IT Compliance, Information Security, Risk Management
4 Year Degree/Bachelor Degree
H-E-B is one of the largest, independently owned food retailers in the nation operating over 400 stores throughout Texas and Mexico, with annual sales generating over $25 billion. Described by industry experts as a daring innovator and smart competitor, H-E-B has led the way with creative new concepts, outstanding service and a commitment to diversity in our workforce, workplace and marketplace. H-E-B offers a wealth of career opportunities to our 109,000+ Partners (employees), competitive compensation and benefits program and comprehensive training that lead to successful careers.
As an Information Security Manager, you will oversee a team of security personnel who safeguard H-E-B assets, intellectual property, information systems, and physical security of data centers and control facilities coordinate the efforts of the Info Security Office, including all staff, technology, projects, and incident response. You will lead a team that provides support across H-E-B, including IT, HR, privacy, loss prevention, fraud, legal, and other departments; and will identify security initiatives and standards. You will manage contract and service provider personnel.
The Information Security Manager is a high-level security position which reports to and performs tasks under the direction of the Director of Information Security. This is a hands-on management position which requires advanced technical skills, as well as management abilities. The role will coordinate the efforts of the Information Security Office, including all staff, technology, projects, and incident response. In addition, this position will provide support across H-E-B, including information technology, human resources, privacy, loss prevention, fraud, legal, and other departments and will identify security initiatives and standards. Direct reports may include technical and support personnel such as Security Analysts, Security Business Analysts, Security Engineers, and Security Administrators. Additionally, the Information Security Manager will be responsible for managing contract and service provider personnel.
Essential Functions / Process Responsibilities include the following; other duties may be assigned as necessary:
- Oversee a team of security personnel who safeguard the H-E-B-s assets, intellectual property, information systems and the physical security of H-E-B data centers and control facilities. - Coordinate hiring, training, and evaluation of security personnel and the development of education/training programs to ensure appropriate awareness of security policies, procedures, and standards. - Identify protection goals, objectives and metrics consistent with H-E-B-s strategic plan and risk assessment methodology. - Builds strategic roadmaps to include 1, 3, & 5 year plans for work unit(s). - Manage the development and implementation of H-E-B security policies, standards, guidelines and procedures to ensure ongoing maintenance of security. - Maintain relationships with other vendor regulatory bodies and local, state and federal law enforcement and other related government agencies. - Information protection responsibilities will include network security architecture, network access and monitoring policies, employee education and awareness and more. - Oversee Incident response planning as well as the investigation of security breaches, and assist with disciplinary and legal matters associated with such breaches as necessary. - Work with outside consultants as appropriate for independent security audits.
Required Technical Skills: - Must have strong technical knowledge of networking, data structures, directory systems, internet, security, and other technologies. - Must have project management background with firm understanding of metrics and reporting - Must be an articulate and influential leader who can serve as an effective member of the management team and who is able to communicate security related concepts to a broad range of technical and non-technical staff. - Should have experience with business continuity planning, auditing, and risk management, as well as contract and vendor management. - Must have strong working knowledge of pertinent law and the law enforcement community. - Must have a solid understanding of information technology and information security.
Education and Experience preferred: - BS in related field or 5 years relevant work experience in field - 10+ years in Information Technology field - 5+ years in Information Security - Professional information security certification preferred - such as CISSP, CISM, etc. - Working knowledge with industry standards such as HIPAA, ITIL, NIST, SANS, COBIT, OWASP,and ISO - Strong background in managing resource in an enterprise multi-vertical business environment - Strong background in Windows, Unix, and Mainframe security management and security architecture
-Background in application security penetration testing and ruggedized software development
H-E-B is headquartered in San Antonio, Texas with approximately $23 billion in revenue and 100,000 Partners. Founded in 1905, H-E-B operates more than 358 stores in a number of formats, including superstores, supermarkets and gourmet markets. H-E-B is the #1 food retailer in the Austin, San Antonio, Corpus Christi and Rio Grande Valley markets. Our company is the largest private company in Texas and one of the 15 largest privately held companies in the U.S.
Our employees are called Partners. That's because we work together to build our company and create a sense of community here in Texas.
Working here is more than a job. It's a chance work with many great people and blaze an exciting career path.