The Senior Vice President, CyOPS Management Office (CMO), is a senior level leadership position with a corporate / enterprise scope that reports to the Chief Information Security Officer (CISO). This position leads the programs responsible for the following functions in the CyOPS organization.
Issue Management
Third Party Security Risk
Program Management
Contract Management
Enterprise Security Architecture
Emerging Regulatory Impacts
Governance (Policies, Standards and Plans)
Mergers & Acquisitions Integrations
The SVP, CMO establishes the vision, strategy and structures that create effective and positive work environments for employees that result in the positive support and delivery of the CyOPS mission, vision and strategy. The SVP, CMO also ensures that the oversight of program activities are appropriately governed in order to proactively identify and remove roadblocks to success for the team. The SVP partners with senior level executives across the enterprise to ensure that strategies are understood and implemented effectively within the organization. The SVP is responsible for maintaining and influencing a vision, strategy and program to ensure the CyOPS assets within the Global Payments organization are appropriately protected. As the Payments/Fintech industry continues to evolve, the SVP, CMO also plays a growing and critical role in developing a positive, proactive CyOPS strategic framework that becomes part of the Enterprise’s core offering and value proposition to customers.
As a critical member of the CyOPS senior leadership team the SVP, ESG must be able to influence decisions at the highest levels and assist with determining and reaching agreement on immediate next steps and accountabilities with executives in every segment and business unit in the company. The SVP, CMO is able to understand CyOPS tactical requirements, set strategies, build and enforce an operating structure that facilitates accountability, growth and positive results. The SVP, CMO influences decisions, negotiates terms and resolves conflict with executives and leaders within the enterprise as well as with external customers. The SVP, CMO has extensive global and industry experience, as well as a track record of driving program maturity and improvement. Effective verbal and written communications leading to open and transparent interactions throughout Global Payments is required.
Duties And Responsibilities
Accountability and oversight of an enterprise focused and globally dispersed team which sets the governing framework, policies and standards that determine the foundation for how controls are appropriately defined, chosen and communicated across the company, provides awareness and training to all employees, sets the risk management framework that evaluates, assesses and measures risk for 3rd parties, systems, businesses and the enterprise, as well as the management and oversight of the program that integrates business from M&A activity into the core program
Builds and manages an operating model that promotes employee growth and accountability, effective delivery of controls and processes that support the vision, mission, strategy and values of the CyOPS, Business Technology Services and Global Payments Enterprise
Execute decision-making authorities and establish vision and direction for the Enterprise CyOPS Governance organization, its resources and processes
Communicate with all levels of management related to CyOPS risks, effectiveness, completeness and needs of the program
Ensures the effective and efficient use of investments in the program by leading, overseeing and aligning program resources to CyOPS strategy and goals
Advocate and represent CyOPS strategy, position and concerns with Legal in the evaluation and negotiation of CyOPS language within client and vendor contracts
Develop and maintain a strategic plan for the program
Supervise or manage corrective measures with the program when required
Evaluate data and reports to advise the CISO and other Executives on CyOPS issues, risk, strategy and posture
Build and prepare updates and/or reports to the Board of Directors that represent the state, strategy and risk of the CyOPS enterprise program
Build, oversee and maintain an integration program that organizes and manages the implementation and integration of CyOPS within new mergers and acquisitions
Build, oversee and maintain an CyOPS Governance program that provides the framework, processes and alignment of enterprise policies and standards, provides awareness and training that reduces risk by improving employee awareness and provides regular phishing simulations to promote real world examples of phishing to further reduce risk
Build, oversee and maintain an CyOPS Issues Management program that evaluates and measures risks associated with 3rd parties, internal controls and integrates into the enterprise risk management program to include, but not limited to supporting federal regulators, internal, external and client auditors
Maintain knowledge of CyOPS best practices, industry standards and trends
Establish metrics and indicators that measure the performance and risk of the program
Evaluate proposals, findings, news and responses in order to advise the CISO on messaging, direction and/or approvals
Strategic planning for the program and inputs into the overall CyOPS strategic planning, budgeting and decision making for the organization.
Ensure communication and collaboration with Finance to ensure appropriate budget execution and management for the Corporate CyOPS Program
Working closely and proactively with key stakeholders and senior management to maintain Global Payments high standards in managing CyOPS risk
Building and maintaining strong relationships with key stakeholders, establishing a culture of engagement
Contributing to a business culture that encourages integrity, excellence, and innovation
Promoting cross collaboration across the organization to instill sound controls
Accountable for the delivery and quality of the program and its commitments.
Demonstrates principled leadership, sound business ethics and consistency among principles, values and behavior
Builds trust with others through own authenticity and follow-through on commitments
Exhibits critical thinking
Not an exhaustive list; other duties as assigned.
Qualifications
BA/BS in Information Systems, related field or commensurate applicable experience; Masters degree preferred
Minimum 15+ years experience working in the payments industry and experience in information security, information technology or information risk management related fields
Demonstrated intellectual leadership in the field of information technology and Information Security, compliance or risk management
Prior payment or technology industry experience is preferred.
Strategic leader and builder of both vision and bridges, and able to energize the appropriate teams in the organization
Thorough understanding of relevant standards including, but not limited to NIST, PCI, Sarbanes-Oxley and ISO
Experience leading and delivering programs across highly complex international organizations
Focus on continuous improvement and critical thinking
Excellent planning and organizational skills with an ability to meet tight deadlines
Effective team player and communicator who can build good working relationships with colleagues and external parties
Experience coordinating multiple teams to drive deliverables
Achievement of industry certifications preferred including, but not limited to, PCI Internal Security Assessor (PCI ISA), Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), Certified CyOPS Manager (CISM), and Information Systems Security Management Professional (ISSMP), Certified Risk in Information Systems Control (CRISC)
Seniority level
Executive
Employment type
Full-time
Job function
Other
Industries
IT Services and IT Consulting and Financial Services
Referrals increase your chances of interviewing at Global Payments Inc. by 2x
