---------------------------------------------------
SECURITYFOCUS JOBS - NEW OPPORTUNITY
---------------------------------------------------
JOB DESCRIPTION
---------------------------------------------------
Position: VP, Information Security
Location: Columbus, Ohio, United States
Type: Permanent F/T
Closing Date: 2006-04-23
Role Title
Regional Head of IT Security, IT Risk and Continuity Management
Location
Columbus, Ohio
Primary purpose of the role
Role Profile
To ensure that:
• Confidentiality, integrity and availability of our client's Logistics
Division information assets, within the region, are adequately protected
consistent with information risk management policies and global Divisional
strategy. and
• that IT risks, within the region, are adequately identified and managed
through the deployment of appropriate skills, tools and processes consistent
with global Divisional Strategy and
• that processes are implemented and managed, within the region, to
facilitate effective business continuity and integrated disaster recovery
services
Key Accountabilities
Key accountabilities for the role include:
• Educate both business and IT communities on the importance of IT
Security.
• Coordinate the Implementation of DHL's Logistics Division IT security
strategy, for the region, with the process, data, application and technology
leads in the relevant business and IT communities.
• Assist in the development of a Global IT security blueprint, consisting
of policies, standards and best practice for the development, implementation
and management of future IT services.
• Develop a regional implementation roadmap, in conjunction with the
relevant IT systems owners, for bringing existing IT systems in line with the
IT security blueprint.
• Develop and integrate IT security governance processes and procedures
within existing Regional IT Architecture, IT Project Delivery and IT Service
Management functions.
• Coordinate IT security communications to our client's Logistics
Division mgmt and staff ensuring appropriate visibility to existing and new
risks and appropriate mitigation actions and plans, within the region.
• Report on the effectiveness of our client's Logistics Division IT
security to regional senior management and Global IT Security Management with
explicit focus on high risk / high impact assessments and recommendations for
resolution.
• Provide input to the regional Audit on their Logistics Division
potential IT security exposures and escalation reporting to Global IT Security
Management
• Provide thought IT Security technical competencies and liaison with the
various IT functional groups to ensure appropriate consistency and focus is
being applied.
• Where requested, work with business and customer facing IT teams to
present DHL's Logistics Division IT Security strategy to existing and / or new
major customer accounts, within the region.
• Work with regional IT and risk teams to coordinate activities to
mitigate agreed risk priorities focused on Information Risk, IT Risk, Business
Continuity Planning and Disaster Recovery.
• Work with their Logistics Division global IT risk management to define
and implement processes for the effective management of IT risk, within the
region .
• Report on the effectiveness of their Logistics Division regional IT
risk management to regional senior management.
• Work with Divisional business and IT management, within the region, to
define, and manage processes to facilitate effective business continuity and
integrated disaster recovery services
• Represent the region on IT Security, IT risk and Continuity Management
implementations with the Division's Global IT Security, IT Risk and Continuity
Management Director.
Resources (who will report to this position)
This is a regional role with no operational accountability. Subsequently there
will be no direct reports although all IT Security resources in the region will
take functional leadership via this role.
Key Relationships
(Categories of External and Internal Contacts)
• RCTO & IT Technical teams
• IT Product Development teams
• Freight Mgt IT
• Regional IT Team
• Architecture Forum
• Regional CIOs
• Divisional Global IT Security, IT Risk and Continuity Management
• Regional Senior business mgmt
• Regional Audit
• Regional Risk Management Teams Focus
(Nature of interaction)
• Alignment with Technology strategy
• Alignment with IT Product strategy
• Alignment with IT Freight Systems strategy
• Alignment with IT strategic direction and implementation plans
• Alignment with overall IT Enterprise strategy
• Security assistance and assessment of existing and newly proposed IT
systems implementations
• Implementation and assisting in the development of the IT security
blueprint
• Education and awareness of IT security and tracking and reporting on
potential exposures etc
• Leverage Audit function to independently asses current IT security
capability within the region
• Implementation of IT risk processes and practices.
• Implementation of Continuity Management processes
Decision Making Authority (ie budget sign off etc)
IT security sign-off on all their Logistics Division regional implementations
of IT Products (Those IT Products that make it into the IT Products catalogue
and are approved for customer implementations). IT Security sign-off for all
DHL's Logistics Division regional internal systems
Performance Indicators (key measurement for job achievement)
• Regional executive management understanding and awareness of the
criticality of appropriate IT / Information security
• User base understanding and awareness of basic IT security risks and
ways to mitigate them
• Level of compliance to IT security polices and standards across the
organisation in the region
• Trends in number and type of IT security breaches and exposures for
Exel in the region.
• Level of implementation of IT Security initiatives within the region
• Effective regional reporting of IT Risk
• Effective co-ordination of regional business continuity and disaster
recovery services.
JOB REQUIREMENTS
---------------------------------------------------
Qualifications Essential
(tick)
Desirable
(tick)
Educated to degree level 
Formal IT Security Accreditation 
Skills (e.g)
Experienced in IT security and information risk management 
IT Risk 
Continuity management 
Project management 
IT service delivery management 
Strong commercial acumen 
Strong written and verbal communications (Presentation) 
Inter-personal communications 
Analysis and reasoning 
Broad IT service / technology understanding 
Cultural awareness 
Diplomacy and negotiation 
Strategic planning 
Auditing 
Implementation of IT Security Solutions 
Experience
5 years + in senior IT security mgmt role 
3 years minimum working within multinational – multicultural organisation

Strategic IT planning and implementation 
Languages
Mother tongue:
Fluent: (Both verbal & written): English
Some Fluency:
Mobility requirements
• Flexible National travel (% time away from main base)
10-15% International travel (% time away from job location)
10-15%
Approval
Name
Company Signature Date
Appointing Manager
HR Manager
Manager of Appointing Manager
CONTACT
---------------------------------------------------
Nicholson (UK) Ltd
11, Maiden Lane
London
England
WC2E 7NA
Nicholson (UK) Ltd
John Nash
Managing Director
john.nash@nicholsonintl.com
---------------------------------------------------
SECURITYFOCUS JOBS
---------------------------------------------------
SecurityFocus now offers an online interface for
searching and managing job opportunities and resumes.
http://www.securityfocus.com/jobs
