Job Information
Patterson Companies, Inc. Security Lead – Risk & Compliance (remote) in St Paul, Minnesota
Patterson isn't just a place to work, it's a partner that cares about your success.
One of the distinguishing marks of our company is the talented people who embrace the people-first, always advancing, and results-driven culture. Professional growth abounds in this motivating environment. We value the diverse talents and experiences our employees bring to Patterson and believe that they build a stronger and successful organization.
As the Security Lead – Risk & Compliance, you will play a crucial role in enhancing our organization’s security posture. Join our talented and dynamic Information Security team to lead key programs and initiatives, identifying, managing, and reporting on security and data protection risks affecting the availability, confidentiality, and integrity of Patterson’s information systems, data, and technology assets. This role involves designing, assessing, and supporting security and data protection controls and the associate security programs ensuring compliance with audit and regulatory requirements. Additionally, advocating for security solutions across Security, IT, and Business teams, with the opportunity to mentor and lead associate staff.
At Patterson Companies, we pride ourselves on our strong corporate values, longstanding history, and commitment to growth, all while fostering a respectful and supportive environment for our employees.
Essential Functions
To perform this job successfully, an employee must be able to perform each essential function satisfactorily, with or without reasonable accommodation. To request a reasonable accommodation, notify Human Resources or the manager who oversees the position.
Lead the PCI-DSS compliance program, designing, implementing, and evaluating processes to validate and report on readiness.
Oversee the Third-Party Risk Management program to identify, report, and remediate security and data protection risks impacting technology assets and data throughout the supply chain.
Partner with various teams to lead assessments, report on remediation, and ensure organizational compliance with audit, regulatory, and compliance obligations.
Collaborate with cross-functional teams to ensure cohesive security strategies and implementations.
Identify, evaluate, and report on security and data protection risks, developing and implementing strategies to mitigate identified risks.
Ability to assist and support implementation and oversight of risk & compliance reporting and dashboards such as through Microsoft Security Compliance.
Lead targeted initiatives, actively collaborating with IT, business stakeholders, and external vendors to prioritize security risks, recommend mitigations or remediations, and implement security controls.
A dditional functions
In addition to the essential functions listed above, the incumbent may perform the following additional functions.
Execute and maintain risk methodologies, owning IT risk processes aligned to frameworks such as NIST-CSF and ISO27001, supporting regulatory and compliance requirements like PCI DSS, SOC2, and SOX.
Establish process workflows and lead the design, deployment, integration, and initial configuration of security solutions to enhance GRC processes.
Manage metrics and reporting for program components within the scope of the role.
Lead and mentor team members, providing direction to accomplish team objectives effectively.
Required Qualifications
At least 4 years work experience in information technology, cyber security, audit, compliance, risk, or information security.
Excellent collaboration and communication skills with ability to communicate risk to a diverse stakeholder group.
Proficiency in regulatory requirements and compliance standards (e.g. PCI-DSS, HIPAA, GDPR).
In-dept knowledge of security risk management and compliance frameworks (e.g. NIST-CSF, COSO, ISO27001/2, CSA, etc.).
Highly organized with attention-to-detail.
Experience in mentoring and/or coaching individuals, projects, or teams.
Preferred Qualifications
Familiarity with audit process and frameworks such as SOC2 Type 2 and HITRUST.
Bachelor’s Degree with an emphasis in security, technology, or engineering.
Ability to influence and inspire others to adopt security best practices and policies.
Security industry certification desired.
The potential compensation range for this role is below. The final offer amount would be based on various factors such as candidate location (geographical labor market), experience, and skills. $120,000.00 - $130,000.00
What's In It For You: (http://www.pattersoncompanies.com/careers/default.aspx#section=benefits)
We provide competitive benefits, unique incentive programs and rewards for our eligible employees:
Full Medical, Dental, and Vision benefits and an integrated Wellness Program.
401(k) Match Retirement Savings Plan.
Employee Stock Purchase Plan (ESPP).
Paid Time Off (PTO).
Holiday Pay & Floating Holidays.
Volunteer Time Off (VTO).
Educational Assistance Program (Tuition Reimbursement).
Full Paid Parental and Adoption Leave.
LifeWorks (Employee Assistance Program).
Patterson Perks Program.
EEO Statement
As a people-first company, Patterson promotes a culture that embodies and celebrates diversity and inclusivity. We believe our employees’ unique experiences and differences is what strengthens us and drives our success. We consider all qualified applicants without regard to race, religion, color, sex, national origin, age, sexual orientation, gender identity, disability or veteran status.
We are Patterson. We welcome you.
At Patterson Companies, we live our values everyday. With more than 8,000 employees worldwide, we're responsible for providing dentists, veterinarians, animal producers, and farmers with the support they need to keep us and our animals healthy.
An Equal Opportunity Employer
Patterson Companies, Inc., is an equal opportunity employer. We consider all qualified applicants without regard to race, religion, color, sex, national origin, age, sexual orientation, gender identity, disability or veteran status, among other factors.