Business Unit Information Security Officer

Pinnacle Propane, LLC, a leading provider in the propane industry, is on the hunt for a dynamic and driven Business Unit Information Security Officer (BUISO) to join our growing team. If you are passionate about building relationships, identifying new business opportunities, and driving growth, we want to hear from you!

Why Join Pinnacle Propane?

At Pinnacle Propane, we pride ourselves on delivering safety, reliability, and exceptional customer service. Our commitment to innovation and sustainability positions us as a trusted partner for residential, commercial, and industrial propane solutions. Join us in making a difference in our community by providing top-notch propane services that power homes and businesses.

We value our employees and offer a comprehensive benefits package to support your well-being and work-life balance. When you join our team, you'll enjoy:

- Great Benefits: Including medical, vision, dental insurances, amongst others.

- Life Insurance: Financial protection for you and your family.

- Community Volunteering Day: A paid day off to give back to the community and make a difference.

- Paid Time Off: Generous PTO and company holidays to relax, recharge, and spend time with loved ones.

- Retirement Savings Plan: Employer contributions to help you save for the future.

Position Summary

All activities are to be prepared and executed in accordance with the SHV Energy Cybersecurity framework, SHV Information Security Program (SISP), as well as relevant global and local regulations, procedures, instructions, and guidelines. Promote cybersecurity awareness by addressing anomalies and ensuring compliance with Pinnacle Propane’s policies and standard operating procedures. Proactively integrate cybersecurity principles into new contracts and digital initiatives, aiming to prevent unsafe situations, incidents, and damages.

Essential Job Responsibilities

- Lead and coordinate information security initiatives

- Develop and implement security frameworks aligned with SHV Energy strategy

- Monitor and improve security programs and performance metrics

- Manage audits, compliance and remediation projects and programs

- Respond to and manage security incidents and alerts

- Align business risks with control frameworks (e.g., SHV SISP, SHV Energy IMPCT)

- Establish and maintain security awareness programs

- Collaborate with global security teams and stakeholders

- Support SOC operations and threat intelligence activities

- Timely evaluate and authorize both local and global vendor invoices in accordance with established contractual agreements

Strategic Leadership

- Define and communicate the enterprise-wide information security strategy and roadmap

- Align security initiatives with business goals and regulatory requirements

- Establish and maintain the organization’s risk appetite and governance structure

- Lead the development and continual improvement of the Information Security Management System in line with SHV Energy framework

Stakeholder Engagement

- Build consensus across departments for security initiatives and controls

- Collaborate with internal teams and external partners to ensure compliance and resilience

- Serve as a liaison between technical teams and executive leadership

- Represent the organization in security-related forums and audits

Governance & Oversight

- Monitor and report on security performance to senior leadership

- Oversee internal audits, ensuring alignment with control frameworks

- Ensure regulatory compliance and policy adherence across business areas

- Lead incident response planning and execution

Cultural Influence & Change Management

- Promote a culture of security awareness and accountability

- Drive behavioral change through targeted awareness programs

- Address resistance to new security controls and foster adoption

- Mentor and develop future security leaders within the organization

Qualifications

Essential –

- Information Security Management Systems (ISMS)

- Risk assessment and mitigation strategies

- Data protection and privacy laws

- Business continuity and disaster recovery planning

- Security operations center (SOC) functions

- Vulnerability management and penetration testing

- Incident response and forensic investigation

- Program and project management skills to lead annual audit remediation initiatives

- Identity and access management (IAM)

- Secure software development practices

- Encryption technologies and secure protocols

Desirable –

- Regulatory compliance (e.g., GDPR, SOX, HIPAA)

- Cybersecurity frameworks (e.g., NIST, ISO 27001)

- Network and endpoint security tools

- SIEM platforms (e.g., Splunk, QRadar)

- Identity and access management (IAM)

- Cloud security (Azure, AWS, GCP)

- Encryption technologies and secure protocols

- Firewall and intrusion detection/prevention systems

- Secure software development practices

EEO Statement

Pinnacle Propane, LLC is dedicated to employing and maintaining a diverse team. We take pride in being an Equal Opportunity Employer, ensuring decisions are made irrespective of race, color, ethnicity, national origin, sex, sexual orientation, gender identity, religion, age, disability, veteran status, genetic information, or any other characteristics safeguarded by state or federal law.

Pinnacle Propane, LLC complies with the laws and regulations set forth in the EEO is The Law poster.

Additionally, Pinnacle Propane is dedicated to providing reasonable accommodations for job applicants with disabilities. Should you require assistance or an accommodation during the application process due to a disability, kindly email recruiting@pinnaclepropane.com.

Pinnacle Propane strives to ensure its careers website is accessible to everyone, including individuals with disabilities. If you encounter any difficulties accessing Pinnacle Propane’s careers website, please reach out to us at recruiting@pinnaclepropane.com so that we can offer the information or assistance you need through alternative methods and/or discuss a reasonable accommodation for the application process.

Disclaimer: Pinnacle Propane does not accept unsolicited resumes or applications from recruitment agencies. Any unsolicited information submitted to Pinnacle Propane by third-party agencies will be considered property of Pinnacle Propane, and we will not be responsible for any fees associated with such submissions.