Wright Express is a leading provider of payment processing and information management services to the U.S. commercial and government vehicle fleet industry. We provide fleets using our services with detailed transaction data, analysis tools and purchase control capabilities by capturing transaction data at more than 180,000 fuel and vehicle maintenance locations, including over 90% of the nation's retail fuel locations and 45,000 vehicle maintenance locations.

Chief Information Security Officer

General Purpose:

The Chief Information Security Officer is responsible for safeguarding the confidential information, assets and intellectual property that belongs to the Wright Express Enterprise (Domestic and International), its partners, and customers. The scope primarily involves computer security and the processes around security, but requires overseeing and coordinating Information Protection efforts across the company, including Application Development, Network Infrastructure, HR, IT, Legal and other groups to identify key corporate security initiatives and standards (for example, virus protection, data classification, security monitoring, intrusion detection, access control to applications and facilities, and remote access policies).  This role also works with third parties as appropriate for independent security audits including supporting regulatory compliance at state and federal level.

1.       Lead accountability for ensuring WEX is continuously in a strong and proactive security position in the industry and relative to our competition.  Leads, develops, communicates and implements WEX Information Security Strategy (WISS) and roadmap across the Enterprise.  Responsible for consistent communications to associates, the BOD and Executive team

2.       Act as the lead IT person on all Enterprise risk programs including but not limited to Pandemic, Business Continuity, Disaster Recovery, Information management, and Crisis Reponses planning and implementation

3.       Implements and provides governance on WEX’s Enterprise Security program including information security policies, standards, guidelines, and procedures for the organization weighing appropriate risk to cost for WEX

4.       Lead efforts to efficiently and open IT audit items that deem remediation.

5.       Ensures monitoring of internal control systems is in place while ensuring that appropriate access levels are maintained, intrusion detection practices and virus prevention controls and procedures are in place

6.       Perform information security risk assessments and serves as the point of contact and internal auditor for security and compliance issues to include: IT SOX compliance, PCI/DSS and FDIC.

7.       Hold the position of CISO for Wright Express FSC

8.       Partnering with HR, initiates, facilitates, and promotes activities to create information security awareness within the Enterprise.  Maintains relationship with local and federal law enforcement agencies

9.       Assist with the investigation of security breaches and assist with disciplinary and legal matters associated with such breaches as necessary

10.   Work with facilities on physical security projects, to ensure the WEX Enterprise has proper physical security to meet regulatory standards.

Masters Degree in Business, Management, Computer Sciences, or equivalent combination of education and work experience in a related field.

Eight to ten years in a computer related field, with at least 3 in Information Security.

Experience and card processing industry is a strong plus.

CISSP or related certification.  GLB experience a plus

Sarbanes-Oxley and PCI/DSS experience is a plus

Experience with disaster recovery planning, testing, auditing, risk analysis, business continuity planning, contingency planning; TCP/IP firewalls, VPNs and other security devices; as well as contract and vendor negotiation experience.

Ability to write effective memos, simple and complex reports, and documentation.

Must be an effective leader of technical computer support people under stressful emergency situations as well as routine work situations.

Demonstrated experience with communicating and presenting to Executives and Board members

Excellent communication skills strong presentation skills

Strong interpersonal and project management skills

Strategic thinking skills

High personal credibility and integrity

Strong ability to persuade, convince and influence others through collaboration

Ability to work and effectively prioritize in a highly dynamic work environment

Must pass a successful background