Principal Information Security Engineering

About This Role

This role supports the Center of Excellence (COE) team within the Enterprise Security & Resilience Office, focusing on program management, executive reporting, analytics capabilities, and driving automation for security operational discipline. The position helps align the COE's vision, strategy, and roadmap with organizational goals, working to achieve security and operational excellence across the company.

Responsibilities

• Define and drive the vision, strategy, and roadmap for the COE aligned with organizational and strategic goals
• Collaborate across the enterprise security office to execute strategy of operational excellence and risk remediation
• Partner to enhance reporting and automation capabilities
• Design and implement best in class reporting capabilities to deliver real-time, data driven insights and key performance indicators (KPIs) to security stakeholders
• Support COE operations and the execution of special projects, including other ESRO assessments
• Provide oversight to team members in the delivery of COE initiatives
• Establish best practices, frameworks, and standards for the security office
• Act as a thought leader and advocate for innovation and continuous improvement
• Identify opportunities for automation and efficiency improvements
• Drive quality assurance and continuous process optimization

Requirements

• 5+ years of experience in technology, information security, risk management, or compliance
• Exposure to managing cross-functional teams and driving continuous improvement initiatives within a center of excellence or operations role
• 3+ years of proven analytical, reporting and problem-solving skills
• Demonstrated experience applying or using AI/ML to enhance operations, automate processes, and improve insights
• Extensive knowledge of industry-standard cybersecurity frameworks, such as NIST, ISO 27001, and CIS Controls

Qualifications

• Bachelor's degree in technology, information security, computer science, data analytics, business administration, or related field OR equivalent professional experience
• 5+ years of experience in technology, information security, risk management, or compliance, with exposure to managing cross-functional teams and driving continuous improvement initiatives within a center of excellence or operations role

Nice to Have

• Proven ability to develop, implement, and maintain security protocols that align with enterprise objectives and regulatory requirements
• Proven exceptional communication and stakeholder management skills, with a track record of presenting recommendations to executive leadership and fostering organizational alignment

Skills

* Required skills

Benefits