About AESC US LLC

AESC is a world-leading battery technology company headquartered in Japan and committed to research, development, design, manufacture and sales of high-power batteries for EVs and energy storage batteries. AESC has 7,000 employees and 10 production plants in Japan, the U.S., the U.K., China and France. For the past 12 years, AESC has produced high-performance, extended range batteries for more than 950,000 electric vehicles in 44 countries, achieving a record of “zero critical battery malfunction.” In June 2021, AESC was again named on the “Global Tier 1 Battery Companies” list by Benchmark, a leading U.K.-based lithium-ion battery supply chain research organization.

 AESC invests heavily in next-generation technology to drive innovation and works with its strategic partners to continually push the boundaries of performance, safety and efficiency. Its teams work with strategic partners to continuously improve the company’s global leadership in product development, quality and sustainable processes. Find out more at -aesc.com/us.

 AESC Global is currently seeking a dynamic individual to fill an opening for a Global Senior Manager Information Security and Compliance.  

 
Job Responsibilities: 

• Manage and build a team of security engineers responsible for all regular compliance patterns, customer responses, internal audits, and customer/supplier audits 
• Ensure global and regional agreements are security reviewed for data loss prevention and data safeguarding 
• Manage and deliver the acquisition of TISAX and ISO27001 certification for global regions 
• Manager and deliver the IS Security required portions of ISO27001 and TISAX audits 
• Track team/regional activities and deliver on reporting of metrics and KPIs, including Executive Committee quarterly presentation for health of Enterprise Level IS Security 
• Improve processes and procedures globally related to IS Security audit and customer assurance. 

Qualifications and Experience: 

Bachelor's degree or equivalent industry experience (specializing in Cyber Security, Information Systems, Information Security) with 7 years specializing in managing a Cyber Security Team or IS Audit Team. Post Graduate degree a plus 

• 7 years of hands-on experience in Cyber Security required. 
• 5 years of managerial experience with at least 3 direct reports 

Experience with the following: 

• Deep Understanding and technical knowledge of threat detection/security monitoring, security incident and crisis management, threat intelligence, vulnerability and threat management and data protection 
• Ability to proactively incorporate threat intelligence into a security monitoring program, which you will be responsible for creating and maintaining.
• Background in intelligence gathering, including familiarity and use of online resources, subscription services and public record checks 
• Ability to lead incident handling processes 
• Certified in one or more of the following: CRISC, CISA, CISM, CISSP, SANS GIAC Security Certifications, ITIL, ISO27001 
• Experience in the management and/or implementation of security monitoring, anti-malware, data loss prevention and vulnerability management technologies on a global enterprise level.
• Ability to delegate work to team members and provide clear and effective guidance on implementation of processes 
• Ability to work well in a demanding, dynamic environment, and meet overall objectives 
• Excellent interpersonal skills with the ability to communicate effectively verbally and in writing with all levels within the organization, including both technical and non-technical personnel 
• Automobile and/or manufacturing industry experience is a plus 

Other qualifications: 

• Application & Software Security experience 
• Experience working for a SaaS or other technology service provider. 
• Azure, GCP, AWS, etc. experience 
• Working in a consulting or consultation-task oriented environment 
• Project Documentation and/or Threat Modeling experience 
• Excellent Leadership level briefings/communication 
• Experience working for a SaaS or other technology service provider. 
• Security risk language domains 
• Experience with SOC 2, ISO27001 and TISAX compliance
• Knowledge of cybersecurity, engineering, ethical hacking tools and methods 
• Familiar with big data technologies, SQL, python, analytic software packages and software engineering environments. 
• Knowledge of GDPR and other privacy frameworks (including China, Japan, UK, US, and France) 
• A desire to constantly improve the company’s global security position.