Cyber Readiness Manager

Job Purpose

Cyber security is a top priority for AkzoNobel as for any global organization operating in the cyberspace. Our objective is to protect our information and digital assets (IT and OT) by reducing our cyber risk exposure in order to pursue our business objectives.
 
As part of the new cyber security strategy, supported by the ExCo,  we have recently redefined our security governance in line with the evolution of the threat landscape and modern best practices. In this regard the new Cyber Security and Compliance  department, under responsibility of the Global CISO, is responsible for Information and cyber security for the entire organization.

Cyber Security Readiness Manager, reporting to the CISO leads the Cyber Security Readiness team which is responsible for driving the entire organization in designing and implementing the technical security controls for reducing the cyber risk exposure on IT and OT domains. The team is responsible for performing technical security risk assessments on IT and OT assets and infrastructure by identifying technical security controls and solutions for reducing the cyber risk exposure. 
In addition, it provides requirements and guidance to the solution/domain architects  for identifying and deploying security technologies and solutions and secure solutions in both IT and OT domains  in line with security policies, standards, and best practices.  The Cyber Readiness Team provides guidance and requirements to the Architecture, IT Operations and OT operations for identify and deploy technologies and solutions for the risk reduction. 
Security Readiness team is the main interface with the First Line of Defense especially with IT, Manufacturing (with its 120+ factories) and R&D Digital, and support them in designing and implementing security controls and deploying secure solutions. 
We seek for an experienced leader able to develop and manage modern Security Readiness team and build solid and fruitful collaboration with key stakeholders within First Line of Defense in AkzoNobel.

Responsibilities

In this role, you will develop and manage the Security Readiness team with the following key responsibilities:
•    Perform technical security assessment for IT and OT solutions to identify weaknesses  and vulnerabilities and provide requirements and guidance for their resolution. 
•    Analyze of the attack and defense techniques and definition of security standards and guidelines to be implemented in IT and OT domains.
•    Define requirements and guideline for the deploying security technologies and solutions for both IT and OT domains. 
•    Define Security Standards and support to First Line of Defense (IT, ISC-Manufacturing, ISC, R&D) for designing security controls and procedures in line with Security Policies and security best practices. 
•    Design and deploy the Secure by Design methodology in AkzoNobel
•    Provide Cyber Security training and guidance for IT and ISC-Manufacturing personnel. 
•    Be the official interface with 4 Regional ISC Cyber Security focal Points and 120+ Site Cyber Security Officers (SCSO) in driving them in implementing Security controls within the factories. 
•    Provide technical support and guidance to the SOC for Threat monitoring, Vulnerability Management, and Incident Response by recommending tools, technologies and by supporting the analysis of incidents and alerts.
•    Support Cyber Risk Management and Compliance for managing the information and Cyber Security Policies, Standards and Guidelines. 

What do you bring?

Experience / Education 

•    At least 10 years experience in cyber security area in technical roles covering both IT and OT domains. 
•    Master’s degree in, computer science, computer engineering, mathematics, or a related field of study
•    Technical Security Certifications (e.g., CISSP, CompTIA Security, CEH Certified Ethical Hacker) or equivalent experience. 
•    Technical proficiency and experience with Cyber Security technologies and solutions at least in Network Security, Application Security, Cloud security, IAM, Endpoint security, Threat Management, endpoint security and OT security, DLP.
•    Knowledge of adversary TTP (Tactic, Technique, Procedures) like MITRE ATT&CK
•    Experience with Security Architecture framework and methodologies (OSA, SABSA)
•    In-depth knowledge ISO27001, NIST CSF, CIS, ISO/IEC 62433, NIST 800-82 R2 frameworks and related controls.
•    Broad experience in performing technical security assessments for infrastructure, solutions, processes, organizations.
•    Understanding of IT/OT processes and IT/OT Operations management 

Key Generic Competencies 

•    Proactiveness, energy and passion for cyber security
•    Strong people manager, team builder and team player 
•    Good communication skills, able to engage with stakeholders at all levels in the organization.
•    Strong analytical and problem-solving capabilities, structured thinker, and manager, combines a helicopter view with the ability to ‘dig deep’ where needed
•    Ability to work under pressure, in a multinational and multicultural environment.
•    Ability to manage (and grow) strategic relationships with 2-3 key external partners. 

What does AkzoNobel offer?

AkzoNobel is consistently rated as one of the top employers in The Netherlands.  

You will join a company that is committed to achieving real sustainability.

We offer great personal development opportunities and roles with breadth, depth of scope and impact.
We also offer comprehensive packages including:
•    Competitive Salary
•    STI Bonus
•    30 Days’ vacation
•    Hybrid working
•    AkzoNobel pension plan
•    Home to work allowance or public transport card
•    Access to a range of amazing benefits