VF Corporation Director, Security Incident Response in Greensboro, North Carolina

Job Description

PRIMARY JOB DUTIES:

The Director, Security Incident Response works with company's information security, IT departments as well as other local/regional business groups to implement, manage and support a global risk management program. Requirements for this role include; but are not limited to:

GENERAL ROLE REQUIREMENTS

  • The ability to continually present a positive outlook and a high degree of professionalism in working with peers, collogues, users, customers and management

  • The ability to effectively communicate using oral and written skills to all levels of the organization. Exhibit abilities to work within teams with different viewpoints, priorities and cultures. Strong organizational and time management skills

  • The ability to be a leader and trusted advisor to IT, end users, the business and management in your specific security skillset

  • The ability to treat everyone as a customer, with respect and with an understanding of their priorities, with the ability to manage expectations appropriately, provide a superior customer/client experience and build long-term relationships.

  • The ability to understand and relate the business and how you contribute to the support of the business

  • Strong abilities in the use of MS Office applications proficiently for communications, reporting, data manipulation, calculations, project tracking, technical drawing and presentations to support the requirements of the role.

  • Wide understanding of information security management principles, requirements, processes and tools.

  • Understanding of the local and regional legal, governmental requirements that impact information security and compliance.

  • Understanding of business and personal cultures in local and regional areas.

  • Excellent verbal and written communication skills with focus being independent, thorough and thoughtful in examination and analysis.

  • The ability to collaborate with different individuals across the organization and within other geographies, and "roll-up the sleeves" in order to accomplish all necessary tasks. Resourceful, action-orientated with the ability to get things done and overcome obstacles.

  • Strong leadership abilities, with the capability to work in cross-functional teams, guide team members and to work independently with minimal supervision.

INCIDENT RESPONSE

  • Responsible for development, implementation and management of the company Incident Response Program.

  • Develops processes and procedure that align to the business continuity incident management process.

  • Plans and implement testing of the incident response process.

  • Leads and manages all actions and communications in the event of a breach or major security event.

  • Keeps IT leadership and company management, legal apprised of current situation during a major security event.

  • Provides second- and third-level support and analysis during and after a security incident.

  • Assists security administrators and IT staff in the resolution of reported security incidents.

  • Leads security investigations and compliance reviews required or requested by internal or external auditors

  • Acts as liaison between incident response leads and subject matter experts.

  • Accountable for monitoring daily or weekly reports and security logs for unusual events. Accountable for documentation to support requirements for security and compliance

  • Accountable for Managed Systems to insure vulnerability updates to devices are completed as necessary

  • Assist technical users with identification and remediation of information threats/vulnerabilities/risks found

  • Creates and maintains Key Performance indicators related to all incidents for security and compliance

  • Lead development of alerts to indicate the possibility of a breach threat and metrics to measure the impact of the breach

  • Strong analytical skills to analyze security threats quickly and relate them to appropriate security control owners for protective action.

  • Ability to take actions during stressful situation and communicate to Sr. Management, Legal, HR during a crisis or major security event

  • Experience in leading mock incidents and table top exercises

    Education/Experience

  • Minimum of five - seven years' IT security experience and Incident Response.

  • Bachelor's Degree in Computer Science, Engineering, Information Security or equivalent work experience or military background

  • General Security Certifications (SANS or other Security certifications, such as GCIA, GCIH, GREM, GPEN, CEH, CISSP, CISM, ITILv3 Foundations, etc.)

Organized in 1899, VF Corporation is a global leader in branded lifestyle apparel, footwear and accessories, with global iconic brands, 64,000 associates and $12.4 billion in revenue. Our businesses and brands are organized into four categories called coalitions, comprising: Outdoor & Action Sports, Jeanswear, Imagewear, and Sportswear. While VF is highly diversified across brands, products, distribution channels and geographies, our One VF culture and approach to doing business provide a unique and powerful competitive advantage.

VF Diversity Vision Statement

VF is committed to creating an inclusive environment that welcomes and values the differences among all of our associates, customers, suppliers and the communities in which we live and conduct business. The continued success and growth of VF is enhanced through initiatives that promote diversity throughout VF around the world.VF is an equal employment opportunity/ affirmative action employer of minorities, females, protected veterans and the disabled. VF is committed to providing equal opportunities in employment, and treating our VF associates and VF applicants without discrimination on the basis of their race, color, gender, age, national origin, religion, sexual orientation, gender identity or expression, marital status, citizenship, disability, protected veteran status, HIV/AIDS status, or any other legally protected factor.