Take your career further with McLane!
McLane teammates, the driving force behind our success, are diverse professionals who work together seamlessly to keep our operations running smoothly. As a teammate, you will pair your dedication, expertise, and collaborative spirit with your fellow teammates to serve America's most beloved brands. McLane leaders think long-term, act with purpose, and inspire high performance. They lead with accountability, communicate clearly, and drive results through collaboration, innovation, and continuous growth. They empower each teammate to learn from industry leaders, develop their skills, and build lasting connections nationwide.
Lead and mature the organization's cybersecurity risk and compliance program. Oversee the enterprise-wide cybersecurity risk management framework, ensuring that risks are identified, assessed, and managed in alignment with business objectives, regulatory requirements, and industry standards. Ensure that cybersecurity practices comply with applicable regulations, internal policies, and recognized frameworks. Lead enterprise-wide efforts in audit support, eDiscovery coordination, and ongoing compliance monitoring.
This is a hybrid position which will require the candidate to report and work from the office three days a week. Therefore, interested candidates should be within a 50-minute radius from Temple, TX.
Benefits you can count on:
What you'll do as a Sr Cybersecurity Risk and Compliance Manager:
Qualifications you'll bring as a Sr Cybersecurity Risk and Compliance Manager:
Fit the following? We want you here!
Our roadmap. Our story.
We've been forging our path as a leader in the distribution industry since 1894. Building an expansive nationwide network of team members for 130+ years has allowed us to stay agile for our clients across the restaurant, retail, and e-commerce industries. We look to the future and are ready to continue making industry-defining moves by embracing the newest technology into our practices, continuing team member training, and emphasizing our people-centered culture.
Candidates may be subject to a background check and drug screen, in accordance with applicable laws.
All applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
For our complete EEO and Pay Transparency statement, please visit https://www.mclaneco.com/legal/employment/
McLane teammates, the driving force behind our success, are diverse professionals who work together seamlessly to keep our operations running smoothly. As a teammate, you will pair your dedication, expertise, and collaborative spirit with your fellow teammates to serve America's most beloved brands. McLane leaders think long-term, act with purpose, and inspire high performance. They lead with accountability, communicate clearly, and drive results through collaboration, innovation, and continuous growth. They empower each teammate to learn from industry leaders, develop their skills, and build lasting connections nationwide.
Lead and mature the organization's cybersecurity risk and compliance program. Oversee the enterprise-wide cybersecurity risk management framework, ensuring that risks are identified, assessed, and managed in alignment with business objectives, regulatory requirements, and industry standards. Ensure that cybersecurity practices comply with applicable regulations, internal policies, and recognized frameworks. Lead enterprise-wide efforts in audit support, eDiscovery coordination, and ongoing compliance monitoring.
This is a hybrid position which will require the candidate to report and work from the office three days a week. Therefore, interested candidates should be within a 50-minute radius from Temple, TX.
Benefits you can count on:
- Day 1 Benefits: medical, dental, and vision insurance, FSA/HSA, and company-paid life insurance
- Paid time off begins day one.
- 401(k) Profit Sharing Plan after 90 days.
- Additional benefits: pet insurance, maternity/paternity leave, employee assistance programs, discount programs, tuition reimbursement program, and more!
What you'll do as a Sr Cybersecurity Risk and Compliance Manager:
- Develop and maintain a formal process for documenting, reviewing, and approving risk exceptions and acceptances.
- Collaborate with business and technical stakeholders to evaluate residual risk and ensure appropriate mitigation strategies.
- Present exception cases to senior leadership and risk committees for review and decision-making.
- Lead the cybersecurity third-party risk program, including vendor assessments, onboarding reviews, and continuous monitoring.
- Partner with procurement, legal, and business units to ensure third-party engagements meet security and compliance requirements.
- Maintain a centralized repository of third-party risk assessments and remediation plans.
- Oversee the execution of cybersecurity risk assessments across business units, technologies, and projects.
- Develop and maintain risk assessment methodologies aligned with industry frameworks (e.g., NIST, ISO, FAIR).
- Provide actionable insights and recommendations to reduce risk exposure and improve security posture.
- Assess and manage risks associated with the adoption and deployment of artificial intelligence technologies, ensuring alignment with cybersecurity policies, ethical standards, and regulatory requirements.
- Own and maintain the enterprise cybersecurity risk catalog, ensuring risks are accurately documented, categorized, and prioritized.
- Facilitate regular reviews and updates to the catalog in collaboration with risk owners and stakeholders.
- Use risk data to inform strategic planning, investment decisions, and reporting to executive leadership.
- Integrate artificial intelligence into risk assessment and remediation workflows to enhance threat prioritization, accelerate decision-making, and improve accuracy in identifying and mitigating cybersecurity risks.
- Serve as the primary liaison for internal and external cybersecurity audits.
- Coordinate evidence collection, documentation, and responses to audit inquiries.
- Track and manage remediation efforts for audit findings and ensure timely closure.
- Maintain audit readiness through continuous improvement of controls and documentation.
- Collaborate with Legal, IT, and Security teams to support eDiscovery requests.
- Ensure timely and accurate identification, preservation, and collection of digital evidence.
- Develop and maintain procedures for eDiscovery processes aligned with legal and regulatory requirements.
- Provide guidance on data retention and defensible deletion practices.
- Monitor and assess compliance with cybersecurity policies, standards, and regulatory frameworks (e.g., SOX, PCI-DSS, NIST, ISO 27001).
- Conduct periodic reviews and assessments to identify gaps and recommend corrective actions.
- Stay current with evolving regulations and industry best practices, advising leadership on potential impacts.
- Perform other duties as assigned.
Qualifications you'll bring as a Sr Cybersecurity Risk and Compliance Manager:
- Bachelor's degree in computer science, information technology, or a related field (master's degree preferred).
- Ten or more years of progressive experience in information technology.
- Eight or more years of experience in cybersecurity governance, risk, and compliance (GRC).
- Advanced understanding of cybersecurity frameworks (e.g., NIST CSF, ISO 27001), regulatory requirements (e.g., PCI, SOX, GDPR), and risk management methodologies.
- Experience with GRC platforms and risk assessment tools.
- Proven leadership in managing cross-functional teams and complex projects.
- Strong stakeholder management skills, with the ability to influence at all levels of the organization.
- Excellent problem-solving and analytical skills.
- Effective communication and interpersonal skills.
- Ability to convey complex technical concepts to both technical and non-technical audiences.
- Strong stakeholder management skills, with the ability to influence at all levels of the organization.
- Ability to work independently and as part of a team in a fast-paced environment.
- This position requires the ability to read, write, and understand English at a level sufficient to perform job-related tasks effectively and safely. This includes understanding work instructions, safety protocols, and communications essential to the role. The requirement is directly related to the nature of the job and ensures compliance with workplace safety and operational standards.
Fit the following? We want you here!
- Teamwork oriented
- Organized
- Problem solver
- Detailed
Our roadmap. Our story.
We've been forging our path as a leader in the distribution industry since 1894. Building an expansive nationwide network of team members for 130+ years has allowed us to stay agile for our clients across the restaurant, retail, and e-commerce industries. We look to the future and are ready to continue making industry-defining moves by embracing the newest technology into our practices, continuing team member training, and emphasizing our people-centered culture.
Candidates may be subject to a background check and drug screen, in accordance with applicable laws.
All applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.
For our complete EEO and Pay Transparency statement, please visit https://www.mclaneco.com/legal/employment/