Tenneco is one of the world’s leading designers, manufacturers and marketers of automotive products for original equipment and aftermarket customers, with 2019 revenues of $17.5 billion and approximately 78,000 team members working at more than 300 sites worldwide.

Tenneco is looking for a Manager Information Security Governance. As a Governance Manager, you will be responsible for the overall enterprise-wide governance programs. In this role, you will be responsible for the hands-on design, implementation, and effective management of the programs and the shaping of the security policies, standards, and procedures aligned with the overall cybersecurity strategy and training and awareness programs. You will provide subject matter expertise and leadership on mature security governance structures and processes.  This role requires a combination of a strong GRC background and business acumen to manage relationships between the various business units and IT groups.

The team is ready to act immediately on those candidates who are the best fit for the role. You’ll first hear from someone in Talent Acquisition to schedule a phone screen, and then the next step will be a personal interview with our Hiring Manager. We pride ourselves on moving through processes quickly, and you can be sure of transparency and prompt communication throughout.

RESPONSIBILITIES:

Governance: You will be responsible for designing and leading a comprehensive governance program, including the establishment of security policies, standards, and procedures by taking a risk-based approach with the program design. You will be using the NIST 800-53, 800-171, and ISO 27001 requirements as a guide in the program design. You will be work cooperatively with others and solicit input from the various areas of the organization. You will be implementing and managing the governance processes and educating and training the organization on the new governance programs and measuring and reporting on all aspects of the programs.

Leadership: You will be serving as the primary subject matter expert and leader on all aspects of governance. Providing regular reports to the Director Governance, Risk & Compliance and the Chief Information Security Officer (CISO) and, when needed to other internal or external entities on all aspects of this role responsibilities, including adequate metrics on each of the programs. You will be making independent decisions or representing leadership at times. Mentor and manage others to increase team competency and continually build a culture of constant improvement and a desire to excel.

Required Skills Required Experience

EDUCATION: Bachelor’s degree in computer science, risk management, or equivalent education and related extensive experience

SKILLS & EXPERIENCE:

• Experience in building and managing governance programs, including hands-on control design and effectiveness evaluation.
• Strong knowledge and experience in security requirements, standards, and best practices, including NIST CSF, ISO 27001, OWASP.
• Background in developing and maintaining security policies, processes, procedures, and standards.
• Knowledge of and prior experience in GRC tools/ technologies.
• Excellent written and verbal communication skills.
• Ability to manage across multiple competing priorities and time-sensitive initiatives.
• Strong ability to motivate and lead team members, including in a remote/distributed workforce. • Uncompromising personal and professional integrity and ethics.
• One or more relevant industry-standard security certifications (such as CISSP, CRISC, or CISM)
• Ability to travel up to 25% of the time.