Vice President, Chief Information Security Officer (CISO)

Panasonic

Bridgeton, MO

Overview

The Chief Information Security Officer (CISO) is the executive leader responsible for establishing, governing, and advancing Hussmann’s global cybersecurity, information protection, and technology risk & audit management program. This role provides strategic direction and leadership to protect Hussmann’s corporate IT, OT, manufacturing systems, digital products, customer platforms, and data assets across a multi-country footprint (U.S., Canada, Mexico, LATAM, Australia, New Zealand, China & India).

The CISO will serve as Hussmann’s authoritative voice on cybersecurity, risk, data classification, AI governance, and compliance, ensuring security provides business enablement, not friction—supporting core initiatives including Infrastructure Modernization, PLM transformation, ERP Transformation, Digital Commerce, Connected Solutions (Digital Products sold to Customer), and enterprise AI adoption.

Responsibilities

1. Enterprise Security Strategy & Governance

Develop and execute a multi‑year cybersecurity strategy aligned to Hussmann’s business objectives, risk appetite, and global footprint.
Lead the global security governance structure, including cybersecurity steering committees and executive-level reporting.
Own the enterprise Information Security Policy Framework, incorporating ISO 27001, SOC 1 & 2, NIST CSF, and industry best practices.
Partner with the CIO to brief Executive Leadership and Committees on threat posture, incident trends, risk, and compliance maturity.
Serve as executive sponsor for AI Governance, ensuring safe and responsible adoption across M365 Copilot, Azure OpenAI, GitHub Copilot, Adobe AI, Coveo, Scribe, and others as acquired or developed.

2. Risk Management & Compliance

Lead enterprise cyber risk assessments, risk registers, and remediation programs.
Ensure ongoing attainment of ISO 27001 readiness and developing/completing SOC 1/SOC 2 controls across applicable systems. ISO 27001 to come in FY26.
Govern and rollout data classification and protection leveraging Microsoft Purview, Cyera, and enterprise privacy programs.
Establish and Direct third‑party and supply chain cyber risk programs, ensuring contractual, vendor, and manufacturing partner controls are enforced.
Guide compliance with global privacy laws, export controls, and customer security requirements.

3. Security Operations & Incident Response

Oversee global SOC services, threat monitoring, detection engineering, and incident response.
Lead & establish a more robust crisis management, executive communications, escalation protocols, and tabletop exercises.
Ensure business continuity, disaster recovery, and operational resilience plans align with enterprise cyber risk.
Manage forensics, investigations, evidence handling, and external coordination with law enforcement, regulators, and insurers.

4. Technology, Cloud, & OT/Manufacturing Security

Govern cybersecurity standards for AWS-hosted Digital Products, ensuring formalized data classification, secure SDLC, and platform security maturity.
Lead security for Operational Technology environments, including plants, factories, industrial control systems, field devices, and Connected Solutions deployments.
Partner with Engineering, Connected Solutions, and Operations to implement secure-by-design principles across automation, IoT, telematics, and networked refrigeration systems.
Govern security architecture for on‑prem, cloud (Azure / AWS), network, identity, integration, and infrastructure services.

5. Identity, Data Protection & Platform Security

Lead Identity and Access Management (IAM) modernization, including privileged access, MFA, lifecycle automation, and role‑based access.
Oversee data protection, encryption, sovereignty controls, and secure collaboration frameworks.
Partner with Enterprise Architecture to embed reference security architecture patterns.

6. Leadership, Culture, & Organizational Development

Build and lead a high‑performing, globally distributed cybersecurity organization across the U.S., Mexico, and India.
Establish roles, succession paths, skill development programs, and annual workforce plans.
Drive global cybersecurity awareness programming tailored to corporate, manufacturing, service, and field teams.
Lead Security Champion and security advocacy programs across business units.

7. Executive Partnership & Business Enablement

Serve as a strategic advisor to the CIO and Executive Leadership on technology risk, digital product security, AI governance, and transformation initiatives.
Partner with Commercial, Supply Chain, Digital Products, Legal, HR, and Operations to align cybersecurity with business priorities.
Support M&A due diligence, integrations, and separations from a cybersecurity and data-risk perspective.
Engage with customers in retail, food service, energy, and commercial sectors to validate and communicate Hussmann’s security posture.

8. Audit, Controls & Compliance Oversight

Assume executive ownership of all technology control frameworks, including IT General Controls (ITGC), IT Application Controls (ITAC), and JSOX technology controls.
Lead development, implementation, and continuous improvement of Hussmann’s IT control environment, ensuring design and operational effectiveness across global systems.
Partner with Finance, Internal Audit, and external auditors to ensure successful planning, testing, and remediation of JSOX, SOC 1/SOC 2, and ITGC controls.
Oversee creation and maintenance of a centralized controls inventory mapping controls to systems, processes, compliance requirements, and risks.
Oversee ITAC and automated control design for all Hussmann IT & Business systems.
Ensure timely remediation of all audit findings, driving accountability across IT and Digital Product teams.
Serve as the executive liaison to Internal Audit across all global regions including U.S., Canada, LATAM, India, ANZ & China.
Drive continuous readiness for external attestation activities including JSOX management testing and customer audits.
Integrate audit outcomes into executive and Board cybersecurity and risk reporting.

Qualifications

Education & Certifications

Bachelor’s degree in Computer Science, Information Systems, Engineering, or related field (Master’s preferred).
Certifications preferred: CISSP, CISM, CISA, CRISC, GIAC, CCSK, or similar.

Experience

15+ years of progressive leadership in cybersecurity, risk management, or IT security.
5-8 years leading cybersecurity organizations at the Director/VP level.
Experience in manufacturing, OT, connected devices, or asset-intensive industries strongly preferred.
Demonstrated experience working in environments characterized by significant technical debt and numerous interconnected systems.
Demonstrated success driving enterprise-wide compliance programs (ISO, SOC, NIST).
Experience with cloud security across AWS and Azure.
Proven ability operating within globally distributed teams (U.S., LATAM, India).
Proven ability to manage partners providing services such as SOC/SIEM and necessary security tools.

Skills & Competencies

Executive presence with the ability to brief C‑suite and Boards.
Deep understanding of cyber risk, threat landscapes, OT/ICS security, and cloud architectures.
Strong knowledge of data protection, identity management, and platform engineering.
Exceptional communication and stakeholder engagement skills.
Ability to lead through change and influence without authority.
Business acumen and capability to balance security with operational agility.

Key Performance Indicators (KPIs)

Reduction in enterprise cyber risk exposure
ISO 27001/SOC 1/SOC 2 maturity achievement
Incident detection + response time improvements
OT and Connected Solutions security maturity
Data classification and protection adoption metrics
Security training effectiveness and culture uplift
Talent development and retention
Executive stakeholder satisfaction

Benefits & Perks – What’s In It For You*

Hussmann is committed to supporting your total wellbeing through a wide variety of benefits and wellness programs to support your physical, emotional, financial, social, and environmental health. Here’s what you can expect:

Health Benefits – Offering medical, dental, vision, prescription plans, plus Health Savings Account and Flexible Spending Account options.

Voluntary Benefits – Life, accident, critical illness, disability, legal, identity theft, and pet insurance.

Hussmann Retirement Savings & Investment Plan – 401(k) plan with company matching contributions and immediate vesting.

Paid Time-Off Benefits – Paid time off, stewardship and parental leave.

Educational Assistance – Tuition reimbursement for job-related courses after six months of service.

Health Management and Wellbeing Programs –EAP, virtual health management, chronic condition, and tobacco cessation.

*Available to eligible employees starting the first day of the month following their start date. Eligibility for each benefit may vary based on employment status.

About Hussmann

For over a century, Hussmann Corporation has been a global leader in commercial refrigeration equipment — delivering solutions that meet the demands of the modern food retailing industry. Headquartered in St. Louis, MO, Hussmann offers a diverse range of products and connected solutions designed to enhance operational efficiency, optimize visibility of merchandise, and keep food fresh. With a nationwide network of skilled technicians, Hussmann goes beyond manufacturing — a trusted partner, relentlessly driving customer success. For more information about Hussmann, please visit www.hussmann.com.

Hussmann is a subsidiary of Panasonic USA.

Hussmann is proudly committed to creating an inclusive environment. All qualified applicants will receive consideration for employment without regard to veteran status, disability, age, race, color, religion, sex, national origin, genetics, medical condition, or any other characteristic protected by law.

REQ-154062