Vice President, IT Security - (101476) (San Jose)

As a critical member of our leadership team, you will be responsible for protecting our digital assets, data confidentiality, ensuring compliance with cybersecurity regulations, and building a robust security infrastructure to prevent potential threats. The ideal candidate is an experienced cybersecurity leader with a strong background in information security, risk management, and a proven ability to lead cybersecurity teams.

If youre a strategic cybersecurity professional and a visionary seeking a challenging role, we invite you to apply. In addition to being a key leadership role, we offer a chance to become a key player in protecting our companys future.

Job Purpose

• Leading the development and implementation of the companys information security strategy.
• Overseeing the protection of company data, intellectual property, and technology assets from cyber threats.
• Developing and enforcing security policies, procedures, and protocols that align with business goals and regulatory requirements.
• Identifying and mitigating security risks, ensuring the organization remains resilient against emerging threats.
• Ensuring the companys compliance with industry standards and regulations.
• Managing security audits, compliance assessments, incident response processes, and investigating security breaches.
• Collaborating with cross-functional teams to integrate security measures into the companys IT and business operations.

Nature of Duties/Responsibilities

• Develop, implement, and maintain a comprehensive security program that includes cyber defence, data protection, and security operations.
• Conduct risk assessments, identify vulnerabilities, and prioritise remediation efforts to reduce risk exposure.
• Oversee security incident detection, response, and recovery, ensuring swift mitigation of potential breaches.
• Manage the security architecture, tools, and technologies deployed across the organisations IT infrastructure.
• Coordinate with legal, compliance, and regulatory teams to ensure compliance with data protection laws, such as GDPR and HIPAA.
• Monitor security metrics and report on the organisations security posture to executive leadership.
• Lead security awareness training programs for employees to promote a culture of cybersecurity across the organisation.
• Stay updated on cybersecurity trends, technologies, and best practices to enhance security measures proactively.

Education and Experience

• Bachelors degree in Information Security, Computer Science, or a related field.
• 10+ years of demonstrable experience as a Chief Information Security Officer or in a similar senior-level cybersecurity role.
• Extensive knowledge of information security principles, cybersecurity frameworks (e.g., NIST CSF & 800-171, ISO 27001, and TISAX), and risk management practices.
• Working knowledge of security auditing, vulnerability assessments, and risk mitigation.
• Experience with security technologies such as firewalls, intrusion detection systems, SIEMs, and encryption protocols.
• Solid knowledge of data privacy regulations and compliance requirements.
• Ability to develop and implement complex security strategies.
• Strong leadership and communication skills, with the ability to influence decision-making at the executive level.
• Strong analytical and problem-solving skills with a keen eye for identifying potential risks and vulnerabilities.
• Ability to manage and develop a team of security professionals and work cross-functionally with IT, legal, and compliance teams.
• Experience communicating security concepts and technologies to different audiences, including general employees to executive staff and above

Preferred skills and qualifications

• Masters degree in Cybersecurity, IT, or related fields.
• Relevant certifications in cybersecurity, such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified Information Systems Auditor (CISA).
• Experience with cloud security and securing cloud infrastructure.
• Experience of manufacturing environments preferred
• Familiarity with incident management and disaster recovery planning.
• Knowledge of ethical hacking and penetration testing techniques.
• Background in regulatory compliance and data privacy laws in the industry.
• Hands-on experience with SIEM tools, firewalls, and intrusion detection systems.
• Expertise in secure software development and DevSecOps practices.
• Understanding of artificial intelligence and machine learning applications in security.
• Multilingual proficiency for international security collaboration.

Sanmina is an Equal Opportunity Employer

#J-18808-Ljbffr