need through our global partnership and commitment with Rise Against Hunger. And we also stand committed to sustainability, and the health of our planet and its people.
Every day, we are transforming the food industry with bold thinking and unprecedented results. If you’re passionate like us - and ready to create the future, build on a storied legacy, and participate as a conscientious global citizen - there’s one thing to do join us.
Our Culture of Ownership, Meritocracy and Collaboration
We’re not afraid to think differently. Embrace new ideas. Dream big. It all comes down to the way we empower our people to own their work. It’s true Our employees are our competitive advantage.
As part of the Kraft Heinz family you’re supported to grow and achieve. You’re recognized and rewarded for outstanding performance at every level. You’re given the opportunity to leave your mark and build legacies. But you won’t do it alone. This is where our values and teamwork thrives and collaborative spirit fuels every day.
Provide leadership to refine and enhance the implementation of a risk-based strategy program to manage our information assets and then continuously review and set/update policies to support the program.
Direct the tactical company response to attacks and incidents including the containment and eradication strategy to ensure minimal impact to business operations.
Mature the Security Operations Center which will include security tool optimization, technology enhancements, process and procedure improvements.
Regularly assess and improve critical 3rd party vendors for effectiveness, maturity, knowledge transfer, and documentation.
Make appropriate recommendations for security enhancements to the CISO including tools, technologies, services, policies, procedures, and other areas as needed.
Manage the enterprise process for identification and remediation of technical vulnerabilities in partnership with global teams.
Manage the design and implementation of an operational reporting framework that will provide regular metrics and statistics about security operations; analyze trends in security events, activities, to better understand risks, insufficiencies in our solutions, staffing and processes; report security metrics and statistics to the CISO and other key stakeholders.
Responsible for cross training efforts to ensure there is no critical point of failure from a resource perspective.
Drive assessment, understanding, and alignment of cybersecurity risk with company senior executives. Recommend actions in line with overall company risk management and gain acceptance at appropriate levels
Ensure all products and services are appropriately reviewed from a cyber security perspective (scans, red team testing, risk reviews, etc.) before and during deployment
Bachelor's degree with 8+ years leading and coaching information security teams to their highest potential in a fast-paced environment
Knowledge of security standards / frameworks, i.e., ISO 27001, SSAE-18, NIST, etc.
Successful track record of helping to implement security initiatives and frameworks in a flexible unstructured manner
Ability to understand technical issues teams typically face and act as a player/coach for blocker removal
Collaborative approach to decision-making, ability to influence without direct line of reporting
Strong knowledge in technical foundations of modern cloud computing security, application/API security, networking security, and cryptography
Clear ability to communicate persuasively and build business case with senior executives up to the board level
Equal Opportunity Employer–minorities/females/veterans/individuals with disabilities/sexual orientation/gender identity