Icon hamburger
What job do you want?
Apply to this job.
Think you're the perfect candidate?
Apply Now

You’re being taken to an external site to apply.

Enter your email below to receive job recommendations for similar positions.

Director, Information Security

Grainger Lake Forest Full-Time
Apply Now

W.W. Grainger, Inc. (NYSE: GWW), headquartered in Lake Forest, Illinois, is the 10th largest eRetailer and an omni-channel industrial distribution company. Founded in 1927, the company has 25,000 employees partnering closely with customers to provide cost-effective solutions for their maintenance, repair and operations (MRO) needs. The organization is a Fortune 300 Company, and often recognized as one of Fortune Magazine’s Most Admired Companies

Manages information risk to an acceptable level to meet the business and compliance requirements of the organization.
Protect sensitive information and maintain a strong corporate brand and reputation while ensuring Grainger meets all applicable regulatory and compliance demands at a Global level.
Leads an Enterprise Security team that consists of one or more of the following: Security Architecture, Global Security Risk and Compliance, Security Engineering, Security Administration, Security Operations Center, IT Risk Management and Business Continuity.
Provides Team Members and Executive Leadership with research and guidance on risk assessments and appropriate mitigation strategies aligned with an Enterprise Risk Management Strategy.


 Understands the enterprise strategy and influences the integration of security into business strategies and processes while ensuring that the results are documented and actionable, with clear ties to Enterprise Security frameworks
 Align the security team scope, budget and staffing to the company level strategy, emerging technologies and changes in the threat landscape
 Responsible for effectively executing specific ES Risk Management and Compliance activities, including management of Enterprise Systems Sarbanes-Oxley (SOX) controls with associated supporting processes, collaboration with process owners to ensure that risk mitigations are appropriate and to report on progress with respect to the designed plan, all in alignment with company Enterprise Risk Management (ERM) guidelines
 Lead a functional Security team to manage information risk and availability to an acceptable level to meet the business and compliance requirements of the organization globally
 Establish and manage the capability to identify, protect, detect, respond and recover from information incidents to minimize business impact. Analyzes and provides assessments of IT Security Incidents & trends and their impact on Grainger’s Global business to Senior Management
 Establish, monitor, evaluate and report key performance and key risk indicators (KPIs and KRIs) to provide leadership with accurate information regarding the effectiveness of the information risk & security strategy.
 Establishes and maintains relationships outside of Grainger to inform on strategy and best practices.
 industry trends
 Directs the assigned security functions of Enterprise Information Security as they relate to Security Architecture, Security Risk and Compliance, Security Engineering, Security Administration, Security

Operations, and IT Risk Management
 Collaborates with all levels of management to raise security and IT risk awareness
 Provides Information Security and IT Risk input to the EPS strategy and planning efforts
 Communicates strategy with the security team and performs changes management as necessary
 Works closely with external partners to ensure the security and integrity of Grainger data is not compromised and is available when needed
 Ensures new development, major changes and improvements to applications and systems continue to provide necessary and appropriate security, IT risk and continuity, within all applicable environments. Manages the integration of new security technologies and services into the suite of applications and operating systems with minimal negative impact
 Advises Contract and Legal Teams to ensure terms and conditions protect Grainger and comply with Grainger’s risk profile
 Build, develop and sustain a team structure that supports the progression of team members, builds a bench of resources and incorporates recruitment


 Minimum ten years of successful experience in an Information Security field
 Current CISM and or CISSP certification preferred
 Minimum five years of successful experience directly managing technical individual contributors, supervisors and managers
 Balance of strong technical knowledge and strong managerial competencies
 Ability to translate complex IT Security problems and issues into simple business terms & business impact
 Experience in executing security programs in companies that have a Multi–Billion Dollar E-Commerce Business, Brick & Mortar businesses, as well as External & Inside Sales
 Demonstrated ability to motivate, mentor, coach and lead technical teams; must be able to work directly with individuals at all levels of the Company
 Strong continuous improvement problem-solving and mentoring skills
 Confident and effective negotiation skills
 Strong verbal and written communication, facilitation, and interpersonal skills
 Ability to manage vendor/supplier relationships, including contract negotiation, ongoing maintenance & support and problem-resolution
 Ability to effectively manage annual budgets >$3M and link team strategy to company performance

Grainger is an equal opportunity/affirmative action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, gender identity, sexual orientation, disability or protected veteran status.


Recommended skills

Business Continuity
Coaching And Mentoring
Apply to this job.
Think you're the perfect candidate?
Apply Now

Help us improve CareerBuilder by providing feedback about this job: Report this job

Report this Job

Once a job has been reported, we will investigate it further. If you require a response, submit your question or concern to our Trust and Site Security Team

Job ID: 51686-en_US


For your privacy and protection, when applying to a job online, never give your social security number to a prospective employer, provide credit card or bank account information, or perform any sort of monetary transaction. Learn more.

By applying to a job using CareerBuilder you are agreeing to comply with and be subject to the CareerBuilder Terms and Conditions for use of our website. To use our website, you must agree with the Terms and Conditions and both meet and comply with their provisions.

With 2016 sales of $10.1 billion, Grainger (GWW) is North America's leading broad line supplier of maintenance, repair and operating (MRO) products, with operations in Asia, Europe and Latin America.

Grainger is a business-to-business distributor of products used to maintain, repair or operate facilities. Approximately 3 million businesses and institutions worldwide rely on Grainger for products such as safety gloves, ladders, motors and janitorial supplies, along with services like inventory management and technical support. These customers represent a broad collection of industries including healthcare, manufacturing, government and hospitality. They place orders online, with mobile devices, over the phone and at local branches. More than 4,800 key manufacturers supply Grainger with 1.5 million products made available to customers through Grainger's distribution centers and branches.

View the full profile