Job Description

Holman is a family-owned, global automotive services organization anchored by our deeply rooted core values and principles that have enabled us to continue Driving What’s Right throughout the last century. Our teams deliver the Holman Experience by treating our customers and each other as we would like to be treated, and creating positive, rewarding relationships all around.

The automotive markets Holman serves include fleet management and leasing; vehicle fabrication and upfitting; component manufacturing and productivity solutions; powertrain distribution and logistics services; commercial and personal insurance and risk management; and retail automotive sales as one of the largest privately owned dealership groups in the United States.

Holman is currently accepting applications for the position of Vice President, Chief Information Security Officer.

Primary Tasks:

• Deeply integrate into the business to understand the ‘why’ to build balanced, thoughtful plans to ensure security, compliance, and privacy are in lockstep with every move
• Interact with Holman’s Board and Executive team, and will represent security practices and concerns to internal teams, vendors, and customers
• Develop Holman’s security roadmap throughout our security engineering practice, building a strong security engineering function to effectively identify vulnerabilities before production and investing in automation and machine learning techniques where possible
• Oversee an Enterprise Product Security function that partners with developers to mitigate any product / external facing threats proactively and ensure proper development practices that align to security standards
• As Holman migrates to the public cloud, partner with technology to implement modern security standards, specifically related to application development and delivery
• Lead teams across application security, infrastructure security, identity, compliance, IT, data privacy, and security engineering
• Assess the current state of Holman’s security practices, highlighting areas for immediate and long-term changes
• Manage and provide actionable insights to engineering, oversee pen tests and various compliance reports
• Ensure risk controls are implemented and fully monitored throughout our system lifecycle
• Evangelize security-first practices, policies, and procedures across the broader company - particularly all teams building code - and ensure updated documentation and processes to address vulnerabilities in production
• Integrate with and provide technology leadership to Holman’s overall security Governance, Risk and Compliance programs
• Own all Security Events and Incident Management (SEIM)
• Participate on the overall technology leadership team helping shape the vision of the IT Employee Experience
• Stay abreast of the shifting security landscape, and communicate across Executive teams to ensure alignment
• Lead overall business continuity and disaster recovery from strategy through execution
• Perform all other duties and special projects as assigned

Relevant Work Experience:

• 15+ years’ experience at a senior management level; multiple levels of reporting relationships strongly preferred
• Prior 5+ years in deep, hands-on, technical cyber security roles
• Has extensive knowledge and experience within own function and general knowledge of areas, departments and/or function(s) within and across other disciplines
• Experience with contract and vendor negotiations and management including managed services
• Demonstrated experience complying with Privacy and Security rules and regulations

Education and/or Training:

• Bachelor's degree in a related field required, Master’s preferred
• Proficient in various desktop tools including MS Office Programs (i.e. Outlook, Excel, Word, PowerPoint, Project, Visio, SharePoint etc.)
• Knowledge of common information security management frameworks, such as ISO/IEC 27001, and NIST
• Strong foundational understanding of secure software engineering principles and cloud security controls. Experience with any cloud service offerings (Google, AWS , Azure)
• Proven understanding of security controls and technologies including but limited to SIEM, DLP, WAF, IPS, and firewalls.
• Strong knowledge of rules and regulations related to information and security data confidentiality (i.e. PCI, NIST, NSA)
• Field-related certifications that would be beneficial:
• Certified Information Systems Security Professional (CISSP)
• Certified in Risk & Information Systems Control (CRISC)
• Certified Information Security Manager (CISM)
• Certified Information Systems Auditor (CISA)
• PCI-ISA
• OSCP

#LI-BW1

#LI-Hybrid

At Holman, we exist to provide rewarding careers and better lives for employees and their families. We hire, train, empower, and reward exceptional people. Our journey is guided by our desire to get it right every time and the acknowledgement that we have an opportunity to be better. To be better, we have to do better, and to do better we must know better. That’s why we are listening, open to learning new things – about ourselves and each other. We will never stop striving for improved diversity, equity, and inclusion because we are successful together when we feel trusted and supported. It’s The Holman Way.

At Holman, your total compensation goes beyond your paycheck. To position you for success and provide a rewarding career and better life for you and your family, Holman is proud to offer you the benefits you deserve; including protection against illness, disability, loss of work, or preparation for retirement. Below is a brief overview of the programs available to full-time employees (programs may vary by country or worker type):

• Health Insurance
• Vision Insurance
• Dental Insurance
• Life and Disability Insurance
• Flexible Spending and Health Savings Accounts
• Employee Assistance Program
• 401(k) plan with Company Match
• Paid Time Off (PTO)
• Paid Holidays, Bereavement, and Jury Duty
• Paid Pregnancy/Parental leave
• Paid Military Leave
• Tuition Reimbursement

Benefits:

Regular Full-Time

We offer excellent benefits including health, vision, dental, life and disability insurance, and 401(k) with company match. Our time off benefits include Paid Time Off (PTO), paid holidays, bereavement, and jury duty. In addition, we offer paid pregnancy and parental leave, and supplemental paid military leave to eligible employees.

Temporary or Part-Time

In geographic areas with statutory paid sick leave, part-time and temporary employees will receive a paid sick leave benefit that meets the mandated requirements.

Pay:

We offer competitive wages that are commensurate with job-related skills, experience, relevant education or training, and geographic location, starting in the range of $275,430.00 - $426,915.00 USD annually for full time employees. The annual compensation range is comprised of base pay and bonus earnings.

Artificial Intelligence Statement

We recognize that applicants for positions at any organization may view AI tools for tasks such as drafting a resume or cover letter, provided the information is accurate and truthful. However, applicants should not use AI tools to:

• Answer interview questions on their behalf, or use AI tools in any way during the interview or other qualification process(es).

• Misrepresent or embellish qualifications, skills, or experience

• Create false or misleading representations of identity (e.g., deepfakes or altered images/videos)

Your application, whether an AI tool is used or not, should reflect your authentic abilities and experiences. Any use of AI that compromises honesty or integrity may result in disqualification from the process.

Equal Opportunity Employment and Accommodations:

Holman provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.

If you are a person with a disability needing assistance with the application process, please contact HR@Holman.com

This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.