The company is currently in the midst of a dramatic expansion, driven by significant enhancements to its platforms and offerings, with the goal of becoming the preeminent destination for luxury internationally.Role Summary:Saks is looking for an Information Security Governance Manager to be a key member of the Saks Information Security organization. This person will be responsible for establishing an Information Security governance framework, implementing security compliance programs with a strong focus on Payment Card Industry (PCI-DSS) compliance and the protection of sensitive data including the Personal Identifiable Information of employees and customers. Responsible for aligning security requirements with business objectives and understanding applicable alignment with security and risk compliance frameworks. Assesses risk management tools, techniques, and procedures to enhance risk management capabilities throughout the enterprise.Supports the development of metrics for the Information Security risk management reporting dashboard including the status of the security governance, risk remediation, and audit compliance effortsAssist in the implementation of governance and risk management solutions to automate processes and workflows.Represent the information security program during contract negotiations. Participate in and support Third-Party Risk Assessment activities of prospective and existing vendors.Provide input and direction into the development and maintenance of the Disaster Recovery and Business Continuity PlansKey Qualifications:Expertise in Information Security Governance Risk and Compliance is required.Expertise in Payment Card Industry – Data Security Standard (PCI-DSS) required.Experience with information security controls frameworks (NIST 800-53, ISO27001, PCI-DSS).Data privacy and protection experience is highly preferred (GDPR, CCPA/CPRA).Experience executing information security risk assessment methodologies and familiarization.Experienced in assessing security risks in modern cloud Software as a Service (SaaS), Platform as a Service (SaaS), and Infrastructure as a Service (IaaS) technologies.
Create an account to see the full posting, access our search engine, and more.