Chief Information Security Officer

PHINIA•Auburn Hills, MI

About The Position

PHINIA: Advancing sustainability today, powering a cleaner tomorrow. PHINIA is an independent, market-leading, premium solutions and components provider with over 100 years of manufacturing expertise and industry relationships, with a strong brand portfolio that includes DELPHI®, DELCO REMY® and HARTRIDGE™. With over 12,500 employees across 43 locations in 20 countries, PHINIA is headquartered in Auburn Hills, Michigan, USA. At PHINIA, we Provide fuel systems, electrical systems, and aftermarket products and solutions of the highest quality — developed and manufactured responsibly — that are designed to enhance efficiency and reduce the environmental impact of vehicles, industrial machinery, and other applications. In doing so, we contribute to a cleaner tomorrow, treat our people and surrounding communities with respect, and hold ourselves accountable to robust ethical standards. PHINIA promotes and cultivates an inclusive culture and diverse perspectives, strives to maintain its reputation for excellence, thrives on the power of collaboration, and fosters the development of our talented employees. We believe in making a positive impact through our business and actions, and we take our collective responsibility seriously. We believe in building a brighter tomorrow for our employees as well as our customers and encourage you to learn about our long history, strong culture, new technologies, and future vision. We offer a strong local presence and interesting global opportunities. Join us on this shared journey toward a brighter tomorrow. The Chief Information Security Officer (CISO) is the enterprise leader responsible for developing, implementing, and managing PHINIA’s global cybersecurity program. This role ensures that information assets, digital processes, operational systems, and emerging technologies are protected across PHINIA’s ecosystem while enabling business growth, innovation, and operational resilience. The CISO serves as a strategic advisor and risk leader, partnering with executive leadership, business units, legal, technology teams, and others to assess, identify and manage risks from cybersecurity threats and strengthen our cybersecurity program and processes.

Requirements

Bachelor’s or master’s degree in computer science, cybersecurity, information systems, business administration, or a related field.
Minimum 10 years of experience across cybersecurity, IT, and risk management, including at least 5 years in a senior leadership role.
Strong track record of leading cybersecurity programs in global, dynamic, manufacturing or industrial environments.
Experience with contract negotiations, supplier risk management, and global security operations.
Deep knowledge of information security frameworks ( ISO 27001, NIST CSF/800‑53, ITIL, COBIT ) and regulatory requirements ( SOX, GDPR, TISAX , and industry‑specific standards).
Strong understanding of enterprise architecture, cloud security, OT/ICS security, identity and access management, and emerging technology risks.
Proficiency with SIEM, IDS/IPS, firewalls, endpoint security, vulnerability management, cryptography, and cloud security tools.
Up‑to‑date awareness of cybersecurity trends, digital business models, and evolving risk landscapes.
Visionary leader able to bridge business and technology, influencing without relying on formal authority.
Exceptional communication skills — capable of informing board‑level decisions and simplifying complex risk topics for non‑technical stakeholders.
Exceptional project management skills – capable of leading the design and implementation of enterprise wide projects and driving cross-functional alignment
Strong collaboration, stakeholder management, and change‑leadership skills.
Ability to drive accountability, foster a security‑first mindset, and motivate teams across dotted and functional reporting structures.
Demonstrated business acumen and the ability to align security strategies with enterprise goals.

Nice To Haves

Certifications preferred but not required: CISSP, CISM, CISA, CRISC or comparable credentials.

Responsibilities

Manage Governance & Build Knowledge
Lead & Enhance the Cybersecurity Function
Set Strategy Aligned to Business Priorities
Enhance Cybersecurity Frameworks & Controls
Build Internal & External Networks
Operate the Cybersecurity Function

Benefits

We provide compensation and benefits programs intended to attract, motivate, reward, and retain an incredibly talented, globally diverse workforce at all levels within our organization.
Our compensation programs are informed by market data and business needs, and we are committed to providing equitable and competitive compensation.
We are committed to providing our team with quality and competitive benefit programs, including health and well-being resources, family-centric policies, and an agile workplace program, where not precluded by collective bargaining agreements or national statutory plans.
Plans are benchmarked for competitiveness and value.
We provide formal development opportunities at all levels and stages of employee careers.
These opportunities are delivered in a variety of formats to make our portfolio of solutions agile, sustainable, and scalable to support our employees in developing the skills needed to succeed.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume