Overview
PURPOSE & IMPACT: This role is known for …
Safeguard Nomad Foods environments against the risks of cyber threats by ensuring adequate controls and compliance are in place. Establishing and maintaining the enterprise vision, strategy, and programme to ensure information assets and technologies are adequately protected. This role is crucial for managing risk, implementing security measures, and ensuring compliance with various regulations and standards. Lead on Cyber Security Incident Response.
Responsibilities
1. Direct the design and implementation of security systems and controls to protect Nomad Food's information and technology assets
2. Manage and lead incident response activities, ensuring timely resolution and root cause analysis of security incidents
3. Ensure accurate and complete reporting on the information security programme for key stakeholders, the Board, and internal committees
4. Ensure appropriate frameworks and testing is in place for application security, access control and identity management, threat modelling, secure coding practices, encryption, data classification and monitoring
5. Work closely with the IT department and other stakeholders to ensure seamless integration of security controls into IT infrastructure and operations
6. Stay current with emerging security trends, threats, and technology solutions to ensure the organisation maintains a robust security posture
7. Identify appropriate technology / data sources and drive the collection of data necessary to effectively evaluate threats
8. Communicate threat intelligence and vulnerability management options
9. Working with and managing the MSSP, ensure continuous monitoring and management of security measures across the enterprise
10. Ensure updates are applied and improvements to maintain the security and integrity of enterprise architectures
11. Oversee patch management and security updates to ensure ongoing compliance and risk mitigation
12. Ensure data and systems are securely retired or transitioned without exposing the enterprise to risk
13. Analyse, develop and set the OT/ICS manufacturing and business operations cybersecurity strategy
14. Define OT security standards and guidelines and advise the SU teams on defining and implementing OT security roadmaps to adopt the defined OT security guidelines
15. Define the tooling and processes to increase cyber resilience in OT environments to an acceptable level for Nomad
16. Build relationships with business units to deliver security-by-design controls incorporated into projects, architecture, infrastructure and applications
17. Build effective relationships with 3rd parties / contractors so that the team can be augmented to ensure smooth delivery
18. Drive continuous process improvements for cyber operations and benchmark them with industry standards
19. Work closely with the Cyber GRC Manager to instil cybersecurity policies and practices throughout business units to address security operations, incident response, application security and infrastructure
20. Provide disaster recovery and business continuity planning advice when working with leaders for business and cybersecurity resiliency and coordinate regional responses and post-incident reviews and action plans to prevent further occurrences
21. Proactively identify and document threats and track security and track remediation plans, exceptions and control deficiencies that may impact the operations and address them regularly
Qualifications
22. Bachelor's degree in related field or equivalent experience
23. CISSP or other security related certification
24. 7-10 years in a combination of risk management, cyber security and IT jobs