Red Robin

Full Job Description

Vice President, Chief Information Security Officer

The Vice President, Chief Information Security Officer is responsible for the oversight, direction and coordination of the Budget, Standards, Risk, Compliance, Privacy, cybersecurity and Security program within Red Robin’s (RR) Information Technology group. Presenting to Executive team and Red Robin Board on Security roadmap and Compliance. Working to ensure Red Robin meets industry and regulatory standards, this role coordinates with Red Robin’s technology leaders as well as the Red Robin’s Risk office to ensure that all technology procedures, operations and controls are in place.

Essential Functions:

  • Lead and develop Security team responsible for standards, governance, policies, procedures, compliance, and Operations
  • Champion and Lead on our Cybersecurity Program
  • Responsible for developing and executing IT Security Program strategic vision and roadmap
  • Ensure compliance and adherence to SOX, PCI and Identity Theft Laws as well as company / industry best practices
  • Build excellent relationships through strong interpersonal skills and educate on “Why” to influence advancement of Security strategy
  • Prioritize and implement security initiatives to protect the business and brand while allowing for speed and flexibility of enterprise objectives
  • Responsible for IT Security Projects while meeting project timelines and staying on budget
  • Oversee, create, and document technology procedures and controls to assure compliance with applicable regulatory and legal requirements
  • Provide security oversite of 3rd parties and contractors with regards to accessing RR systems and services
  • Advance formal risk analysis and assessment programs for all new and existing IT system
  • Manage IT Security vendors, contractors, consultants, and external teams and hold them accountable to performance expectations and service level agreements including 3rd party vendors for testing programs.
  • Accountable to proactively monitor for intrusion attempts and all other security threats and implement practices to safeguard RR’s data and technology assets
  • Key stakeholder for security breaches and incidents associated with all systems and services
  • Oversee and maintain incident response plan, security training and awareness strategy
  • Collaborate with Red Robin Internal Audit, General Counsel and Risk Management to remediate new and outstanding issues
  • Work with business leaders and staff on data classification, security requirements and exposure mitigation steps
  • Maintain a framework that allows for flexible adherence to regulatory requirements as it applies to platform technologies
  • Develop and maintain a risk matrix of potential threats to Red Robin’s existing platform and data.
  • Promote and advocate corporate wide IS security awareness programs
  • Maintain expertise on security trends through training, research and development to mitigate potential security exposures
  • Participate in gathering information to support legal or HR investigations
  • Provide Security updates to Executive Team on an as needed basis.

Other Functions

  • Build relationships and become a trusted security advisor throughout the enterprise
  • Participate in the broader external security communities to keep up with industry best practices and emerging trends
  • Fosters an environment of open communication and problem solving
  • Other duties as assigned

Qualifications:

  • Minimum 12+ years’ experience with 7+ years’ leading security teams
  • Bachelor’s degree in Computer Science, Computer Information Systems, Management Information Systems, Business Administration, Public Policy, Law or a related field is required; Master’s degree in a related field is preferred
  • Proven track record and success in leading an IT Security Program including the development and implementation of security policy, procedures and/or safeguards
  • IT-GRC, GRC, CSOX, CSOXP, GIAC, CBCP, CISSP, or CISA certifications
  • Strong passion for Security and People
  • Prior CISO/CSO experience is required
  • Security leadership experience in the hospitality/restaurant industry is preferred
  • Incident Management and cyber threat experience required
  • Extensive knowledge of security administration and computer security tools
  • Proven technical and functional problem solving, tracking and resolution skills
  • Advanced knowledge of risk assessment designs or security frameworks

Knowledge, Skills and Abilities:

  • High quality interpersonal skills including the ability to simplify communications and presentations of abstract and complex topics
  • Excellent communication skills enabling relationships and influencing decision making across the Enterprise
  • In-depth understanding of PCI, Identity Theft and other security industry frameworks
  • In-depth understanding of CCPA, CPA, and similar relevant privacy legislation and operational compliance
  • Able to work independently in a self-directed manner
  • Proven ability to think strategically, and to communicate the strategy to others
  • Fluency in leading IT governance theories and practices
  • Superior analytical, evaluative and problem-solving abilities

Benefits:

  • Annual bonus opportunity
  • Paid time off and holidays
  • Health, vision, dental, life insurance plans, and discounts
  • 401(k) savings plan plus a company match with immediate vesting
  • Eligible to participate in the employee stock purchase plan after 1 year of continuous employment
  • Discounts on Red Robin food

Compensation Range: $176,200.00 – $242,275.00

Red Robin is an Equal Opportunity & E-Verify Employer

Looking For Opportunities?

Enter your information below and we will send the latest opportunities right to your inbox!

Job Listing Updates
(in case we need to call for more details from you)

We will never sell or share your information.

Get Support

Support Request
If you have a file or screenshot of the issue you're experiencing, please upload it here:
Maximum upload size: 268.44MB