Enterprise Security Architect

Royal FrieslandCampina has embarked on an ambitious strategy of ‘Our Purpose, Our Plan’. The goal is to Win in the market, whereby technology and digital are the key enablers. Cybersecurity is vital more than ever to assure us projected along this journey of creating new solutions and services towards achieving business objectives. As business and technology landscape is changing, we are seeking for an Enterprise Security Architect to help us further develop and implement our global IT security architecture.  

Enterprise Security Architect

Elvárásaink

To be successful in this position, you should bring in   
 
•    Good understanding of the business strategy, goals and risks
•    Experiences of building enterprise security strategy in a large scaled international organization
•    Experience in creating architecture roadmaps that cross the IT landscape and cover People, Processes and Technology 
•    Experience on building and designing Security Operations Centers (SOC)
•    Broad and strong understanding in all areas of security architecture, including Cloud (AWS, Azure, O365) and Web development
•    Demonstrated technical expertise in existing security and IT systems and an ability to keep pace with changing security and IT technologies
•    International experienced, including engaging, aligning and managing people across multiple cultures and countries
•    Extensive knowledge of security solutions on the market
•    Stay abreast of current and emerging security threats and design security architecture to mitigate them
•    Experience with architecture frameworks (e.g. TOGAF, SABSA), including the relationships between business, information, application and infrastructure & technology assets
•    8+ years of professional experience in running an information security function, including analyzing and applying information security risk, risk management, and privacy practices in consulting industry or enterprise environment, preferably a combination of both 
•    Experience working with regulatory compliance frameworks such as ISO, SOX, BASEL II, EU DPD, HIPAA, and PCI DSS
•    Strong organizational and interpersonal skills, with proven ability to influence engage, align people in cross-functional roles at all levels 
•    Ability to communicate technical possibilities effectively and efficiently to both technical and non-technical management and staff
•    Experience in Operational Technology (OT) is beneficial
•    Extensive experience in strategic planning, budgeting, and allocation
•    An advantage if you also have some of these certifications under your belt: CISA, CISSP, SABSA, CEH, GDED, GDIA, GDSA, GDAT, GSLC

Amit kínálunk

•    A highly skilled team of technology enthusiasts to work with 
•    Competitive salary and secondary benefits  
•    Flexibility at work (you can work from home too)  
•    25 days holidays 
•    Cross disciplinary career growth  
•    Learning opportunities (on job training, conferences, training certifications when they add value to your professional growth)  

Pozíció bemutatás

In your capacity as Enterprise Security Architect, you will work closely with CISO, Enterprise Architect and (security) solution architects and (security) specialists and are responsible for defining the cybersecurity architecture, and to design security principles that fit to security and regulatory requirements, highlights business objectives and prioritizes investments based on business risk. It is also your responsibility to design and define our SOC (Security operations center) roadmap, to design technology solutions at high level and to lead technology solution choices. You will also design the SOC use cases are designed and selected correctly and that SOC is optimized in the processes and technology and brings value to the investment. You are also responsible for selling the future investments of the SOC.

 

In this role you will be responsible for the following topics:
 
1.Security Architecture
•    Define security principles that provide sufficient guidelines for solutions architects in designing new solutions and services
•    Apply security architecture frameworks and defining a concrete, actionable security architecture (roadmap) for FrieslandCampina
•    Apply risk-based security methodology in security architecture components in order to define priorities; perform architecture risk assessments
•    Steer security architecture meetings with stakeholders such as OT, service providers, suppliers (software developers, system integrators) and solution architects
•    Evaluate and design Enterprise security roadmap 
•    Own Security Operations Center roadmap
•    Serve as an information security expert and trusted advisor to partners in IT and the business

 

2. Information Security Policy and Standards
•    Defining, reviewing and implementing information security policies and standards
•    Monitoring that information security policies and standards are followed
•    Periodically evaluate information security policies and standards

 

3. Communication
•    Communicates changes of information security policies and standards internally as well as to suppliers.
•    Maintain extensive communication network externally and internally and collaborate with other stakeholders (privacy/legal, OT, service providers)
•    Regularly communicate the updated information security architecture and roadmap to stakeholders.
•    Uses visualizations to explain the vision, analysis of opportunities and risk, choice and consequences

 

4. Information Security Risk Management
•    Identify and advise on information security risks in IT and business services and solutions, and highlights risks to the service owners and stakeholders
•    Supervise actions in case services or information is at risk or when threats warrant it
•    Identify trends relating to information security breaches, current security risks and incidents
•    Assess developments and trends for the organization and inform and advise management on these developments

 

5. Project Support
•    Project risk assessments and consultation, review security architecture, identify design gaps, and recommend security enhancements
•    Security audit result reviews and risk prioritization, especially on Web applications
•    Project support and solution consultation; guide suppliers by defining requirements for solutions and approve solution designs/risk mitigation
•    Participate in project meetings and inform projects on security processes, policies and requirements
•    Define and own project security risk assessment process
 

You will be an integral member of the Global IT Strategy and Planning platform team, consisting a group of passionate technical enthusiasts, who are recognized as our enterprise architecture experts, program management and strategic vendor management specialists. You will also be one of the most senior members of our security community, together who ensure the company governed by security guidelines. 

Jelentkezzen most
1  / 
JOB-ID: 40232 | Enterprise Security Architect, Netherlands
Basic information

Jelentkezés erre az álláslehetőségre

Kérjük, adja meg az adatait itt.

* Kötelező mezők

Biztosan kilép a pályázási folyamatból?

A gombra kattintva lezárja a folyamatot vagy ossza meg a nyitott pozíciót.