Loading

20 similar job(s) found

Loading

Head Service Line IT Governance, Risk and Security (m/f/d)

add review
Rating submitted
Sika Informationssysteme AG

Sika is a specialty chemicals company with a leading position in the development and production of systems and products for bonding, sealing, damping, reinforcing, and protecting in the building sector and motor vehicle industry. Sika has subsidiaries in 101 countries around the world and manufactures in over 300 factories. Its 25,000 employees generated annual sales of CHF 9.24 billion in 2021. 

Sika is looking for a passionate and experienced Head Service Line IT Governance, Risk and Security (GRS) in Zurich. The Head of IT GRS has the primary objective to define, implement and enforce the company’s IT GRS vision and strategy supporting the overall risk mitigation program of the Sika Group. He establishes and continuously improves a cyber security framework (organization, tools, processes) that increases Sika maturity and capabilities to counter the global cyber threats. This shall result in a high maturity of protecting our entire IT architecture against any cyber threat ensuring high availability of Sika’s IT means and the protection of our data against any compromise. 

Head Service Line IT Governance, Risk and Security (m/f/d)
Exciting Challenges:
  • Management of an internal team of IT security specialists 
  • Collaborates with external IT security specialists supporting Sika’s overall IT Security Framework
  • Supplier management
  • Consultancy and collaboration with Sika IT colleagues and Sika business
IT Strategy and Governance
  • Develop and implement an overall cybersecurity strategy and roadmap to address security operations, security engineering and IT governance, IT risk and IT compliance.
  • Establishes an effective monitoring and reporting on the effectiveness and adherence to IT Security policies and initiatives
IT Governance 
  • Monitors, reports and enforces compliance with IT directives and general control on group level
  • Build, Implement and maintain IT Governance group-wide control frameworks 
  • Developing metrics and compliance dashboards to monitor progress for global and regional IT initiatives, measure the effectiveness of security controls, and communicate progress 
  • Maintain an internal peer IT Security Audit program together with regional IT responsible and respond to and support internal and external audit teams providing information and evidence about Sika’s Cyber security framework 
  • Analyze and monitors the IT Security status of acquired companies
IT Security 
  • Directs and enforces Sika Group IT security and related directives 
  • Working closely with cross-functional teams to ensure security controls have been designed effectively and are working as intended
  • Obtain, review, and refine organizational IT policies, standards, and procedures to identify control points that would assist in mitigating risk to the business
  • Accountable for the management, maintenance and configuration of endpoint security protection
  • Ensure all IT Endpoints are continuously monitored for vulnerabilities and identify actionable security events by leveraging existing and future tools.
  • Operate a professional internal SOC, supported by external consultants 
  • Define and implement a Cyber Incident Management framework that enables the Sika organization to prepare and react on a critical cyber incident (organization, tools, processes, reporting)
  • Develop, implement and maintain the company security awareness program, using metrics to drive the effectiveness of the program in changing behavior
IT Risk 
  • Build, Implement and maintain group-wide IT Risk framework incl. 3rd party IT security risk management 
  • Supports the Sika organization to identify IT risks and advice for Risk Mitigation and corrective actions.
  • Lead projects to assess cybersecurity maturity and develop risk-based solutions to improve the overall security posture of the business
  • Respond to cyber questionnaires such as customer requests regarding security and Cyber Insurance
  • Risk assessment and reporting on IT initiatives and IT architecture (e.g. Cloud), as well as risk tracking, coordinating with local IT leaders on remediation activities
Memberships
  • Member of the Group IT Management Team (Sika’s IT management board)
  • Member of the Management Team of Sika Informationssysteme AG, (Corporate IT)
We Need Your Skills:
  • University degree and well proven job experience
  • 10+ years of work experience
  • 5+ years of experience in a management position
  • Work experience as CISO
  • Strong understanding of Information Security, Risk and Governance frameworks, methodologies, and best practices like CIS, NIST, ISO, and COBIT
  • Knowledge in implementation and operation of Business and IT continuity concepts
  • A broad background in
    • enterprise security services such as Identity & Access Management, Cloud Security, network security
    • Data Protection, Data Loss Protection, Data Privacy Concepts (e.g. GDPR)
    • Management of a Security Operation Center (SOC) and relevant IT security tools such as SIEM/Logging architectures, Threat hunting, advanced malware protection
  • Excellent analytical, strategic thinking, conceptual translation capabilities and execution skills and stamina combined with a pragmatic problem-solving attitude
  • Self-motivated with strong ability to cope with and to solve conflicts
  • Integrative personality with the skills of creating win-win situations
  • Leadership competence (team leader and functional leader)
  • Good communication capabilities enjoying collaboration cross IT and business
  • Fluent in English and preferable German
Additional qualifications:
  • Business and strategic management
  • Certified Information Security Manager (CISM), Certified in Risk and Information Systems Control (CRISC), Certified Information Systems Security Professional (CISSP), Certified in the Governance of Enterprise IT (CGEIT), or other relevant industry recognized certification
  • Work experience in international environments
  • Work experience in the complex environment of larger organizations
Building Trust Every Day:
  • Sika is a truly global company: With subsidiaries in more than 100 countries around the world. This begins in Switzerland and breaks down borders allowing exciting prospects all around the world
  • Trust is the most important thing for us. We trust in the capabilities of all our Sika team members and reward them with freedom and empowerment - every day
  • We offer an attractive employment package with good social benefits
Contact :For insights into what our colleagues say about working at Sika, please click here.

For more information about this exciting challenge, please contact Robert Lienhard - Senior Talent Acquisition Partner / Click to send email

We look forward to your application.

Address

Sika Gesellschaften in der Schweiz
Herr Robert Lienhard
Senior Talent Acquisition Partner
Tüffenwies 16
8048 Zürich
+41 79 679 82 51

Zürich / Zurich

Subscribe to jobs of this company Subscribe to jobs of this company
Loading

Add review

Enter your rating for the company Sika Informationssysteme AG here!

Rating submitted