SVP, Head Of Cybersecurity

Job Description

Job Description:

At Warner Music Group we're all about our people. Our global company is made up of knowledgeable, passionate, and creative individuals. Our commitment to Diversity, Equity and Inclusion fosters a culture where you can truly belong, contribute, and grow. We believe in everyone's value and encourage applications from people of any age, gender identity, sexual orientation, race, religion, ethnicity, disability, veteran status, and any other characteristic or identity.

It is the mission of every member of the WMG team around the world to create a nurturing environment for artists, songwriters, and the people behind the music – at every stage of their career. We strive to set WMG apart by embracing innovation – an integral part of our company's DNA.

Consider a career at WMG and be a part of one of the most influential forces in culture today.

Job Title: SVP, Head of Cybersecurity

A little bit about our team:

The Global Technology team is dynamic, creative, and are collaborative problems solvers working together with the business leaders to build highly secure and scalable solutions to drive innovation and create new products. This group collectively works with world class creative Media & Entertainment executives and their teams, which act as the trusted operators and strategic partners to deliver the best possible outcomes.

Why this could be your next big break:

This is an opportunity to continue to build a strong security program within our company. This role needs to create a strategic security roadmap balancing need and cost for a newly publicly traded company. The key objective is to ensure that our applications, databases, hardware, clouds and networks are being designed, built and maintained with security in mind.

This role will report into the CIO. The SVP, Head of Security, will assist in creating the vision and leadership needed to develop and execute the WMG information security strategy and roadmap in line with the ''Three Lines of Defense'' by AICPA.

The SVP, Head of Security will work closely with our Chief Information Officer (CIO), Chief Data Officer (CDO), Chief Financial Officer (CFO), the SVP of Global Infrastructure, the SVPs of Application Development and SVP, Head of Legal Compliance and Head of Internal Audit to provide policies, standards, and direction on how to design and build strong security into our data systems, infrastructure, and application portfolios. This role requires strong understanding of NIST CSF standard (The National Institute of Standards and Technology (NIST) Framework for Improving Critical Infrastructure Cybersecurity (NIST Cybersecurity Framework)).

In addition, the SVP, Head of Security will work closely with the SVP, Head of Legal Compliance and Head of Internal Audit on all threats, trends, and discovery (proof of concepts) activities that impact technology and regulatory compliance (such as PCI Compliance and technical audits). They will also work together in a cyber-attack incidence to detail the impact to our company and articulate the issue with a solution in a clear and understandable matter for the c-level suite. Without stating, this role requires excellent oral and written communication.

What you will do:
• Align security to business objectives (like Web 3.0, data security, AI/machine learning and blockchain)
• Create a strategic security roadmap balancing need and cost
• Build and manage a global cybersecurity program
• Hire and build a strong a team
• Create, articulate, and utilize our security budgets effectively for a company our size
• Report on cybersecurity incidents to c-level with appropriate next steps
• Provide cybersecurity awareness and training to the organization
• Promote a culture of strong information security throughout the technology dept
• Author, govern, and enforce security policies to evolve with the ever-changing threat and compliance landscape
• Create and integrate cybersecurity standards according to NIST CSF, ISO/IEC 27001, GDPR, SEC OCIE, Financial Industry Regulatory Authority (FINRA), CFTC/NFA, PCI DSS compliance, SOC 2 Type I & II to name a few key frameworks and certifications
• Establish and maintain global security policies, standards, guidelines, metrics, and implement processes and procedures to ensure an acceptable risk level is maintained with adherence to a recognized framework
• Ensure the environment operates at the highest level of compliance with Sarbanes Oxley requirements, GDPR, PCI, PII, PFI & PHI compliance
• Be a leader
• Work well with peers and within teams

Rockstar candidates will be able to:
• Minimum of 15 years working with network, data, and application security at a publicly traded company of $5B in revenue or larger
• Certified in key security certifications
• Education in a technical degree such as Engineering or Information Technology
• Ability to vet new vendors for security requirements
• Speak multiple languages with English as the key language

Jobcode: Reference SBJ-ro9pn4-18-190-153-51-42 in your application.