Job Title
Global Head of Cyber Security Operations
About the Function:
Our Digital and Technology (D&T) team are innovators, delivering ground-breaking solutions that will help shape the future of our iconic brands. Technology touches every part of our business, from the sourcing of sustainable ingredients to marketing and development of our online platforms. We utilise data insights to build competitive advantage, supporting our people to deliver value faster.
Our D&T team includes some of the most talented digital professionals in the industry. Every day, we come together to push boundaries and innovate, shaping the digital solutions of tomorrow. Whatever your passion, we'll help you become the best you can be, creating career-defining work and delivering breakthrough thinking.
Want more jobs like this?
Get jobs delivered to your inbox every week.
About the role:
Information Management & Security (IM&S) is committed to protecting Diageo brands, revenue, reputation, and employees through a global program including security standards and policies, security patterns, information risk management, and compliance.
Global cyber operations is responsible for for management and monitoring of security technologies and controls to protect Diageo from cybersecurity threats using a strong set of processes. There is a command center which leverages the strong analytics and automation tools to minimize the risks in Diageo's digital, cloud, OT and legacy infrastructure.
The Global Head of Cyber Security Operations will provide the strategic leadership that aligns the transformation, execution and sustenance of security operations capability to address business requirements with security goals, objectives, threats, risks, and mitigation plans to minimize the risks in Diageo's digital, cloud, OT and legacy infrastructure.
Dimensions:
Financial
Build, transform, and sustain Cyber Security Operations global capability aligned to keep the spending within the agreed operating budget and portfolio plan. Driving Cyber Security Operations capability to deliver operational efficiency and productivity and have achieved the expected return on investment in terms of risk reduction, cost avoidance or cost reduction Stay up to date with the Security technologies and make recommendations for use based on business value
Market Complexity
This is a global role and interacts with the global Digital & Technology leadership Global Leadership Responsibilities, Responsible to build, transform, and sustain Cyber Security Operations capability to protect Diageo systems and information assets. Forward thinking mind-set to identify, detect, protect Diageo assets as per the SLA/OLA.
Responsible to keep the Cyber Operations capability at top-quartile
Working with key stake holders and business leaders to deliver top-quartile services
Purpose of Role
Manage and maintain Cyber Security Operations capability in the areas of people, technology and process Ensure the Cyber Security Operations sustains the capabilities required to stay in the Top Quartile of companies Align with the Security Strategy, Enterprise/Solution Architecture, GRC, Data Privacy on the goals and objectives of Cyber Operations Build and maintain strong cyber skills inhouse and develop/manage partner ecosystem to deliver top class cyber security operations services
Role Responsibilities:
Top 3-5 Accountabilities
- Accountable for defining the strategic direction, development, and daily effectiveness of cybersecurity platforms, engineering, and operations functions.
- Engage in proactive planning, including the adoption of new technologies, making sourcing decisions, and managing finances to ensure effective cyber operations.
- Oversee capacity management to ensure that cybersecurity infrastructure, resources, and capabilities are properly sized and utilized to meet both current and future demands related to cyber operations.
- Align operations with the evolving threat landscape by assessing assets to be protected, potential threat scenarios, and risks posed by malicious actors.
- Ensure intelligence on emerging threat patterns and adversarial tactics is integrated into security platforms and hunting hypotheses for proactive defense.
- Maintain up-to-date incident response plans and playbooks for various scenarios including data breaches, malware attacks, network intrusions, denial-of-service incidents.
- Continuously improve cybersecurity platform engineering processes]and operational workflows by leveraging metrics analytics to measure performance and identify areas for enhancement.
- Manage partners' service provider ecosystem efficiently for effective cyber operations.
- Manage in-house talent by providing direction mentorship strategies aimed at mitigating attrition.
Experience / skills required:
- Minimum of 18 years of broad information security experience including responsibility for direct line management of a security team
- Proven experience managing Cyber operations for large enterprises comprising heterogenous environment - Cloud, OT, Digital and Corporate environment.
- Experience in delivering optimal operation of security platforms and technologies such as Security Gateways, Endpoint Security/EDR systems, Identity systems, Security Analytics/SIEM solutions, cloud security platforms, offensive tools, intelligence solutions for brand reputation protection, automation tools, and orchestration platforms.
- Experience in providing thought leadership in advanced technologies such as AI/ML automations for adoption in an organization
- Extensive experience in managing service providers for delivering key cybersecurity services, with performance metrics and KPI baselines
- Experience in leading responses to security incidents by investigating incidents, containing them, coordinating with internal teams as well as external stakeholders, implementing remediation measures to prevent future occurrences.
- Experience in manging the implementation and enhancement of cybersecurity platforms and technologies, including evaluating new technologies, managing deployments, and ensuring that platforms meet the organization's security requirements.
- Experience in defining and operationalizing processes and workflows based on NIST standards and Cyber Kill chain/MITRE frameworks
- Experience in managing large security transformation initiatives, that could include migration to cloud, technology refresh and consolidations.
- Experience in automating operational activities, with the experience in SOAR and built in automation capabilities within the platforms
- Experience in managing escalations in a high pressure situations
- Experience in defining and producing required metrics
- Prepare and present high-quality cyber security reports for executives
- Excellent knowledge of Cyber security vendors and products and how they complement existing controls
- Participate on Crises discussions, security outbreaks, security project portfolio calls, security audit, and bench marking discussion.
- Excellent English oral and written communication skills
- Experience in working in a global, multinational organisation
Qualifications and Experience Required
- Bachelor's degree
- CISSP, CISM certification (desired)
- Security Product Trainings or/and Certifications
Flexible Working Statement:
Flexibility is key to our success. Talk to us about what flexibility means to you so that you're supported to manage your wellbeing and balance your priorities from day one.
Diversity statement:
Our purpose is to celebrate life, every day, everywhere. And creating an inclusive culture, where everyone feels valued and that they can belong, is a crucial part of this.
We embrace diversity in the broadest possible sense. This means that you'll be welcomed and celebrated for who you are just by being you. You'll be part of and help build and champion an inclusive culture that celebrates people of different gender, ethnicity, ability, age, sexual orientation, social class, educational backgrounds, experiences, mindsets, and more.
Our ambition is to create the best performing, most trusted and respected consumer products companies in the world. Join us and help transform our business as we take our brands to the next level and build new ones as part of shaping the next generation of celebrations for consumers around the world.
Feel inspired? Then this may be the opportunity for you.
If you require a reasonable adjustment, please ensure that you capture this information when you submit your application.