Job Description :
Job Title:
Global Head of Security Architecture
Level:
L4
Reports To:
CISO
Context & Scope:
Information Management & Security (IM&S) is committed to protecting Diageo brands, revenue, reputation, and employees through a global program including security standards and policies, security patterns, information risk management, and compliance. The Global Head will manage a team of Security Architects to ensure security by design for all D&T programs, value streams, and technology services.
Role Dimensions:
The Global Head will assist in the preparation of portfolio budgets for IM&S programs including estimations for hardware, software, and resources to manage and support new technology services. Achieve a 50% cost chargeback on all Security Architects to portfolio projects.
Market Complexity
This is a global role that requires the Global Head to interact with leaders from various teams, like Project management, Enterprise architecture, Value Streams, in the identification of the programs relevant to IM&S and the assignment of Security Architects to projects.
Global Leadership Responsibilities
Apply information security architecture knowledge and experience to deliver a progressive Security Architecture program. Oversee the development and maintenance of security architecture principles, standards, policies, and security patterns. Follow industry best practices in security architecture to ensure the IM&S Security Architecture function maintains a top quartile benchmark ranking amongst peer consumer packaged goods companies.
Purpose of Role
Develop security architecture solutions that will support the IM&S strategy, mitigate enterprise threats and risks, and will guide architects/engineers to design/build secure systems. Maintain the library of security patterns that will be used in the high-level design of security solutions. Ensure that there is strong alignment with Enterprise Architecture on security architecture standards and patterns so that new security solutions are future proofed.
Top 3-5 Accountabilities
Build a working knowledge of the D&T value streams to determine where the Security Architects should engage on portfolio programs. Meet with Plan Business Partners throughout the year to review Project Allocation Checklists and determine the requirement for Security Architects. Track and manage the assignments of Security Architects to portfolio projects to ensure an even workload balance and to achieve the target 50% cost chargeback. Lead the Security Architects in the identification and mitigation of inherent (uncontrolled) and systemic (possibility of widespread failure) security risks. Perform as a security architect on critical portfolio projects.
Work Experience & Skills
Work Experience/Skills PREFERRED:
Minimum of 15 years of Information Security experience including 5 years’ experience in designing security technologies.Broad knowledge of IT security vendors and products.Experience with cloud services including Microsoft Azure and Amazon Web Services.Depth and breadth across the core bodies of technical information security including a few of the following: identity and access management, mobile security, network security, intrusion prevention, endpoint detection and response, privileged access management, rights management.Vigilant in watching the changes in the industry /technology / products and apply the changes in the security solutions.
Required Education:
Bachelor’s degree
Preferred Certification:
SABSA or TOGAF architecture methodsCISSP certificationExcellent English oral and written communication skills.Experience in working in a global, multinational organizsation.Experience in designing security initiatives in a large organization.Ability to build and maintain relationships with peers and stakeholders in a global organization.Ability to represent Security architecture in various internal forums.Ability to mentor team and guide them to reach their aspirations.
Barriers to Success in Role
Inability to build working relationships amongst leaders in Plan, Transform, & Run. Inability to provide clear oral and written communications. Inability to act quickly in the identification and mitigation of security risks.
Flexible Working Options
Individual must be willing to work close to UK business hours.
Worker Type :
Regular
Primary Location:
Bangalore Karle Town SEZ
Additional Locations :
1HQ, Budapest
Job Posting Start Date :
2023-11-30