VP Information Security

Title : VP Information Security

Location : Eagle, ID

About Lamb Weston

You've probably enjoyed our fries without even knowing it! As a leading manufacturer in our industry, and public Fortune 500 company, we inspire and bring people together with foods they love and trust. Our customer base includes international food service providers, restaurants, and households in over 100 countries around the world.

A highly innovative global corporation with a start-up mindset, we empower every individual to make a genuine difference. You'll gain access to hands-on training to fuel your growth and success, explore opportunities for new solutions, and you'll join a winning team of 10,000+ people all dedicated to raising the bar - together.

If you have a strong drive for results, a desire to help us bring the world together through our fries, and are ready for a fresh challenge, we want to hear from you.

Job Description Summary

The VP Information Security at Lamb Weston serves as the primary point of contact for information security and is responsible for oversight of enterprise-wide IT Information Security vision, strategy, policy, operations, risk management, and business continuity. We are seeking individuals who have demonstrated success transforming, growing, and continuously improving the cyber security function within a diverse, decentralized model through expertise and influence. The candidate should have experience working with and managing key vendor partners as part of an extended team. The ideal candidate should possess deep technical expertise with specific experience working with cybersecurity best practices and frameworks (ISO / IEC, 27001, NIST 800-53, SOX 404, COBIT) across multiple platforms. Experience working in a senior leadership security role for a publicly held company, creating and evolving an Information Security organization, and experience working for a global organization are required. Breadth of experience in these areas, as well as strong leadership and influencing capabilities are required. Demonstrated experience leading teams in a dynamic environment while meeting customer requirements is necessary.

This role will provide vision and leadership necessary to manage information security risk to the organization to ensure business alignment, effective governance, operational efficiency, performance monitoring and measurement, and business continuity. Provide executive level decision support through both informal and formal means, including but not limited to executive level metrics, dashboards, risk analysis and mitigation, risk acceptance, and risk reporting.

This role will also report, escalate, and remediate IT risk and compliance related issues, working in collaboration with corporate compliance, internal audit, and various technical teams in the design, maturity, and implementation of audit, risk assessment, and regulatory compliance practices and documentation for IT.

This position will advise and lead a matrixed direct and in-direct team of IT professionals and analysts knowledgeable in business activities to meet user information needs and the strategic goals of the organization

Job Description

• Develop, implement, and maintain a comprehensive enterprise security strategy roadmap.
• Develop and mature the company's information security program, ensuring compliance with relevant regulations and standard methodologies.
• Proactively monitor, evaluate, and implement standard methodologies related to enterprise information security practices. Provide internal guidance with respect to company response to emerging information security threats both internally and externally.
• Monitor the external threat environment for emerging threats and advise relevant business partners on the appropriate course of action that attains our goal of zero breaches.
• Collaborate with senior leaders and departments to assess risks, coordinate mitigation efforts, establish internal controls, respond to incidents, and manage shared concerns. Investigate security breaches, communicate to key business partners and executive leadership, and provide remediation and resolution.
• Serve as an expert advisor to executive leadership in the development, implementation, and maintenance of a strong information privacy and security program and infrastructure including network access and monitoring policies.
• Evaluate effectiveness of information security, privacy, and business continuity planning programs and procedures of third parties with whom the company engages as software, hardware, and / or service providers.
• Develop, maintain, and routinely exercise breach and ransomware approaches and processes
• Identify and mitigate security events and incidents, compliance issues, operational inefficiencies, application vulnerabilities, network / infrastructure, and other vulnerabilities.
• Review and evaluate technology and incoming new vendors for future risks and opportunities to improve IT security.
• Establishes Information Security guidance for the Enterprise Architecture team and approves designs and strategies.
• Provide strategic risk guidance for the company's IT projects, including the evaluation and recommendation of technical controls. Oversee the security requirements in system development life cycle, business continuity planning, and disaster recovery.
• Continuously improve a vulnerability management program which includes automated vulnerability scanning, customized vulnerability assessment, and penetration testing.
• Create and communicate a risk-based process for vendor risk management, including assessment and treatment for risks that may result from partners, consultants, and other service providers.
• Perform risk assessments and maintain the risk register.
• Oversee user access / provisioning for various systems used by the company.

Basic & Preferred Qualifications

Industry-Competitive Benefits

Coupled with our compensation and bonus incentive programs, our benefits deliver rewards that are market competitive. Some of the most attractive elements of our benefit programs include :

Benefits may vary based on location, job role / level, job status, and / or the terms of any applicable collective bargaining agreements.

Job Requisition ID : Req-257953

Time Type : Full time

The anticipated close date is a good faith estimate for when this job will be closed. Some jobs may be unposted or filled earlier or later than the Anticipated Close Date depending on interview processes and business needs. Anticipated Close Date : 08 / 18 / 2025

In compliance with applicable state and local laws, Lamb Weston has opted to include a reasonable estimate of the compensation for this role. This compensation is specific to this position and takes into account a number of variables. Actual compensation may be higher or lower in the range posted based on various factors, including, but not limited to, job duties, experience and expertise. A candidate's work location could also impact the actual compensation being outside of the range to reflect local cost of labor. A reasonable annual estimate of the range for this role based on the variables previously mentioned is : $258,620.00 - $387,940.00

Lamb Weston is an Equal Opportunity Employer and considers qualified applicants for employment without regard to race, color, creed, religion, national origin, sex, sexual orientation, gender identity and expression, age, disability, veteran status or any other protected factor under federal, state or local law