The well-rounded IT professional hired to lead the Information Security Risk and Compliance team will ensure multiple products are supported in accordance with 3M policies and standards.
Participate in development of enterprise information security strategy. Recommend effective process change to enhance defense and response procedures and compliance to 3M Policies, Standards and government regulations.
Provide on-boarding training and coaching to Security analysts. Assist in providing input to measure staff and department performance through 3M’s performance appraisal program.
Strong organizational, document management, and communication skills required.
Primary Responsibilities include but are not limited to the following :
Lead the Information Security, Risk and Compliance team in implementing of various security solutions
Lead the global coordination of security activities required to maintain a seamless workflow enabling a follow the sun process
Coordinate with various Infrastructure and / or Application teams globally on high or critical severity incidents
Review the Security Analysts to ensure the team, processes and technology are meeting the Information Security, Risk and Compliance service level objectives and metrics
Ensure the personnel issues are being addressed and communicates to senior management any issues or problems
Ensure the Security team is receiving development guidance in accordance with the practices and standards of ISRC Department
Assist in providing performance appraisal input to measure staff and department performance through 3M’s performance appraisal program
Ensure security assignments are coordinated and resolved in a timely and appropriate manner
Contribute to support and maintaining additional reports and metrics
Active participation in providing input to 3M’s overall regulatory compliance
Ensures assigned deliverables are completed on time and meet all expectations
Basic Qualifications :
Bachelor's degree or higher from an accredited university
Minimum 7 years of experience working in an information security role
Preferred Qualifications :
10+ years of experience working in an information security role
Understanding of cyber security incident phases and attack vectors
Strong verbal and written communication skills to internal and external stakeholders and the ability to remain calm and perform under pressure
Ability to convey a strong presence, professional image, and deal confidently with complex problems and staff management
Experience working in a customer facing role, preferably manufacturing
Ability to work closely in a collaborative role with other team members, as well as complete tasks individually
Ability to listen, analyze, influence, negotiate and use judgment to solve complex issues in order to accomplish Information, Security, Risk and Compliance goals