IT Security & Data Governance Manager in Caledon, Ontario

Kingspan Insulated Panels North America, a division of the Kingspan Group plc headquartered in Ireland, is a global and trusted leader in the design, manufacturing, and supply of high-performance sustainable building products and solutions for the construction industry. As the most energy-efficient, cost-effective building envelope solutions, insulated metal panels are at the forefront of sustainability. We serve the architectural, commercial/industrial, cold storage and food processing markets, and are committed to delivering the most advanced building products on the market. Learn about our Planet Passionate initiatives: https://www.youtube.com/watch?v=EEeIS55WMOk

At Kingspan, our future success is based on the quality of our people, who’s expertise and motivation have helped ensure that we remain at the forefront of the construction materials manufacturing industry. In joining Kingspan you become an important part of a growing organization with a reputation for innovative design and use of technology, technical expertise, product quality, service excellence, and dedication to sustainability.

Ready to be part of our team?

We are looking for a IT Security & Data Governance Manager for our Caledon, Ontario, Canada office!

Summary: The Manager of IT Security & Data Governance is responsible for developing and executing the Kingspan Cyber Security Strategy to ensure assets and technologies in the Kingspan Americas Division are adequately protected from cyber and data risk.

The successful candidate will work closely with senior management, executives, business partners, and third-party vendors in the delivery and execution of the Group Cyber Security & Data Governance Programs always ensuring that business needs are being met while protecting against cyber and data risk.

The role will be responsible for executing and maintaining processes and technologies across the Kingspan Division to ensure cyber risks are always kept within acceptable levels. The candidate is expected to deliver business value by consistently executing secure, innovative solutions aligned to the Kingspan Cyber Security & Data Governance Strategies.

Essential Duties:

• Ensure Divisional Security is managed to and compliant with the Kingspan IT Manual.

• Lead the Divisional IT Security Compliance for the recurring Internal IT General Controls Audits.

• Lead the recurring Internal Cyber Security Internal Audit for the Division.

• Lead the activities of threat and vulnerability management, identify risk plans, and recommend remediation plans.

• Develop a divisional information security vision and strategy aligned to Kingspan Group organizational priorities, enabling, and facilitating the organization’s business objectives and ensuring senior stakeholder buy-in and mandate.

• Lead the information security function across the Division to ensure consistent and high-quality information security management to support the business goals.

• Provide regular reporting on the status of the information security program to senior business leaders and Divisional Leadership as part of a strategic enterprise risk management program, thus supporting business outcomes.

• Work with the vendor management teams to ensure that information security requirements are included in contracts by liaising with vendor management and procurement organizations.

• Facilitate a metrics and reporting framework to measure the efficiency and effectiveness of the Security and Data Governance Programs, facilitate appropriate resource allocation, and increase the maturity of the information security, and review it with stakeholders at the executive and board levels.

• Create and manage a targeted information security awareness program for all employees, contractors, and approved system users, and establish metrics to measure the effectiveness of this security training program for the different audiences.

• Understand and interact with related disciplines through committees to ensure the consistent application of policies and standards across all technology projects, systems and services, including privacy, risk management, compliance and business continuity management.

• Manage the budget for the function, monitoring and reporting discrepancies.

• Partner closely with executive leadership to ensure that all applications and platforms are developed with security in mind and that appropriate security controls have been implemented while driving continuous investment into the Cyber security areas.

• Other duties as required.

Education/Experience:

The Manager of Security & Data Governance should have:

• A technical background with a strong understanding of cloud and network security architecture. Demonstrates a deep understanding of leading-edge security tools and technologies in the marketplace. Excellent analytical skills to analyze security requirements on a divisional scale and relate them to appropriate security controls.

• Experience with Data Governance, including Data Classification, Data Discovery, Data Security, Data Retention and Data Loss Prevention (DLP).

• The person is responsible for the management of people, process and technology of the Group IT Security function.

• 15 years IT experience with at least five of those years working in an IT Security role in a technical senior, supervisory or managerial capacity.

• Experience with information security management frameworks such as: National Institute of Standards and Technology (NIST), Center for Internet Security (CIS), International Standards Organization (ISO) 27001 and other leading-edge frameworks.

• Previous experience with designing IT Security architecture in a large-scale Enterprise, technologies included: Cloud security, network security, OT security, application security and endpoint security.

• Experience in developing and execution of enterprise scale cyber security strategy ensuring alignment to overall business strategy.

• Experience in performing risk, vulnerability, business impact assessments and in defining remediation strategies.

• Experience developing and implementing policies, procedures and guidelines.

• Solid understanding of project management principles.

• Ability to translate understanding of the organisation’s goals and objectives into technology requirements.

• Experience working in manufacturing, retail or similar industry is advantageous.

This job description indicates the general nature and level of work expected. It is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities required of the incumbent.

Physical Demands:

• The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

• Exert up to 20 lbs. of force occasionally, and/or up-to 10 lbs. of force frequently, and/or a negligible amount of force constantly to lift, carry, push, pull, or otherwise move objects, including the human body. Involves sitting most of the time, but may involve walking or standing for brief periods.

• Specific vision abilities required by this job include close vision, distance vision, peripheral vision, depth perception, and the ability to adjust focus.

We offer a comprehensive benefits package including 401k with company match, Medical, Dental, Vision, Identity Theft Protection, Critical Illness, Accident, Hospital Indemnity, Pregnancy and Parental Leave, Fitness Reimbursement, Educational Assistance, Life, AD&D, Short and Long Term Disability, and Life Assistance Program.

Kingspan is an Equal Opportunity Employer

ID: 2023-1971

Street: 12557 Coleraine Drive