Tractor Supply Company

The Director will lead the IT Security Risk and Compliance teams with a focus on delivering reliable and scalable cybersecurity and IT risk management services.. Deep knowledge and practical experience in enterprise IT risk management programs using NIST, FAIR, ISO, and other relevant IT control frameworks.. Deep knowledge and practical experience with PCI, SOX, IT General Controls, and third-party risk management.. Professional Certifications: CISSP, CISA, CRISC, CISM, SANS GIAC, or another relevant security or governance certification(s) desired.. fot full-time and eligible part-time TSC and Petsense Team Members.

Overall Job Summary The individual in this role will be a key leader in a cybersecurity program supporting a highly dynamic and fast-paced retail company. The Director will lead the IT Security Risk and Compliance teams with a focus on delivering reliable and scalable cybersecurity and IT risk management services. Success will be achieved by blending technical expertise and business insight to minimize risk and ensure compliance while supporting the growth of digital services at TSC Essential Duties and Responsibilities (Min 5%) <ul> <li>Provide leadership and technical direction to deliver cybersecurity, IT risk, and compliance capabilities that address both 1st and 3rd party risks.</li> <li>Develop and execute a comprehensive strategy for defensive security, threat mitigation, and risk reduction following standards-based frameworks including NIST CSF and NIST P.</li> <li>Ensure adequate and timely resolution of audit, compliance, and regulatory requirements.</li> <li>Partner with IT and business leaders to influence and ensure alignment and support for cybersecurity policies, standards, and operating procedures.</li> <li>Collaborate with fellow leaders of IT and business teams to support their requirements for cybersecurity solutions and expertise.</li> <li>Research and recommend security and risk technologies that can be applied to technology solutions being developed or maintained internally and externally.</li> <li>Develop, mentor, and lead a high-performing team of information security and risk experts.</li></ul> Required Qualifications Experience: 9+ years of progressive cybersecurity, IT risk, and compliance experience. Relevant experience in retail, Big4 or enterprise IT audit, and security consulting is preferred. Deep knowledge and practical experience in enterprise IT risk management programs using NIST, FAIR, ISO, and other relevant IT control frameworks. Deep knowledge and practical experience with PCI, SOX, IT General Controls, and third-party risk management. Education: Bachelor's Degree in Cybersecurity, Computer Science, or a related field. Any suitable combination of education and experience will be considered. Professional Certifications: CISSP, CISA, CRISC, CISM, SANS GIAC, or another relevant security or governance certification(s) desired. Preferred knowledge, skills or abilities <ul> <li>Track record of delivering effective solutions in collaboration with multiple stakeholder groups and contending priorities.</li> <li>Current knowledge of evolving threats, attacker techniques, and options for risk mitigation</li> <li>Practical understanding of data protection policies and standards, and privacy regulations</li> <li>Experience with financial management, budgeting, and forecasting.</li> <li>Excellent verbal and written communication skills.</li> <li>Excellent analytical, problem-solving, project management, and planning skills</li> <li>Strong vendor management and negotiation/mediation skills</li> <li>Eligible to work in the United States without company sponsorship.</li></ul> Working Conditions <ul><li>Normal office working conditions</li></ul> Physical Requirements <ul><li>Sitting</li><li>Standing (not walking)</li><li>Walking</li><li>Kneeling/Stooping/Bending</li><li>Reaching overhead</li><li>Lifting up to 20 pounds</li><li>Driving a vehicle</li></ul> Disclaimer This job description represents an overview of the responsibilities for the above referenced position. It is not intended to represent a comprehensive list of responsibilities. A team member should perform all duties as assigned by his/ her supervisor. ALREADY A TEAM MEMBER? You must apply or refer a friend through our internal portal Click here CONNECTION Our Mission and Values are more than just words on the wall - they're the one constant in an ever-changing environment and the bedrock on which we build our culture. They're the core of who we are and the foundation of every decision we make. It's not just what we do that sets us apart, but how we do it. Learn More EMPOWERMENT We believe in managing your time for business and personal success, which is why we empower our Team Members to lead balanced lives through our benefits total rewards offerings. fot full-time and eligible part-time TSC and Petsense Team Members. We care about what you care about! Learn More OPPORTUNITY A lot of care goes into providing legendary service at Tractor Supply Company, which is why our Team Members are our top priority. Want a career with a clear path for growth? Your Opportunity is Out Here at Tractor Supply and Petsense. Learn More Join Our Talent Community

START NEW SEARCH