About the Role
The Business Information Security Officer (BISO) will implement and maintain information security policies, standards, tools and controls to protect data and information for the ANZ + Asia. This position will ensure that Kraft Heinz stays compliant with all regional privacy and security regulations and monitors the status of security and zone project implementations. The BISO will identify report and act upon security risks, assist with global budgeting, directing the incident response process and coordinating with other groups to mitigate any threats within ANZ + Asia.
Primary Responsibilities
• Provide leadership to refine and enhance the implementation of a risk-based strategy program to manage our information assets and then continuously review and set/update policies to support the program.
• Drive assessment, understanding, and alignment of cybersecurity risk with company senior executives. Recommend actions in line with overall company risk management and gain acceptance at appropriate levels
• Work with internal teams and third-party vendors to implement the relevant security policies and procedures, including regulatory and legal requirements
• Ensure compliance is in place for relevant security policies and procedures, including regulatory and legal requirements
• Provide consultation to IT projects on the testing, deployment, execution and management of IT security for new and enhanced services
• Participate and cooperate in internal and external security audits as required
• Develop, test, evaluate, implement and monitor new or enhanced security systems, tools, devices, ruleset changes and products to support the defined security architecture, policies and standards
• Lead, manage and run the Zone Security and Privacy compliance program for ANZ + Asia
• Monitor security including events, logs, and reports from intrusion prevention/detection systems, anti-virus, and other monitored systems
• Respond to security escalations and investigations and own the resolution of security incidents with internal and third-party suppliers
Qualifications
• Bachelor's degree with 8+ years leading and coaching information security teams to their highest potential in a fast-paced environment
• Knowledge of security standards / frameworks, i.e., ISO 27001, SSAE-18, NIST, etc.
• Extensive experience in operating, monitoring and enforcing security policies, standards, tools, controls and systems in large scale organizations
• Collaborative approach to decision-making, ability to influence without direct line of reporting
• Clear ability to communicate persuasively and build business case with senior executives up to the board level
• Relationship management skills, ability to build and create a strong internal network across levels within Kraft Heinz
• Good problem-solving and analytical skills, able to determine the impact of issues quickly to prioritize corrective actions
The Business Information Security Officer (BISO) will implement and maintain information security policies, standards, tools and controls to protect data and information for the ANZ + Asia. This position will ensure that Kraft Heinz stays compliant with all regional privacy and security regulations and monitors the status of security and zone project implementations. The BISO will identify report and act upon security risks, assist with global budgeting, directing the incident response process and coordinating with other groups to mitigate any threats within ANZ + Asia.
Primary Responsibilities
• Provide leadership to refine and enhance the implementation of a risk-based strategy program to manage our information assets and then continuously review and set/update policies to support the program.
• Drive assessment, understanding, and alignment of cybersecurity risk with company senior executives. Recommend actions in line with overall company risk management and gain acceptance at appropriate levels
• Work with internal teams and third-party vendors to implement the relevant security policies and procedures, including regulatory and legal requirements
• Ensure compliance is in place for relevant security policies and procedures, including regulatory and legal requirements
• Provide consultation to IT projects on the testing, deployment, execution and management of IT security for new and enhanced services
• Participate and cooperate in internal and external security audits as required
• Develop, test, evaluate, implement and monitor new or enhanced security systems, tools, devices, ruleset changes and products to support the defined security architecture, policies and standards
• Lead, manage and run the Zone Security and Privacy compliance program for ANZ + Asia
• Monitor security including events, logs, and reports from intrusion prevention/detection systems, anti-virus, and other monitored systems
• Respond to security escalations and investigations and own the resolution of security incidents with internal and third-party suppliers
Qualifications
• Bachelor's degree with 8+ years leading and coaching information security teams to their highest potential in a fast-paced environment
• Knowledge of security standards / frameworks, i.e., ISO 27001, SSAE-18, NIST, etc.
• Extensive experience in operating, monitoring and enforcing security policies, standards, tools, controls and systems in large scale organizations
• Collaborative approach to decision-making, ability to influence without direct line of reporting
• Clear ability to communicate persuasively and build business case with senior executives up to the board level
• Relationship management skills, ability to build and create a strong internal network across levels within Kraft Heinz
• Good problem-solving and analytical skills, able to determine the impact of issues quickly to prioritize corrective actions
