information security manager, risk management
4 months ago
Now Brewing - information security manager, risk management #tobeapartner
From the beginning, Starbucks set out to be a different kind of company. One that not only celebrated coffee and the rich tradition, but that also brought a feeling of connection. At Starbucks, our mission is to inspire and nurture the limitless possibilities of human connection – one person, one cup, and one neighborhood at a time. We are known for developing extraordinary leaders who share this passion and are guided by their service to others. Starbucks technologists work to achieve this mission with innovative technology delivered to our partners, customers, stores, roasters, and global communities.
A successful manager at Starbucks is collaborative, organized, and able to work well through change and ambiguity. You should have strong critical thinking skills, excellent communication skills, and a validated record of a direct approach to leading teams and maturing programs in at scale. This position reports to the director of governance, risk, and compliance within the Global Cybersecurity Services organization. GCS is chartered with leading, inspiring, and supporting Starbucks to cultivate trust in our brand by ensuring confidentiality, integrity, & availability in every partner, customer & supplier experience.
This job contributes to Starbucks success by leading the cybersecurity risk management function through the planning, coordination, delivery, and improvement lifecycle. Success for the role will be the delivery of clear, consistent, and integrated global requirements to the risk management services. Multiple stakeholder groups rely on the effective delivery of repeatable and data-driven risk management services and functions across the cybersecurity organization.
This position models and acts in accordance with Starbucks guiding principles.
As an information security manager, risk management, you will…
- Ensure delivery of a world class cybersecurity program through the evaluation, design, delivery, and management of risk processes and practices. You will lead the function and will be looked to for knowledge and practice of cyber risk processes.
- Develop and deliver on strategic roadmaps - You will ensure operational plans align to strategic priorities, are delivered, measured for success, and built for continuous improvement. You will drive key cybersecurity risk management services and establish key performance indicators to proactively report to stakeholders on performance.
- Rapidly build a collaborative team and operationalize services - You will leverage your experience in building high performing, Agile teams while deploying new risk services in an iterative approach. You will balance team capacity against operational commitments, and strategic priorities.
- Inspire and influence others – You will establish and maintain positive working relationships to successfully promote cybersecurity risk management opportunities. You will collaborate closely with cyber leadership, ISOs, service, and domain owners to align on risk identification, reporting, and remediation.
- Be accountable for the quality and success of the outcome your work – You will ensure processes are known, documented, and properly performed to produce consistent, timely, high-quality deliverables.
- Manage and develop a team comprised of functional, technical, and/or analytical professionals at a variety of levels – You will develop and train partners, ensuring quality of the team’s work through continuous improvement as the program scales. You will provide coaching and feedback to ensure positive and engaging working relationships. You will provide partners with developmental opportunities supporting career development.
- Enjoy working on an energetic, fun team and have a clear ability to drive the business forward as part of a highly collaborative team. You work closely with other GRC managers to model and reinforce norms, Agile practices and promote overall partner engagement, while acting in accordance with Starbucks guiding principles and values.
We’d love to hear from people with:
- Progressive experience in information security, compliance or data privacy disciplines, 7-10 years
- Experience developing and delivering technology platforms or services 5-7 yrs.
- Ability to apply knowledge of multidisciplinary business principles and practices to achieve successful outcomes in cross-functional projects and activities.
- Ability to engage in difficult conversations that result in positive, actionable outcomes.
- Exceptional written and verbal communication, with an aptitude for translating complex, technical subjects into clear, business-oriented communications.
- Ability to work across diverse organizations and lead complex internal and external project teams.
- Ability to present strategic and tactical roadmaps and objectives to all levels of leadership, advising and influencing.
- Technical background and understanding in multiple areas of information security technologies and principles.
- Certifications such as CISSP, CISM, CIPM or others focused on information security, data privacy or information risk management is desired.
As a Starbucks partner, you (and your family) will have access to medical, dental, vision, basic and supplemental life insurance, and other voluntary insurance benefits. Partners have access to short-term and long-term disability, paid parental leave, family expansion reimbursement, paid vacation from date of hire*, sick time (accrued at 1 hour for every 25 hours worked), eight paid holidays, and two personal days per year. Starbucks also offers eligible partners participation in a 401(k) retirement plan with employer match, a discounted company stock program (S.I.P.), Starbucks equity program (Bean Stock), incentivized emergency savings, and financial well-being tools. Additionally, Starbucks offers 100% upfront tuition coverage for a first-time bachelor’s degree through Arizona State University’s online program via the Starbucks College Achievement Plan, student loan management resources, and access to other educational opportunities. You will also have access to backup care and DACA reimbursement. Starbucks will comply with any applicable state and local laws regarding employee leave benefits, including, but not limited to providing time off pursuant to the Colorado Healthy Families and Workplaces Act, and in accordance with its plans and policies. This list is subject to change depending on collective bargaining in locations where partners have a certified bargaining representative. For additional information regarding partner perks and more detailed information about benefits, go to starbucksbenefits.com.
*If you are working in CA, CO, IL, LA, ME, MA, NE, ND or RI, you will accrue vacation up to a maximum of 120 hours (190 in CA) for roles below director and 200 hours (316 in CA) for roles at director or above. For roles in other states, you will be granted vacation time starting at 120 hours annually for roles below director and 200 hours annually for roles director and above.
The actual base pay offered to the successful candidate will be based on multiple factors, including but not limited to job-related knowledge/skills, experience, geographical location, and internal equity. At Starbucks, it is not typical for an individual to be hired at the high end of the range for their role, and compensation decisions are dependent upon the facts and circumstances of each position and candidate.
If you live in the greater Seattle area, we offer a flexible workplace that allows for hybrid work. Partners can work remotely up to two days per week.
Join us and inspire with every cup. Apply today
All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, physical or mental disability, sexual orientation, marital status, military or veteran status, gender identity and expression, genetic information, or any other factor protected by law.
We are committed to creating a diverse and welcoming workplace that includes partners with diverse backgrounds and experiences. We believe that enables us to better meet our mission and values while serving customers throughout our global communities. People of color, women, LGBTQIA+, veterans and persons with disabilities are encouraged to apply.
Qualified applicants with criminal histories will be considered for employment in a manner consistent with all federal state and local ordinances. Starbucks Corporation is committed to offering reasonable accommodations to job applicants with disabilities. If you need assistance or an accommodation due to a disability, please contact us at applicantaccommodation@starbucks.com.
-
Seattle, Washington, United States The Nature Conservancy Full timeJob SummaryThe Information Security Analyst will play a key role in supporting information security and risk management activities centered around external party information and application security. This position is part of the Information Security Risk Management Team, which helps safely implement systems and integrate third party organizations into TNC's...
-
information security manager, risk management
4 months ago
Seattle, United States Starbucks Full timeNow Brewing - information security manager, risk management! #tobeapartner From the beginning, Starbucks set out to be a different kind of company. One that not only celebrated coffee and the rich tradition, but that also brought a feeling of connection. At Starbucks, our mission is to inspire and nurture the limitless possibilities of human connection –...
-
information security manager, risk management
3 weeks ago
Seattle, United States Starbucks Full timeNow Brewing - information security manager, risk management! #tobeapartner From the beginning, Starbucks set out to be a different kind of company. One that not only celebrated coffee and the rich tradition, but that also brought a feeling of connection. At Starbucks, our mission is to inspire and nurture the limitless possibilities of human connection –...
-
information security manager, risk management
3 weeks ago
Seattle, United States Starbucks Full timeNow Brewing - information security manager, risk management! #tobeapartner From the beginning, Starbucks set out to be a different kind of company. One that not only celebrated coffee and the rich tradition, but that also brought a feeling of connection. At Starbucks, our mission is to inspire and nurture the limitless possibilities of human connection –...
-
information security manager, risk management
2 weeks ago
Seattle, WA, United States Starbucks Full timeNow Brewing - information security manager, risk management! #tobeapartner From the beginning, Starbucks set out to be a different kind of company. One that not only celebrated coffee and the rich tradition, but that also brought a feeling of connection. At Starbucks, our mission is to inspire and nurture the limitless possibilities of human connection –...
-
Security Risk Manager
2 months ago
Seattle, United States Pinkerton Full timeRepresent Pinkerton's core values of integrity, vigilance, and excellence. Deliver a comprehensive global risk program strategy in alignment with Corporate Security's business objectives. Drive consistent program performance in relation to formal business and program metrics and targets. Under the direction of the Program Manager- Risk Management, assist...
-
Information Technology Risk Manager
1 week ago
Seattle, United States Apex Systems Full timeIT Risk and Compliance AnalystLocation: Seattle, WAFTE Salary Range: $80k - $100kJob Description:We are seeking an experienced IT Risk and Compliance Analyst to join our team. In this role, you will support the organization’s IT risk management and compliance programs. This includes identifying, assessing, and mitigating risks to the IT environment and...
-
Information Technology Risk Manager
1 week ago
seattle, United States Apex Systems Full timeIT Risk and Compliance AnalystLocation: Seattle, WAFTE Salary Range: $80k - $100kJob Description:We are seeking an experienced IT Risk and Compliance Analyst to join our team. In this role, you will support the organization’s IT risk management and compliance programs. This includes identifying, assessing, and mitigating risks to the IT environment and...
-
Seattle, Washington, United States Amazon Full timeJob DescriptionAmazon is seeking a Technical Program Manager (TPM) to lead strategic information security projects and drive security excellence across multiple security domains. The ideal candidate will have a strong background in information security, technical product management, and project management disciplines.Key Responsibilities:Develop and execute...
-
IT Risk Management Specialist
2 weeks ago
Seattle, Washington, United States Apex Systems Full timeIT Risk and Compliance AnalystWe are seeking a highly skilled IT Risk and Compliance Analyst to join our team at Apex Systems. In this role, you will play a critical part in supporting the organization's IT risk management and compliance programs.Key Responsibilities:Risk Management: Develop and maintain an IT risk management framework, including policies,...
-
Security Operations Manager
3 weeks ago
Seattle, Washington, United States Protos Security Full timeJob Title: Field Operations ManagerProtos Security is seeking a highly skilled and experienced Field Operations Manager to join our team. As a key member of our operations team, you will be responsible for supervising guarding operations at multiple sites, coaching and training personnel, and carrying out administrative procedures as required by...
-
Security Operations Manager
3 weeks ago
Seattle, Washington, United States Protos Security Full timeJob Title: Field Operations ManagerProtos Security is seeking a highly skilled and experienced Field Operations Manager to join our team in the Northwest region. As a key member of our operations team, you will be responsible for supervising guarding operations at multiple sites, coaching and training personnel, and carrying out administrative procedures as...
-
Senior Information Security Consultant
1 week ago
Seattle, Washington, United States eSentire Full timeAbout eSentireeSentire is a leading provider of managed detection and response (MDR) services, dedicated to protecting organizations from cyber threats. Our mission is to empower businesses to stay ahead of the ever-evolving threat landscape.The OpportunityWe are seeking a highly skilled Senior Information Security Consultant to join our team. As a key...
-
Information Security Analyst II
4 days ago
Seattle, Washington, United States WaFd Bank Full timeJob SummaryWaFd Bank is seeking a talented individual to collaborate and contribute to the overall development and implementation of a risk-based information security program.This individual will be responsible for ensuring that the organization adheres to established policies, procedures, and regulations related to information security.This individual will...
-
Enterprise Risk Manager
2 weeks ago
Seattle, Washington, United States Apple Full timeJob SummaryThe Enterprise Risk Manager - Technology is responsible for leading a team that develops and coordinates the overall technology risk management framework for the company, performs assessments to identify and manage risks, and creates a sustainable technology risk program and related activities. The Enterprise Risk Manager is also responsible for...
-
Senior Security Manager
4 weeks ago
Seattle, United States Pinkerton Consulting & Investigations, Inc Full timeWe are as invested in your career as you are. As you navigate through these uncertain times, know that Pinkerton has been a stable, thriving corporation for over 170 years. As recognized leaders around the globe in the corporate risk management industry, you can rest assured that joining us now means moving to a future-looking company. We are here today,...
-
Enterprise Risk Manager
2 weeks ago
Seattle, Washington, United States Apple Full timeJob SummaryThe Enterprise Risk Manager - Technology is responsible for leading a team that develops and coordinates the overall technology risk management framework for the company. This includes performing assessments to identify and manage risks, creating a sustainable technology risk program, and aggregating risk data for submission to management and...
-
Information Security Analyst II
1 week ago
Seattle, Washington, United States WaFd Bank Full timeJob SummaryWaFd Bank is seeking a talented individual to collaborate and contribute to the overall development and implementation of a risk-based information security program.This individual will be responsible for ensuring that the organization adheres to established policies, procedures, and regulations related to information security.This individual will...
-
Cybersecurity Risk Management Leader
2 weeks ago
Seattle, Washington, United States Starbucks Full timeJob Title: Cybersecurity Risk Management LeaderAt Starbucks, we're committed to creating a diverse and welcoming workplace that includes partners with diverse backgrounds and experiences. We believe that enables us to better meet our mission and values while serving customers throughout our global communities.About the RoleWe're seeking a highly skilled...
-
Technical Writer for Safety Risk Management
2 weeks ago
Seattle, Washington, United States Leidos Full timeJob Title: Technical Writer for Safety Risk ManagementWe are seeking a skilled Technical Writer to join our team at Leidos. As a Technical Writer, you will play a critical role in supporting the Federal Aviation Administration (FAA) Quality Control Group (QCG) in their Safety Risk Management (SRM) processes.Key Responsibilities:Participate in Safety Risk...