9250.00 $ Manager InfoSec Operations

IT at PMI
PMI’s journey to a smoke-free future implies a shift from a tobacco manufacturer to a science and technology-based consumer facing organisation.

Such a shift creates an abundance of unique and progressive IT projects to match all levels of skills and ambitions. You’ll feel like you’re working in a start-up – with the freedom to shape and define the future of digital, but with the support and scope of a vast global business. You’ll get a chance to work with innovative technologies (e.g., Cloud, APIs, AI) as well as management practices (e.g., Agile, Design Thinking, Product Management). Our environment is fast-paced and highly collaborative. If you want the freedom to find new ways to connect with consumers, there’s no better place to progress your career.

Digital at PMI is dynamic, diverse, and innovative. Join us and become a part of a top talent team where you can bring new insights to life in a global function that is a key driver of the success of our business.

YOUR ‘DAY TO DAY’
As part of the Information Security Operations (InfoSec OPS) team, and for what concerns a scope including selected areas of Operations function, IT Operations Platforms, and other functions or platforms having OT technology in their area of ownership or responsibility:

• Govern all information security risks in the scope, including coordination of activities of other teams (e.g., Information Security, IT Operations, Operations, etc.) supporting the scope, and engage with partners and other colleagues, at central and local level.
• Implement and maintain reporting for the scope (including e.g. dashboards, slide decks, awareness webpages), both for operational and executives partners, to communicate status of risks and progress of CRP implementation, and enable resource mobilization if needed.
• Coordinate project assurance of selected initiatives in the scope (such as projects, PoV, MVP) at central or local level, and perform risk management, in strict alignment and collaboration with other teams in IT and beyond (e.g. Risk & Assurance, Supplier Quality & Audits, Intellectual Property Management), with the biggest purpose to enable business and IT strategy deployment.
• Support the design and the implementation of the PMI Cyber Risk Program for the scope, with technology, process, and organizational components, by taking into account e.g. insights from project assurance (e.g. in terms of recurrent security gaps and deficiencies), key business strategy elements, Cyber Threat Intelligence insights, etc., in order to increase cybersecurity maturity and business resilience of the scope; correlate CRP implementation progress to Cyber Maturity Index increase.
• Lead Information Security Assessments (ISAs) of plants, applications and security processes in the scope, in order to identify security gaps, perform risk management, and define risk-reduction actions to be implemented by teams within and beyond IT. ISAs may apply to PMI owned factories, industrial labs, warehouses, Third Party Manufacturers, buying stations, stemmeries, and other plants e.g. becoming part of the scope due to M&A initiatives.
• Assist Cyber Defense team in leading cybersecurity incidents affecting the scope, providing OT related knowledge to better understand root causes and impact, collaborating closely with central or local partners, and leading definition and implementation coordination of subsequent risk-reduction plans.
• Provide continuous guidance and advisory, including in the form of training, awareness, and other activities such as e.g. table top exercises, within the business functions and platforms in scope, to facilitate adherence to PMI policies and standards related to security and compliance.

Who we’re looking for:
• University Master Degree (Computer Sciences, Information Systems, Engineering, Business Administration or equivalent).
• 7+ years in IT teams at international companies, performing activities relevant to information security, such as e.g. risk management, security demand management, security audit, security governance, application security, system controls, disaster recovery and business continuity
• Demonstrated ability as people manager of direct or indirect reports, including suppliers
• 3+ years in OT teams at international companies, performing activities relevant to information security, such as e.g. factory network segregation/segmentation, OT network monitoring and visibility management, ICS patch management, disaster recovery
• Experience with securing ICS technologies, e.g. Programmable Logic Controllers (PLCs), Human-Machine Interface (HMI), Distributed Control Systems (DCS), Supervisory Control and Data Acquisition (SCADA), and Building Management Systems
• Experience implementing information security program for Operations' functions, e.g. Manufacturing, Supply Chain, Prototyping and Industrialization areas
• Experience with project management, preferably related to information security areas
• Knowledge of cybersecurity standards, such as ISA/IEC 62443, NIST 800-82
• Knowledge of Industrial Internet of Things (IIoT) platforms and cloud computing architectures (e.g. IaaS, PaaS, SaaS)
• Excellent skills in partner management, collaboration, written and oral presentation in English, abstract thinking, problem solving, and decision-making
• Quick learner with a pragmatic, analytical and autonomous mindset
• Professional certifications in IT and OT Security, e.g. (ISC)2 CISSP, (ISC)2 ISSMP, ISO 27001, ISACA CRISC, ISACA CISA, ISACA CISM, SANS GIAC GICSP, SANS GIAC GRID, ISA/IEC 62443 Cybersecurity Certificate Program
• Professional certifications in Project Management: PMP or PRINCE2
• Understanding of Agile/DevOps organizations and cultures

What we offer?

There are many IT Organizations out there, so why should you join ours?
• Annual Base Salary Range: range $111,500 - $153,450
• We believe PMI IT’s true strength is fuelled by our people, and that our success depends on them coming to work every single day with a sense of purpose and an appetite for progress. We are a people first organisation committed to providing you with first-class employee journey. Here’s a glimpse of what’s in it for you upon joining us:
• Work-life balance: Wellbeing comes first. We offer a fantastic office environment and hybrid working options to ensure you have the best work-life balance possible
• Learning & Development: Your growth is a priority. Our robust and varied learning & development ecosystem will help you strengthen your technical skills and enhance your soft skills and intuition for business. The capabilities you will acquire with us will support your life-time employability within IT, PMI, and beyond
• Inclusion & Diversity: Our differences - much more than our similarities - generate the innovation we are looking for. We aspire to build a diverse and inclusive organization to access the breadth and depth of thinking and sensitivity vital to thrive
• We offer a competitive base salary, annual bonus (applicable based on level of position), great medical, dental and vision coverage, 401k with a generous company match, incredible wellness benefits, commuter benefits, pet insurance, generous PTO, and much more

Every single IT colleague is part of our Transformation journey. Join us and pursue your ambitions – our staggering size and scale provides endless opportunities to progress. If this offer resonates with you, we look forward to receiving your application and getting to know you.

Together, let’s deliver a smoke free future!

PMI is an Equal Opportunity Employer
PMI Global Services Inc. and PM Global Brands Inc. are a subsidiary of Philip Morris International Inc. Philip Morris International (PMI) is leading a transformation in the tobacco industry to create a smoke-free future and ultimately replace cigarettes with smoke-free products to the benefit of adults who would otherwise continue to smoke, society, the company, its shareholders and its other partners. PMI is a leading international tobacco company engaged in the manufacture and sale of cigarettes, as well as smoke-free products, associated electronic devices and accessories, and other nicotine-containing products in markets outside the U.S. In addition, PMI ships versions of its IQOS Platform 1 device and consumables to Altria Group, Inc. for sale under license in the U.S., where these products have received marketing authorizations from the U.S. Food and Drug Administration (FDA) under the premarket tobacco product application (PMTA) pathway; the FDA has also authorized the marketing of a version of IQOS and its consumables as a Modified Risk Tobacco Product (MRTP), finding that an exposure modification order for these products is appropriate to promote the public health. PMI is building a future on a new category of smoke-free products that, while not risk-free, are a much better choice than continuing to smoke. Through multidisciplinary capabilities in product development, state-of-the-art facilities and scientific substantiation, PMI aims to ensure that its smoke-free products meet adult consumer preferences and rigorous regulatory requirements. PMI's smoke-free product portfolio includes heat-not-burn and nicotine-containing vapor products. As of September 30, 2022, PMI's smoke-free products are available for sale in 70 markets in key cities or nationwide, and PMI estimates that approximately 13.5 million adults around the world, excluding Russia and Ukraine have already switched to IQOS and stopped smoking. For more information, please visit www.pmi.com and www.pmiscience.com.
#LI-Hybrid

Связаться с автором