Sr. Director, Security, Governance, Risk & Compliance
Hospitality / Food Services
Full Time
We are looking to add a Sr. Director, Security & GRC to lead our Information Technology Security team. This individual will be accountable for IT Security, Regulatory compliance (e.g. SOX, PCI) and our data privacy program. Collaborating with team members at all levels across IT (e.g. engineering, IT infrastructure) and leaders around the company (e.g. HR, Legal), this hands-on role will ensure effective policies, processes, standards are in place to ensure security and compliance requirements are met. What You’ll Do:
- Develop and implement IT Security program strategy, leveraging risk analysis and benchmarking (e.g. NIST) to support proposed investments
- Maintain IT Security and data privacy standards, policies and practices, collaborating with stakeholders around the organization (e.g. IT, Legal, HR,) as necessary to ensure alignment and enforcement
- Lead strategy and planning for IT to maintain compliance with regulatory requirements (e.g. SOX, PCI) and state / federal data privacy regulations. Ensure participants understand and perform their role in meeting compliance
- Manage day-to-day security operations including vulnerability management, security monitoring and response. Ensure incidents are addressed efficiently, effectively, and appropriately
- Provide security, data privacy and compliance program reporting to CTO, leadership stakeholders and the Audit Committee.
- Maintain criteria to be used during 3rd party technology evaluations, and ensure potential partners are evaluated against them.
- Evangelize good security practices and act as a subject matter expert for the organization.
- Work with appropriate Infrastructure, Data and Application teams to ensure vulnerabilities are detected, tracked and remediated
- Minimum 10+ years experience in IT security and compliance
- 5+ years experience leading teams with operational, IT policy, ITGC and reporting responsibilities
- 3+ years experience developing information security and compliance related policies, procedures and controls for small – medium size company, must have experience in a multi unit retail or restaurant environment
- The ability to communicate clearly and appropriately with people at all levels of an organization from individual IT contributor to the C suite and Board.
- Pragmatic and objective, with the ability to contextualize risks and prioritize investments
- Ability to prioritize multiple tasks and organize work to meet deadlines and multiple requests
- Ability to adapt quickly to change and handle ambiguity
- Strong customer service orientation
- Incredible Discounts:
- Monthly Dining Allowance
- 50% Dining and Carryout
- 40% Retail Wine
- 20% Retail and Private Events
- Monthly Complimentary Wine Tasting for Two
- Medical, Prescription, Dental, Vision Insurance plus Telemedicine and Wellness Program
- Company Matching 401(k) Retirement Savings Plan
- Flexible Savings Accounts- Health and Dependent Care
- Health Savings Account
- Long-Term Disability; Voluntary Short-Term Disability
- Basic Life and AD&D Insurance (with option to purchase additional coverage)
- Paid Parental Leave
- Highly Competitive Pay plus Team Member Incentives & Rewards
- Paid Time Off
- Milestones Recognition Program
- Complimentary Gym Membership in RSC Building
- Hybrid Work Week (3 days in office, 2 days remote, depending on role)
About Us
Cooper's Hawk Winery & Restaurants was created with the inspiration of bringing the Napa Valley experience to all of America, by combining an elegant tasting room with a polished casual restaurant and scratch kitchen. Cooper's Hawk wines have won hundreds of awards and are the Official Wines of the Screen Actors Guild® Awards. We are built upon the belief that food and wine hold the power to forge a COMMUNITY, and with the world's largest wine club membership, we are paving the way to democratizing the good life!