Chief Information Security Officer & Chief Security Officer

A key aspect of the role is leading the detection and response of security incidents (in whatever form) globally and ensuring that Group business priorities can continue without the fear of security compromise. Leading the Global Security team means stretching and retaining a diverse and high performing team, managing budget priorities as well as acting as a figurehead within the General Counsel Leadership Team and broader Global Leadership Team.Main Responsibilities & Technical CompetenciesEnterprise Security StrategyDefine and implement the organisation’s global security strategy aligned with enterprise risk management, regulatory obligations, and business priorities.Enterprise security architecture and converged security strategySecurity governance aligned to NIST CSF and related standardsEnterprise risk assessment and cyber risk quantificationSecurity maturity modelling and capability developmentSecurity investment prioritisation and program governancePhysical Security and Global Security ProgramsEstablish and maintain a global Site Assurance Program applying proportionate, risk-based physical security standards across facilities and operations.Physical security systems including access control, CCTV, and intrusion detectionFacility risk and vulnerability assessment methodologiesIntegration of physical security monitoring with enterprise security operationsSecurity technology platforms and analyticsExecutive ProtectionLead a comprehensive Executive Protection Program supporting senior leaders and other high-risk individuals.Protective intelligence and threat assessmentExecutive risk management and secure travel planningDigital exposure monitoring and threat detectionGlobal Travel ProtectionProtect employees travelling internationally through proactive risk management and rapid incident response.Travel risk intelligence platforms and geopolitical monitoringReal-time traveller tracking and emergency notification systemsCrisis coordination and duty-of-care technologiesSecurity Awareness and Human RiskBuild a strong security culture through targeted, risk-based awareness and education programs.Human risk management frameworksPhishing simulation and behavioural security analyticsEnterprise security awareness platforms and program metricsPeople-Centred Security ControlsStrengthen organisational resilience through intelligent security controls that reduce human-driven risk.Insider threat detection and behavioural monitoringData loss prevention and adaptive authentication technologiesProduct Security and Anti-CounterfeitProtect products, supply chains, and brand integrity from counterfeiting, diversion, and illicit trade.Product authentication technologiesSupply chain security and monitoring frameworksIntelligence collection and analysis on illicit trade networksInvestigative collaboration with regulatory and law enforcement agenciesCorporate InvestigationsOversee global investigative capabilities addressing serious misconduct, fraud, and security incidents.Investigation governance frameworks and case management systemsDigital forensics and evidence handling standardsInvestigative analytics and intelligence reportingDevelopment of a global Centre of Investigative ExcellenceCyber Risk IdentificationIdentify and assess cyber risks to systems, data, and supply chains.Enterprise asset and data classification frameworksThreat modelling and attack surface managementThird-party and supply chain security risk assessmentRegulatory and policy compliance managementProtection and ResilienceImplement controls to protect systems, networks, and information assets.Identity and access management and privileged access controlsEncryption, data protection, and information governanceSecurity architecture across cloud, network, endpoint, and OT environmentsDetection, Response and RecoveryEnsure rapid detection, containment, and recovery from cyber incidents.Security Operations Centre (SOC) operations and SIEM platformsThreat intelligence and threat hunting capabilitiesIncident response frameworks and digital forensicsDisaster recovery and cyber resilience planningLeadership and GovernanceProvide visible leadership for the global security function and serve as the principal advisor on security risk to senior leadership and the Board.Set strategic direction and oversee operational performance across all security domainsBuild and develop high-performing multidisciplinary security teamsManage security investments, budgets, and resource allocationSupport the Global Corporate Leadership Team (GCLT)Lead engagement with the Global Leadership Team (GLT), Executive Leadership Team (ELT), and Board CommitteesAct as the senior figurehead for security across the GroupEnterprise security program managementSecurity performance metrics and reportingBoard-level cyber risk communication and governanceNous nous engageons à créer un lieu de travail où chacun se sent écouté, valorisé et soutenu, où nous incarnons « The Real Us*». La valeur que nous accordons aux différentes perspectives et expériences motive notre engagement en faveur de l'inclusion et de l'égalité des chances.

Lorsque nous intégrons des modes de pensée diversifiés, nous prenons des décisions plus réfléchies et découvrons des solutions plus innovantes. Ensemble, nous nous efforçons de mieux comprendre les communautés que nous servons. Cela signifie que nous voulons également vous aider à donner le meilleur de vous-même lorsque vous postulez à un poste chez nous.

Si vous avez besoin d'aménagements ou d'aide pendant le processus de candidature, veuillez en informer l'équipe de recrutement. Ces informations seront traitées avec soin et n'auront aucune incidence sur le résultat de votre candidature. *Soyons nous-même#J-18808-Ljbffr