Chief Information Security Officer
VMware - Palo Alto, CA

This job posting is no longer available on VMware. Find similar jobs: Chief Information Security Officer jobs - VMware jobs

About Us VMware is the leader in virtualization and cloud infrastructure solutions that enable our more than 500,000 enterprise and mid-market customers to thrive in the Cloud Era by simplifying, automating and transforming the way they build, deliver and consume IT. We empower our customers by radically simplifying IT through virtualization software with a focus on three core missions: End-User Computing (EUC), Hybrid Cloud and Software-Defined Data Center (SDDC). Join our community – instigators of innovation and transformers of technology – as we envision and create what’s next in IT. Get connected to an engine of opportunity fueled by the transformative products and solutions we bring to market, the passion and trust we inspire in our customers, and our collaborative drive to imagine, define and deliver the future of IT. With 13,000+ employees and 50+ locations worldwide, we are passionately driven to make an impact while contributing back to the community. Ranked on the Forbes 100 Most Innovative Companies in the World list. Learn more at vmware.com/careers today!

Why work for our Division VMware IT provides technology services and support, enabling efficiency, simplicity and productivity for internal business partners and external customers. The VMware IT organization provides two distinct, yet compatible functions. The IT team enables productivity and supports all employees; the organization additionally supports the company in its growth as the global leader in cloud infrastructure by developing and showcasing VMware products and technology. Working in tandem, these two functionalities reduce IT complexity and cost, both within VMware and for its customers.

Job Description Reporting to the CIO, this position requires the ability to understand business issues and processes and to articulate the business context of projects and processes. A strong understanding of information security and software validation is required, and understanding of disaster recovery planning and business continuity process desirable. Must be familiar with the principles and techniques of security risk analysis and must demonstrate an understanding of the management issues involved in implementing security processes and a security-aware culture in a large corporate environment. The CISO will build an organization that can effectively manage vulnerabilities on the horizon, ensuring the trust and safety of VMware’s legacy and new solutions, customers, partners, and developers as our global businesses scale. In order to be successful, the CISO will recognize superior opportunities and/or risks within the market and quickly mobilize to ensure VMware has the right tools and processes in place to mitigate risk. This professional will be responsible for executive understanding, support, and consensus around strategic vision and plan execution. The CISO must be capable of defining VMware’s security strategy and plans for growth in order to build a successful enterprise model which enables the businesses to achieve their objectives while protecting the brand. In an environment where collaboration across the organization is essential to effectively understand and manage the wide range of risks facing our diverse companies, the CISO will serve as a catalyst in bringing together new ideas and processes to execute a vision.

Responsibilities *
  • Implement information & physical security policies and procedures *

  • Develop and implement a framework for security processes, roles, and responsibilities throughout the organization *

  • Capable of managing security requirements and a team of information & physical security analysts *

  • Develop and implement technology solutions and processes that allow secure access to information assets *

  • Participate in the system development lifecycle to ensure that security issues are taken into account and addressed early *

  • Develop and enhance the skills and experience of both infrastructure and operational staff with specific security responsibilities to ensure that systems, facilities, people, and IP remain safe secure, available, and functional at all times *

  • Ensure information security is addressed as a business issue across the company and provide overall coordination and management of all security activities within the company *

  • Coordinate security training for employees, contractors, partners, and other third parties as appropriate *

  • Monitor compliance with the organization's security policies and procedures among employees, contractors, partners, and other third parties; resolve potential issues as needed *

  • Perform security risk assessments *

  • Serve as security consultant *

  • Participate in development of organization's disaster recovery and business continuity plans for information systems *

  • Integrate information security practices, systems, and processes with VMware’s physical security organization.

Overall experience required *
  • Must have experience as the CISO of a large, global company with a minimum of 5 years of IS Management experience, ideally with some physical security management experience. *

  • Experience in the technology industries, preferably in dynamic and fast changing environments *

  • He or she should be someone who is actively sought out by staff and peers as a coach and advisor on career development matters *

  • Strong quantitative and analytical abilities with deep understanding of how to develop relevant metrics that not only track activity but also quantify the impact of security initiatives on the financial performance of the business *

  • Experience in designing enterprise-wide information & physical security organizational structures and processes *

  • Strong orientation toward problem solving and decision-making in an open and collaborative environment *

  • Excellent written and verbal communication skills *

  • Strong leader, team player and contributor *

  • Comfortable dealing with ambiguity, rapidly changing environment, and possible conflicting priorities *

  • Self-motivated and directed *

  • He/she will be an out-of-the-box” thinker who will determine what VMware needs to build today in order to get ahead of future threats *

  • He or she will be a diplomat – In an environment where security might be viewed as a barrier to growth, this executive must have a demonstrated ability to anticipate the needs of business clients, proven ability to support a fast-paced business and demonstrated ability to understand and balance business drivers with the needs of security services

Specific security experience required *
  • Governance, Risk & Compliance: Experience establishing the processes and mechanisms required to enable multiple stakeholders across the enterprise to contribute to risk decision-making. Key competencies include demonstrated leadership in the areas of Data Classification, Control Frameworks, Enterprise Risk Management and Risk Ownership and Accountability. Must be able to define specific metrics for residual risk to define control maturity across multiple lines of business. Must have proven ability to manage a variety of regulatory compliance regimes, domestic and international *

  • Security Function Management: Must be able to demonstrate experience in the following areas: Strategic Planning, Budget Process and Benchmarking, Organizational Design, Cross-functional Partnerships, Staff and Leadership Development *

  • Application Security: Experience implementing secure software lifecycle development models supporting a variety de

Is this a remote or multiple location position? No

EEO Statement VMware is an equal opportunity employer committed to the principles of equal employment opportunity and affirmative action for all applicants and employees. Equal opportunity and consideration are afforded to all qualified applicants and employees in personnel actions, which include: recruiting and hiring, selection for training, promotion, rates of pay or other compensation, transfer, discipline, demotion, layoff or termination. VMware does not unlawfully discriminate on the basis of race, color, religion, sexual orientation, marital status, pregnancy, gender identity, gender expression, family medical history or genetic information, citizenship, national origin or ancestry, sex, age, physical or mental disability, medical condition, veteran status, military status, or any other basis protected by federal, state or local law, ordinance or regulation. VMware also makes reasonable accommodations for disabled employees consistent with applicable law. Further, it is the policy of VMware to maintain a working environment free of all forms of harassment.

Group IT *

Posting Title* Chief Information Security Officer *

Location* Palo Alto, CA, US *

Requisition Number* 45580BR

VMware - 13 months ago - save job - copy to clipboard
About this company
143 reviews
VMware is the leader in virtualization and cloud infrastructure solutions that enable businesses to thrive in the Cloud Era. A pioneer in...