VF Corporation AP Director of Information Security in Hong Kong
VF Corporation outfits consumers around the world with its diverse portfolio of iconic lifestyle brands, including Vans®, The North Face®, Timberland®, Wrangler® and Lee®. Founded in 1899, VF is one of the world’s largest apparel, footwear and accessories companies with socially and environmentally responsible operations spanning numerous geographies, product categories and distribution channels. VF is committed to delivering innovative products to consumers and creating long-term value for its customers and shareholders.
VF will grow by creating amazing products and brand experiences that transform and improve the lives of consumers worldwide, while delivering superior returns to our stakeholders.
At VF, we draw on 117 years of experience to continuously transform ourselves in an ever-changing global marketplace. We constantly learn from the past, but live in the future.
Our One VF culture is all about harnessing the power of our brands and our talented associates to capitalize on our greatest opportunities for long-term performance. Across our company, a One VF mindset differentiates our products and brand experiences. It all adds up to a lasting competitive advantage built on collaboration, agility and execution.
Powerful brands, shaped by shopper insights and fueled by innovation, drive our success by putting us at the heart of consumers’ lives. With the industry’s most diverse family of apparel, footwear and accessories brands, we serve consumers on every continent. Many of our brands lead their respective categories, and some have risen to iconic status. As we look to the future, we will continue to lean on our One VF approach to ensure we embrace our shared learnings as we add value across our portfolio of brands.
AP Director of Information Security: Become the Newest Member of the VF Family
The Director, Information Security will be a key member of the Information Security team driving global information security practices and processes throughout the organization. When conducting risk assessments, the position balances business priorities, information security risks and challenges, emerging threats, and best practice security architecture frameworks. The position requires a strong information security leader who is able to identify potential risks and develop achievable and effective risk mitigation strategies that serve to enable business and information security objectives and drive their adoption throughout the company. The position requires a leader, who is well versed in the implementation of security controls and also understands key business and technological processes, implementing effective risk mitigation strategies to protect the confidentiality, integrity, and availability of information assets. An essential element of success is building positive working relationships with internal and external business partners to resolve risks through efficient action planning. The Director will be responsible for conducting and coordinating information security risk assessments and audits, based on information security policies, standards, guidelines, and industry best practices. The security controls enable VF Corporation to operate efficiently and cost effectively, as well as maintain compliance. This position works closely with other members of the Business Technology organization in a collaborative and goal oriented manner.
How You Will Make a Difference:
Ensure that current information security processes are adopted and implemented
Collaboratively work to evaluate Business and technology initiatives and processes to identify potential information security risks and mitigation alternatives
Assess information security risks against in-place and best practice information security controls, including regulatory compliance
Assimilate knowledge of information security to confidently determine and recommend relevant people, process, and technology controls for mitigating and managing business risk to acceptable levels
Balance information security risks and business constraints to provide risk-based mitigation recommendations to management
Ability to provide detailed instructions or implement mitigation solutions
Confidently communicates to all levels of the organization and achieving desirable outcomes from the risk assessment process
Qualitatively measure and articulate the overall risk impact to senior leadership by presenting risk assessment artifacts on a regular basis
Provide visibility into current risk assessment status through timely tracking, auditing, trending, and escalation of issues
Manage and follow-up on action plans to continually reduce overall information security risk
Facilitate discussions and issue resolution using a fact-based approach
Collaborate with other functions across the organization to develop best practices
Responsible for the IT General Controls program as it pertains to Sarbanes Oxley (SOX)
Skills for Success:
Years of Related Professional Experience: Minimum of 5-10 years
BS/BA Bachelor's Degree Information Technology, Computer Science, or Computer Engineering or minimum of five (5) years of related professional experience
Minimum of five (5) to ten (10) years of information security assurance, information security review, or risk assessment experience
Minimum of five (5) years of experience working with identity management, in particular Windows Active Directory
Experience adopting and leveraging industry standard risk assessment frameworks
Experience working within Healthcare, Pharmaceutical or Clinical Research Organization systems and applications
Current Certifications such as CISSP, CISM, CISA or GCWN, CIPPLE, CIPM
Experience working with industry compliance and regulations including: Data Privacy Regulations and SOX
Strong collaboration, communication, listening, and critical thinking and analysis skills
Capable of working with limited direction both independently and with a group
Ability to thrive in the face of ambiguity
Excellent facilitation and coaching
Excellent at multitasking, prioritizing, and results driven
Special Physical and/or Mental Requirements:
Ability to travel
Organized in 1899, VF Corporation is a global leader in branded lifestyle apparel, footwear and accessories, with global iconic brands, 64,000 associates and $12.4 billion in revenue. Our businesses and brands are organized into four categories called coalitions, comprising: Outdoor & Action Sports, Jeanswear, Imagewear, and Sportswear. While VF is highly diversified across brands, products, distribution channels and geographies, our One VF culture and approach to doing business provide a unique and powerful competitive advantage.
VF Diversity Vision Statement
VF is committed to creating an inclusive environment that welcomes and values the differences among all of our associates, customers, suppliers and the communities in which we live and conduct business. The continued success and growth of VF is enhanced through initiatives that promote diversity throughout VF around the world.VF is an equal employment opportunity/ affirmative action employer of minorities, females, protected veterans and the disabled. VF is committed to providing equal opportunities in employment, and treating our VF associates and VF applicants without discrimination on the basis of their race, color, gender, age, national origin, religion, sexual orientation, gender identity or expression, marital status, citizenship, disability, protected veteran status, HIV/AIDS status, or any other legally protected factor.