Director, Information Security

This is Energizer Holdings, Inc.

Energizer Holdings responsibly creates products to make lives easier and more enjoyable. To do this, we lean into our culture as an organization – we win together, while serving each other, with a willingness to act boldly, all while doing right. Our colleagues hail from all backgrounds, nationalities and walks of life, but our shared mission and purpose make us one team. Because we’re a global organization, you will always have opportunities to learn, grow and develop in your career. We support flexible working arrangements wherever possible.

Position Summary

Purpose of the Role

The Director of Information Security leads Energizer Holdings’ (EHI) global information security program, setting the strategic vision and overseeing execution to protect the company’s digital assets. This role ensures EHI’s security capabilities meet current and future business needs through robust leadership, planning and operational excellence.

Key Leadership Expectations

This critical leadership role within the Information Technology department manages the information security team, fosters trusted partnerships across global IT and business functions, and collaborates closely with technical partners and executive stakeholders to drive security policy, risk management practices, incident response, and compliance of the information security program across the enterprise.

Enterprise Impact

This highly collaborative position requires exceptional communication skills, technical expertise, and leadership presence to engage senior leaders on EHI’s security posture, emerging threats, security effectiveness through established performance metrics, and strategic security priorities. Additionally, this role collaborates across functions to embed security processes, implement security solutions and strengthen EHI’s overall security resilience.

Responsibilities

• Security Program Leadership: Own and execute EHI’s evolving information security strategy. This includes leading the creation and implementation of comprehensive and scalable security policies, standards, procedures and programs that protect EHI’s information systems and digital assets from security threats, manage security risks, and align with business goals and future capabilities.
• Governance & Compliance: Ensure adherence to relevant legal, regulatory, and corporate policies related to security and risk management (e.g., GDPR , HIPAA, NIST and NIS2), partnering with Legal, Compliance Audit and IT Leaders to maintain comprehensive risk management policies that include cyber-risk appetite statements and assessment processes.
• Risk Assessment & Management: Oversee enterprise risk assessments and maintain the security risk register. This includes evaluating emerging threats and vulnerabilities, designing and executing mitigation strategies, proactively detecting technology threats and managing incident response protocols to enhance EHI’s security posture.
• Monitoring & Reporting: Establish metrics and dashboards to track the effectiveness of security controls, and report security risks and business impacts to executive leadership to ensure transparency of EHI's security posture.
• Leadership Engagement & Collaboration: Partner with IT and Business leaders to assess security risks, understand business needs, and ensure security initiatives support business goals. This includes communicating complex security risks in accessible business language, enabling informed decision-making.
• Security Operations: Oversee Security Operations Centers (SOC) and lead security service delivery, incident response, monitoring, detection and management of defense systems (e.g., firewalls, SIEM, endpoint protection, etc.). This includes leading enterprise security awareness initiatives and annual tabletop exercises with leaders.
• Technology Management: Lead the evaluation of emerging security technologies, manage security systems, and integrate security into the IT environment. This includes guiding the continuous improvement of information security programs based on assessments, audit outcomes, threat trends and other optimization and simplification opportunities.
• Team Leadership: Lead and develop the information security team, fostering a collaborative, high-performing environment by setting clear goals, providing coaching and supporting growth and capability development. As a member of the IT Leadership team, this also includes contributing to the development of broader IT department goals and operational procedures.
• Financial Management: Manage information security budget, including operating and capital expenditures, and negotiate and oversee information security-related contracts to ensure cost-effective service delivery.
  
  

What we are looking for

Required Skills And Experience

Educational Background

• Bachelor's degree in Information Technology, Cybersecurity, or a related discipline
  
  

Experience Requirements

• 10 years of information security leadership experience within global, multi-site organizations, with increasing responsibilities across multiple IT disciplines (e.g., network engineering, security, datacenter operations)
• Experience leading high-stakes business continuity and disaster recovery security engagements
• Demonstrated success managing information security budgets and vendor contracts
  
  

Knowledge and Skills

• Leadership & Communication: Exceptional ability to build trusted partnerships and influence at all levels, including executives, cross-functional leaders, and vendor partners, with strong executive presence and effective communication skills to translate complex security risks into clear, actionable business insights
• Strategic & Analytic Skills: Executive-level engagement capability with strong critical thinking and decision-making skills, and the ability to align security strategy with business priorities
• Security Governance, Risk & Compliance: Deep understanding of cybersecurity frameworks, risk management methodologies (e.g., ISO/IEC 27005 or NIST SP 800-37), with ability to develop and govern enterprise security risk management programs and practices
• Technical Security Expertise: Proficiency in key information security technologies (e.g., antivirus, threat detection / prevention, IPS, VPN, perimeter protection, endpoint protection, URL filtering, vulnerability assessments, penetration testing, security monitoring / patching, web acceleration, phishing threats, MFA, etc.) with commitment to stay current with technological and regulatory changes
• Team Management: Demonstrated expertise in leading and developing high-performing, geographically dispersed information security teams
  
  

Preferred Qualifications

• Advanced degree and professional industry certifications (such as CISM and CISSP) preferred
• Experience in consumer-packaged goods industry, preferably organizations with manufacturing operations
  
  

Come join us!

Energizer is an equal opportunity employer, and we prohibit discrimination based on age, color, disability, marital or parental status, veteran status, national origin, race, religion, sex, sexual orientation, gender identity or any other legally protected status in accordance with applicable federal, state and local laws.

Total Rewards Package

The salary range for this position is USD $149,000.00/Yr. - USD $250,000.00/Yr.

Actual base salary offered to a candidate may vary based upon factors including, but not limited to, relevant experience, time in role, base salary of internal peers, prior performance, business sector, and geographic location.

Bonus: This position is bonus eligible.

Long term incentive (LTI): This position is Long Term Incentive (LTI) eligible

Energizer strives to create a supportive work environment centered around colleagues’ professional and personal well-being. Our total rewards package provides comprehensive benefits to attract, retain, and protect our colleagues – including health and welfare insurance, parental leave, paid time off, and retirement savings plans.