Skip to main content

Chief Information Security Officer

Overview:

Here at Discount Tire, we celebrate the spirit of our people with extraordinary pride and enthusiasm. Our business has been growing for more than 60 years and now is the best time in our history to join us. We are opening more locations every year and we are always looking for qualified individuals to join us in our growth. We are a company that promotes from within, both in our retail and corporate operations.

The Chief Information Security Officer (CISO) is an executive leader responsible for enterprise-wide Cybersecurity, Enterprise AI Governance & Security, IT Risk Management, and Disaster Recovery & Resiliency for a $10+ billion retail organization. This role serves as the senior authority accountable for protecting the confidentiality, integrity, availability, and resiliency of corporate information systems, customer data, store operations, supply chain platforms, digital ecosystems, and AI-enabled capabilities. The CISO establishes and executes a comprehensive enterprise strategy across security, risk, resiliency, and AI governance to enable sustainable business growth while mitigating operational, regulatory, financial, cyber, and emerging AI-related risks. This leader partners closely with executive leadership, technology teams, business stakeholders, auditors, regulators, and the Board of Directors to ensure enterprise technology risks are proactively identified, effectively managed, and clearly communicated. This role operates as a strategic advisor to executive leadership and the Board, driving enterprise risk visibility, resilience readiness, and secure innovation across the organization.. Creates the overall department vision and drives employee and leadership performance to execute on short and long term goals. Builds and manages a high performance function and provides expert level leadership to all levels within the department. Embodies IOOGA (Integrity, Our People, Our Customers, Growth and Attitude).

Essential Duties and Responsibilities

  • Define and execute the enterprise cybersecurity strategy aligned to business objectives and growth priorities.
  • Lead all major security domains including security operations, architecture, identity and access management (IAM), cloud security, application security, data protection, governance/risk/compliance (GRC), threat detection, incident response, vulnerability management, and security awareness.
  • Establish enterprise-wide security standards, controls, and continuous improvement mechanisms.
  • Establish and lead the enterprise AI governance and security program.
  • Define AI security policies, standards, and control frameworks supporting responsible AI adoption.
  • Assess and mitigate risks related to Generative AI, large language models (LLMs), machine learning, and AI-enabled business processes.
  • Oversee AI model security, data privacy, regulatory compliance, monitoring, and reporting for AI technologies and third-party AI platforms.
  • Own the enterprise IT risk management framework, including risk appetite, risk assessments, and technology risk register.
  • Lead vendor and third-party risk programs, risk metrics, and key risk indicators (KRIs).
  • Deliver executive risk reviews and maintain Board-level visibility into technology risk exposure.
  • Lead enterprise disaster recovery and technology resiliency programs.
  • Define recovery strategies, objectives, and testing protocols, including failover exercises and readiness reviews.
  • Drive continuous improvement of resiliency capabilities and enterprise preparedness.
  • Ensure compliance with applicable regulatory, privacy, security, and audit requirements.
  • Lead enterprise governance processes, including risk committees, policy management, and executive reporting structures.
  • Establish scalable governance frameworks supporting enterprise growth and risk transparency.
  • Serve as the primary technology risk advisor to the Board of Directors and Board committees.
  • Deliver clear, actionable reporting on cybersecurity posture, AI governance maturity, IT risk exposure, resiliency readiness, and significant incidents.
  • Develop and present executive-level materials to facilitate informed Board discussions and decision-making.
  • Act as a trusted advisor to executive leadership, translating complex cybersecurity, AI, and technology risks into actionable business insights and investment priorities.
  • Align security and risk strategies with enterprise objectives to support innovation, operational continuity, and growth.
  • Own budgets across cybersecurity, AI governance, IT risk, and disaster recovery functions.
  • Develop multi-year strategic roadmaps, business cases, and investment plans aligned to enterprise priorities.
  • Establish and monitor performance metrics to ensure effectiveness and return on investment.
  • Lead and develop multi-layered, multidisciplinary teams.
  • Foster a culture of accountability, security, resilience, innovation, and responsible AI adoption.
  • Coach and develop leaders, ensuring strong succession planning and organizational capability.
  • Provides direction and feedback on employee goals and achievements.
  • Conducts performance reviews
  • Communicates clear job expectations, goals and development opportunities to employees
  • Prepares employee development plans. Coaches, counsels and leads department employees
  • Serves as an escalation point for interpersonal and operational employee challenges
  • Monitors department projects to ensure projects are delivered on time, within budget and to agreed quality level.
  • Monitors and adjusts employee workloads
  • Gathers, tracks and reports department attainment of Key Performance Indicators (KPIs) to upper management
  • Ensures Company procedures are followed, including the tracking and publishing of metrics
  • Works collaboratively across departments to identify and resolve risks, conflicts and challenges, recommends resolution and implementing process improvements
  • Stays current on the latest industry technologies, trends, and strategies; brings forward solutions and serves as a Trusted Expert
  • Other duties as assigned

Qualifications

  • This position requires a minimum of 20+ years of progressive technology leadership experience.
  • 15+ years of senior cybersecurity leadership experience within large, complex enterprises.
  • Demonstrated experience leading enterprise cybersecurity, AI governance, IT risk management, and disaster recovery programs.
  • Proven executive-level leadership with the ability to lead leaders and influence enterprise-wide strategy.
  • Strong business, financial, and risk acumen with experience managing large-scale budgets and strategic investments.
  • Proficient in Microsoft Office, including Word, Excel and PowerPoint is needed.
  • Expert ability to communicate across all levels of the organization, present complex ideas concisely and clearly articulate ideas both verbally and in writing is necessary.
  • Exceptional written communication skills, including Board presentations, risk memorandums, executive briefings, policies, and regulatory communications.
  • Exceptional verbal communication and presentation skills, with demonstrated ability to translate complex technical concepts for Boards of Directors, executive leadership, regulators, auditors, and business stakeholders.
  • Excellent analytical, planning and negotiation skills are needed.
  • Excellent interpersonal skills with the expert ability to develop strong relationships with key members of both internal and vendor teams.
  • Demonstrated business acumen with an expert knowledge and understanding of business issues, priorities, goals, and strategy is necessary.
  • Must be highly organized, extremely detail oriented with strong leadership experience.
  • Maintaining confidentiality, treating others with respect and upholding Company values is a key attribute.
  • Ability to perform in a fast-paced, goal oriented, and time sensitive environment.
  • The ability to drive organizational transformation; communicates openly and builds consensus with stakeholders.

Educational Requirements

Bachelor's degree required; Master's degree preferred. CISSP, CISM, CRISC, CGEIT, CCISO, or equivalent executive-level security certifications are a plus.

Work Days

Normal work days are Monday through Friday. Occasional Saturdays and Sundays may be necessary.

Work Hours

Normal work hours are 8:00 a.m. to 5:00 p.m. Additional hours may be necessary.

Discount Tire provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state, or local law.

#LI-Onsite

#LI-GW1

LOCATION

20225 N Scottsdale Rd
Scottsdale, Arizona

JOB TYPE

Full Time

Go to top
This job is located in Scottsdale, Arizona. Candidates can explore additional roles in Scottsdale, Arizona and surrounding areas using the job search tool.