Apply now »

Business Information Security Officer

Business Information Security Officer

Slough, Berkshire

Competitive Salary & excellent benefits package

 

The Business Information Security Officer (BISO) will be the primary point of contact between Cyber Security and one of our global functional teams (Sales/Marketing, Digital/eCommerce, Supply Chain, Safety/Quality/Regulatory/Compliance (SQRC), and Core (Legal/HR/Finance)) as those teams support our global business units – Health, Hygiene and Nutrition. You will develop a deep understanding of our functional teams and the business units, their IT plans and supporting activities based on the functional team you support.

 

The BISO will be responsible for establishing strong relationships with their functional team leadership and business counterparts to help identify, assess, and manage information security risks.  Meeting compliance requirements is important, but not sufficient to help manage cyber risks for Reckitt’s business. Where required, governance processes will need to be developed to help facilitate ongoing progressive engagement. It is important to note that functional team engagement will be continuous to ensure business requirements and needs are prioritised, communicated, and satisfied.

 

The BISO will have a sound understanding of cyber security and risk principles, reinforced by present and emerging technologies in the field of Cyber defence. This will emerge into guidance and support for our business units through SME knowledge, and support in adherence against Reckitt cyber policies and procedures.

 

Core responsibilities:

  • Establish a strong relationship with the global functional team through progressive engagement and stakeholder management
  • Help understand / develop a detailed picture of the global business unit’s infrastructure e.g., cyber critical systems, important business information and physical assets, key initiatives and projects, core processes etc
  • Function as a primary interface between business function and the Cyber team
  • Actively and routinely engage with management to ensure a free flow of information between the business function and the Cyber team
  • Regularly report to senior management on appropriate issues and metrics, as well as the overall status of the security program within the business function
  • Provide strategic guidance as required to drive best practice and the consistent application of security controls
  • Promote Cyber and IT processes (e.g., Risk and Demand management, vulnerability assessment and red team exercises) within the business function and drive customer satisfaction by providing active support to both business and cyber teams
  • Help drive broader use of cyber risk management processes, risk mitigation, and tracking of risk as Reckitt moves toward a culture of risk management across the organization
  • Support system owners and provide guidance related to access, usage, storage, and sharing of all data including existing and emerging data
  • Support the secure use of third-party providers within the function
  • Work with the Security Operations to identify emerging threats, advise relevant stakeholders and support appropriate courses of action
  • Support the respond and recover processes associated with Security Incident Management including, but not limited to, planning for, and implementing disaster recovery and business continuity plans
  • Work with internal and external auditors and support the implementation of recommendations
  • Actively support the execution of business initiatives – from ideation to implementation.

Key challenges:

  • Building strong relationships to promote cyber objectives and principles – as a fast paced, dynamic organisation, it is imperative you embed cyber and cyber risk management at the heart of projects and initiatives to ensure security and privacy by design
  • Working in a matrix environment with Global Competency Centres, IMEX, Business Units, Quality teams and external vendors
  • Holding technology partners to account in the service and delivery of contractually agreed services.

 

Required experience / Qualifications:

  • Strong experience and ability to build relationships with business stakeholders, and ensure cyber concepts are translated, while accommodating for business requirements
  • Highly skilled in the field of risk management and concepts surrounding risk assurance
  • Wide field of exposure to information security frameworks, and in-depth knowledge and experience of at least one framework e.g., ISO 27001/2, NiST, COBIT, ISF SoGP etc.
  • Security related certifications (e.g., MSc in Information Security, CISM, CISSP, GSNA, GCFA, GPEN, CRISC, MoR, GSSP, CEH etc)
  • Experience of influencing and developing teams of Information Security professionals
  • Strong record of managing third parties in the delivery of high-quality service and holding them to account where service quality falls short
  • Good history in building and developing strong relationships with suppliers - this will include engendering a common culture
  • Delivery of service quality within an ITIL framework
  • Excellent communications skills – both oral and written
  • Good problem-solving and analytical skills
  • Ability to manage and prioritize multiple tasks whilst operating independently and within a team
  • Strong interest in understanding cyber’s role in Reckitt business operations and success.

 

Equality

All qualified applicants will receive consideration for employment without regard to age, disability or medical condition; colour, ethnicity, race, citizenship, and national origin; religion; pregnancy, family status and caring responsibilities; sexual orientation; sex, gender identity, gender expression, and transgender identity; protected veteran status; size or any other basis protected by appropriate law. 


Job Segment: Nutrition, Healthcare

Apply now »