IT&D Senior Manager, Enterprise Information Security
We are Reckitt
Information Technology & Digital
Working globally across functions, you'll own your projects and process from start to finish, with the influence and visibility to achieve what needs to be done. And if you're willing to bring your ideas to the table, you'll get the support and investment to make them happen.
Your potential will never be wasted. You'll get the space and support to take your development to the next level. Every day, there will be opportunities to learn from peers and leaders through working on exciting, varied projects with real impact. And because our work spans so many different businesses, from Research and Product Development to Sales, you'll keep learning exciting new approaches.
About the role
Reckitt’s Cyber organisation provides the capabilities that protect our global business: safeguarding systems, detecting threats, and enabling fast, coordinated response and recovery. These services are supported by a clear set of policies, standards, and guidance that our system owners, architects, and operators rely upon every day.
To strengthen how we support our IT and Business partners, the Cyber function includes a team of Information Security Managers who act as the outward-facing ambassadors of our security agenda. This team plays a crucial role in identifying risk early, championing secure by design ways of working, and building strong, trusted relationships across the organisation.
This role offers the opportunity to shape how security is embedded across Reckitt, strengthening our ability to innovate safely and deliver value with confidence.
Your responsibilities
Cyber Advisory & Stakeholder Engagement
• Act as a trusted information security partner to business and technology leaders, providing clear, practical cyber guidance.
• Offer risk-based advice that enables secure delivery of business initiatives, projects, and change programmes.
• Translate technical risks into meaningful business impacts, ensuring stakeholders understand options and recommended mitigations.
• Build and sustain strong, collaborative relationships across IT&D, architecture, risk, and business teams to promote a positive security culture.
Cyber Control Identification & Oversight
• Define, share and explain the appropriate control requirements/objectives for a given asset.
• Support stakeholders in identifying appropriate security controls aligned to Reckitt’s policies, standards, and regulatory obligations.
• Advise on proportionate, risk aligned control design informed by business criticality and the evolving threat landscape.
• Ensure alignment with the Cyber Control Framework and contribute to its adoption and maturity across the organisation.
• Help drive continuous improvement of the control environment through insights, constructive challenge, and shared best practice.
Control Assessment & Assurance
• Conduct or oversee assessments to evaluate the design, implementation, and effectiveness of key security controls.
• Assess control maturity and identify vulnerabilities without requiring deep technical configuration expertise.
• Highlight gaps, weaknesses, and opportunities for enhancement in a clear, constructive way.
• Partner with control owners to agree and track remediation actions, ensuring progress toward stronger security outcomes.
Cyber Risk Management
• Identify, analyse, and evaluate cyber and information security risks across systems, applications, suppliers, and business processes.
• Support structured risk assessments, ensuring risks are clearly articulated with credible impacts, likelihoods, and treatment options.
• Provide evidence-based recommendations to support risk acceptance or mitigation decisions.
• Promote consistent, transparent risk management practices across IT&D and the business.
• Lead and orchestrate the mitigation activities for selected risks
Reporting & Governance
• Produce clear, concise cyber risk and control reporting for senior stakeholders, governance forums, and audits.
• Present risk insights, trends, and assurance outcomes confidently to management, directors, and risk committees.
• Support cyber governance activities, including policy adherence reviews, risk committees, and internal/external audit engagements.
• Monitor remediation progress and residual risks to ensure timely closure and informed decision making
The experience we're looking for
• Significant experience in cyber or information security risk management, governance, or assurance roles, ideally within a complex, global environment.
• Ability to assess, interpret, and articulate cyber risks in clear business terms, enabling informed and balanced decision‑making.
• Strong stakeholder management and relationship‑building skills, with the ability to influence and collaborate effectively across senior levels.
• Good understanding of common cyber security frameworks and standards, such as ISO 27001, NIST CSF, or equivalent.
• Excellent written and verbal communication skills, including the ability to prepare and present concise reporting for senior stakeholders.
• Ability to manage multiple tasks and priorities independently, while also contributing effectively as part of a collaborative team.
• Ability to build trust quickly and create an open, supportive environment where teams feel comfortable discussing risks and challenges
• A pragmatic, solutions‑focused approach to cyber risk management, balancing strong security practices with business enablement and practicality.
• High integrity and sound judgement when handling sensitive information and risk decisions
The skills for success
What we offer
Equality
Job Segment:
Counseling, Nutrition, Healthcare