at GXO Enterprise Services, LLC in Chicago, Illinois, United States
Job Description
Logistics at full potential.
At GXO, we're constantly looking for talented individuals at all levels who can deliver the caliber of service our company requires. You know that a positive work environment creates happy employees, which boosts productivity and dedication. On our team, you'll have the support to excel at work and the resources to build a career you can be proud of.
Preference is for candidates to be based in either DFW TX, Charlotte or High Point, NC
We are motivated to transform an industry through technology, and we understand that the security of our technology and data is critical to our success. As the Director of Infosec Compliance, you will lead all aspects of Information Security compliance for GXO Logistics globally. You will define the compliance strategy for the company and ensure that all regulatory and contractual requirements are complied with. You will select best-practice frameworks to align to and ensure that, where required, audits and certification against those frameworks is achieved. You will ensure compliance status is reported on at all levels and implement process to track and remediate gaps continually. This role is critical in positioning GXO for long-term success.
Pay, benefits and more.
We are eager to attract the best, so we offer competitive compensation and a generous benefits package, including full health insurance (medical, dental and vision), 401(k), life insurance, disability and more.
What you'll do on a typical day:
- Manage the globally distributed information security compliance team.
- Support the development and maintenance of GXO security governance framework including policies and standards to ensure alignment to industry best practices, regulations and risk appetite.
- Coordinate with internal stakeholders to support key verticals in ensuring that security controls are effectively implemented and integrated into business processes and systems.
- Track and manage our compliance against NIST 2.0 framework globally.
- Oversee the management and maintenance of GXO ISMS(s) and SSPs required for framework certifications such as ISO, CMMC, FISMA, for our global network of clients.
- Oversee audits and ensure we gain certification when contractually required by our clients.
- Manage and track Privacy and other regulatory compliance (such as GDPR, HIPAA, NIS 2 ...)
- Report regularly on the status of all compliance related activities including compliance processes metrics, issues, and remediation actions.
- Manage the function such as it acts as a second line of defense on cyber security controls including but not limited to UARs
- Ensure our policies are enhanced and updated every year.
- Define AI frameworks and policy to safeguard the GXO environment whilst enabling the business to leverage the technology.
- Identify ways in which to leverage advances in Generative AI to increase the efficiency and efficacy of the GRC team.
What you need to succeed at GXO:
At a minimum, you'll need:
- Bachelor's degree in related field, or equivalent related work or military experience
- 7 years of experience in Information Security and technology including 4 years in leadership roles
- Self-starter requiring minimal supervision
- To be highly organized and efficient
- Demonstrated strategic and tactical thinking, along with decision-making skills and business acumen.
- Demonstrated experience in application security practices, key network and technical security controls and IT Risk and Security governance
- Demonstrated experience in risk assessment...
Equal Opportunity Employer - minorities/females/veterans/individuals with disabilities/sexual orientation/gender identity
