At Shire, we are proud and grateful to employ military veterans and thank them for their contributions to our company and our country. See where your military experience can play a role at Shire by using our military skills translator job search tool below:
Unilever Lead Security Risk Manager – SAP/NON-SAP in Bengaluru, India
Job Title: Lead Security Risk Manager – SAP/NON-SAP
Be part of the world’s most successful, purpose-led business. Work with brands that are well-loved around the world, that improve the lives of our consumers and the communities around us. We promote innovation, big and small, to make our business win and grow; and we believe in business as a force for good. Unleash your curiosity, challenge ideas and disrupt processes; use your energy to make this happen. Our brilliant business leaders and colleagues provide mentorship and inspiration, so you can be at your best. Every day, nine out of ten Indian households use our products to feel good, look good and get more out of life – giving us a unique opportunity to build a brighter future.
Every individual here can bring their purpose to life through their work. Join us and you’ll be surrounded by inspiring leaders and supportive peers. Among them, you’ll channel your purpose, bring fresh ideas to the table, and simply be you. As you work to make a real impact on the business and the world, we’ll work to help you become a better you.
At HUL, we believe that every individual irrespective of their race, colour, religion, gender, sexual orientation, gender identity or expression, age, nationality, caste, disability or marital status can bring their purpose to life. So apply to us, to unleash your curiosity, challenge ideas and disrupt processes; use your energy to make the world a better place. As you work to make a real impact on the business and the world, we’ll work to help you become a better you!
Purpose of the Role: (why does the role exist)
Global Security/Controls Lead – Plan is to:
Construct Central Security & Compliance team to drive best practice/UL security standards and ensure compliance across the technology under EntOps.
The initial focus of this role will be on ensuring compliance ahead of UL Security standards and controls on systems under Platforms.
Moving forward this role will serve as a 1st point of contact for security, risk & compliance, vulnerability, pentest, internal and external audit, OEC, CSRM, GCAD, Infosec and other security and control related teams.
Scope of the Role
- The role of the Lead Security Risk Manager – Act as a single point of contact of Security, Risk, Compliance, Security Champion role, Audit and Control related activities on systems under Platform.
Security, Audit and Control Dimensions:
Set and implement user access controls and identity and access management systems based on the UL Standard and SOX controls.
Monitor network and application performance to identify and irregular activity.
Perform regular audits to ensure security practices are compliant.
Deploy endpoint detection and prevention tools to thwart malicious hacks
Set up patch management systems to update applications automatically
Implement comprehensive vulnerability management systems across all assets on-premises and in the cloud
Work with IT operations to set up a shared disaster recovery/business continuity plan
Monitor all operations and infrastructure to ensure its compliant with Unilever Security Standards
Maintain all security tools and technology
Monitor internal and external policy compliance.
Work with all platforms in Ent-Ops to reduce risk.
Aware of any changes in Audit policies and controls on regular basis and communicating the same to platform.
Detail out the security incident response program – Where it can be ensured on how a new policy change can be implemented across all systems.
Collaborate with Secure by design team (understand baseline security standards, assess impacts of implementation on the Platform and ensure that they are implemented for the Platform)
Act as a single face to Secure by Design Team on the compliance activities for the Platform.
Act as a Security Champion for the Platform/s. Play a role as second of defence for the CISO KPI control and treat a risk.
Collaborate with Global Security Compliance team on the any audit related control set up.
Assure the implementation of all aspects of the security related request.
Ensure that global security standards in documentation, coding and tools are implemented on the Platform, help coordinating efforts with various innovation teams.
Ensure that Security and Risk Management Awareness and Training that conducted within Platform at different level to empowering employees to help protect systems.
Producing, reviewing relevant compliance reports, following actions for the Platform.
SPOC for external & internal audit recommendations and action follow up with other teams.
Proactively monitor and manage the changes and implement security measures and controls within organizations, weighing the consequences of any action and remediation with tactical and strategic evaluations of workflows, dependencies, budgets, and resources.
Responsible for Security Governance meeting with respective team. (CSRM, OEC, Infosec, GCAD, Global Auth team...)
Deliverables of the role over next 6/12 months
Improve Security Compliance level of the systems under Platform
List of non-compliant items and share plan to be compliant
Reduce internal/external audit observation/deficiency and be sure that open observations are closed.
Improve/Deliver KPI target for ITSM/CMDB/ CISO KPI controls /LCM and Cybersecurity.
Minimum 3-5 years hands on experience in Security/Audit and Control area to understand importance of each control and Its risk on UL systems.
Experience working in a Global Security Project Implementation or Maintenance - demonstrable track record successfully managing projects at the highest technical and tactical levels, coordinating multi-discipline projects
Experience in working in a global organization with virtual teams. Energetic, self-starter, flexible, goal oriented.
Experience in the engagement of key, senior level stakeholders, along with proven ability to influence and manage relationships with those stakeholders
Experience in management and communication to ensure effective coordination with Platforms and Service owners.
Good understanding of ITIL procedures
Fluent in English
Organizational awareness / Multi-cultural sensitivity
Experience of working with teams spread across multiple locations
Highly developed interpersonal skills with ability to effectively communicate and influence decision-making with senior management
Job Category: Information Technology
Job Type: ITP Manager