Head of Information Security Operations

Overview

PURPOSE & IMPACT: This role is known for …

Safeguard Nomad Foods environments against the risks of cyber threats by ensuring adequate controls and compliance are in place. Establishing and maintaining the enterprise vision, strategy, and programme to ensure information assets and technologies are adequately protected. This role is crucial for managing risk, implementing security measures, and ensuring compliance with various regulations and standards. Lead on Cyber Security Incident Response.

Responsibilities

• Direct the design and implementation of security systems and controls to protect Nomad Food's information and technology assets
• Manage and lead incident response activities, ensuring timely resolution and root cause analysis of security incidents
• Ensure accurate and complete reporting on the information security programme for key stakeholders, the Board, and internal committees
• Ensure appropriate frameworks and testing is in place for application security, access control and identity management, threat modelling, secure coding practices, encryption, data classification and monitoring
• Work closely with the IT department and other stakeholders to ensure seamless integration of security controls into IT infrastructure and operations
• Stay current with emerging security trends, threats, and technology solutions to ensure the organisation maintains a robust security posture
• Identify appropriate technology / data sources and drive the collection of data necessary to effectively evaluate threats
• Communicate threat intelligence and vulnerability management options
• Working with and managing the MSSP, ensure continuous monitoring and management of security measures across the enterprise
• Ensure updates are applied and improvements to maintain the security and integrity of enterprise architectures
• Oversee patch management and security updates to ensure ongoing compliance and risk mitigation
• Ensure data and systems are securely retired or transitioned without exposing the enterprise to risk
• Analyse, develop and set the OT/ICS manufacturing and business operations cybersecurity strategy
• Define OT security standards and guidelines and advise the SU teams on defining and implementing OT security roadmaps to adopt the defined OT security guidelines
• Define the tooling and processes to increase cyber resilience in OT environments to an acceptable level for Nomad
• Build relationships with business units to deliver security-by-design controls incorporated into projects, architecture, infrastructure and applications
• Build effective relationships with 3rd parties / contractors so that the team can be augmented to ensure smooth delivery
• Drive continuous process improvements for cyber operations and benchmark them with industry standards
• Work closely with the Cyber GRC Manager to instil cybersecurity policies and practices throughout business units to address security operations, incident response, application security and infrastructure
• Provide disaster recovery and business continuity planning advice when working with leaders for business and cybersecurity resiliency and coordinate regional responses and post-incident reviews and action plans to prevent further occurrences
• Proactively identify and document threats and track security and track remediation plans, exceptions and control deficiencies that may impact the operations and address them regularly

Qualifications

• Bachelor's degree in related field or equivalent experience
• CISSP or other security related certification
• 7-10 years in a combination of risk management, cyber security and IT jobs