Unilever is one of the world\xe2\x80\x99s leading suppliers of Food, Home, and Personal Care products with sales in over 190 countries and reaching 3.4 billion consumers a day. Unilever has more than 400 brands found in homes around the world, including Persil, Dove, Knorr, Domestos, Hellmann\xe2\x80\x99s, Wall\xe2\x80\x99s, Ben & Jerry\xe2\x80\x99s, Marmite, Magnum, and Lynx. Faced with the challenge of climate change and the need for human development, we want to move towards a world where everyone can live well and within the natural limits of the planet. That\xe2\x80\x99s why our purpose as Unilever is \xe2\x80\x98to make sustainable living commonplace\xe2\x80\x99.

At Unilever, we\xe2\x80\x99re determined to achieve a culture where everyone can thrive, a culture where all individuals are treated fairly and respectfully, and where their uniqueness is celebrated. We\xe2\x80\x99re taking a holistic approach that focuses on how we can use the scale and reach of our business to have the greatest impact in our own workplace and beyond. We\xe2\x80\x99ve set clear goals to eliminate any bias and discrimination in our policies and practices, accelerate diverse representation in our leadership, and remove barriers for people with disabilities. At the same time, we\xe2\x80\x99re setting out to spend more with diverse businesses and increasing representation of diverse groups in our advertising. Find out more about our commitment to equity, diversity, and inclusion on our .

Unilever\xe2\x80\x99s Cyber Security organization is a multi-disciplinary team responsible for protecting the Confidentiality, Integrity and Availability of our Information and Operations. Our Cyber Security organization runs a 24/7 Security Operations Centre (SOC), oversees a robust Security Architecture and associated technology landscape, provides Cyber Security Solution Engineering and Risk Advisory to our business, and assesses the security of our vast technology estate, including factories, to name but a few areas. Cyber Security sits as part of the Business Operations organisations, as a peer to Unilever\xe2\x80\x99s Technology and Data functions and the broad Supply Chain agenda. Cyber Security is tasked with elevating, reporting on and influencing enterprise cyber security risk mitigation across Unilever. The Cyber Security function is made up of the Governance, Risk, Assurance, and Compliance (GRAC) team, the Tech & Ops team, the BISO teams, and the Office of the CISO.

Role Purpose:

This Information Security Lead role supports the BISO in securing Unilever\xe2\x80\x99s business in NAMET. This includes cyber risk assessment across the region, including for third parties, representing to the regional businesses our central security services, applying those services to determine gaps in the regional security posture, consulting on appropriate risk mitigation approaches, managing the regional security exceptions, cyber incident response in the region, and elevating and reporting into the central Cyber Security function. These activities will be conducted with a \xe2\x80\x98Risk Based\xe2\x80\x99 approach to help individual businesses manage cyber risk in their area.

Role Summary:

A vacancy exists for the Information Security Lead (ISL) for NAMET within Unilever\xe2\x80\x99s cyber function. The successful candidate will be responsible for the NAMET region achieving and maintaining Cyber Security objectives, standards, awareness, and compliance, defined using a \xe2\x80\x98Risk Based\xe2\x80\x99 approach. This leadership position will report to the regional Business Information Security Lead (BISO).

Key areas under this role delivered by the ISL team include:

Cyber security solution engineering and risk advisory across Unilever businesses, assuring appropriate risk identification, assessment, mitigation, and reporting.

Ensuring the deployment and running of security tooling in NAMET, in conjunction with the Tech & Ops team.

Ensuring the Security Operations Centers (SOC) have full visibility across the ecosystem and actively participate in incident response at the direction of the Head of Incident Response.

Developing and delivering risk reports for NAMET.

Tailoring cyber training and awareness in NAMET in alignment and partnership with the Cyber Training and Awareness Lead.

Leading cyber cultural transformation across NAMET in line with our Security Strategy and Transformation program.

Maintaining and effectively directing the timely closure of security exceptions in businesses while reporting status to the Governance, Risk, Assurance and Compliance (GRAC) team.

Providing standards and controls feedback, based on local implementation requirements to the GRAC team to help shape global policies and standards.

Partner with the BISO for Supply Chain and BISO for R&D to ensure appropriate cyber risk mitigation for those functional areas within their region of responsibility.

Testing business continuity planning (BCP) and disaster recovery (DR) in the region.

The position calls for a strategic individual with strong communication and influencing skills, who is able to roll their sleeves up tactically to understand business operations, digital transformation, cloud, applications, information technology (IT), operational technology (OT), internet of things (IoT) and Cybersecurity. This leader will utilize her/his knowledge and experience to assist with the implementation of an effective global cyber security program that ensures the overall cyber security posture of the company is aligned with business needs and balanced to protect in the evolving threat landscape. This role supports the Global CISO in building strong relationships with internal leaders and senior executives, along with the other senior Cyber Security leadership team, on matters of cyber security and cyber risk, to foster the execution of cyber security as a business enabler.

Main Responsibilities:

Responsible for cyber security solution engineering and advisory across Unilever businesses in NAMET.

Responsible for ensuring SOC visibility across NAMET.

Responsible for cyber risk reporting within NAMET to the CISO and to the business leaders.

Responsible for tailoring and delivering cyber training and awareness across NAMET.

Responsible for encouraging and leading the cyber champions network participation across NAMET.

Responsible for leading cyber cultural transformation efforts across NAMET.

Responsible for maintaining and effectively directing timely closure of security exceptions in businesses across NAMET.

Responsible for providing standards and controls feedback based on local implementation requirements/restrictions in order to refine global policies, standards and controls requirements.

Partner with corporate audit for planned cyber security audit review across their region of responsibility.

Identify, categorize and risk assess third parties for cyber security implications across their region of responsibility.

Attract, develop, and lead a team of Information Security Leads and subject matter experts across the region, as planned for in the central cyber security budget and headcount plan.

Key Skills, Experience and Behaviour:

Skills:

Excellent written and verbal communication skills and able to be understood by both technical and non-technical personnel.

Proven ability to lead and motivate a senior team.

The ability to lead through accountability with delegated responsibilities.

Ability to manage conflicting priorities and multiple tasks.

Stakeholder management and interpersonal skills at both a technical and non-technical level.

Outstanding influencing ability.

Ability to work in a collaborative environment.

Outstanding critical reasoning and problem-solving skills \xe2\x80\x93 sticking to the problem until it is resolved.

Customer-orientated, whether responding to queries or delivering new services.

Skills in Programme and Project Management.

While English is the business language of Unilever, business proficiency in regional languages such as Arabic is a definite plus.

Experience:

The role holder will have practical experience in Cyber Security.

Experience of leading major programs across a global organization.

Experience and proven track record in Cyber Security.

Experience in providing thought leadership, and driving a complex change agenda, and an ability to challenge the \xe2\x80\x9cstatus quo\xe2\x80\x9d.

Excellent strategic and operational business awareness, with a deep understanding of the key drivers, levers, issues and constraints of digital businesses.

Experience within a customer focused environment.

Knowledge of the applications or the technical landscape within the domain and experience of delivering Cyber Security projects to its demands.

Behaviour:

Candidates would be required to demonstrate the Unilever Standards of Leadership & live the values through showing the following behaviors:

Agility \xe2\x80\x93 Flexes leadership style and plans to meet changing situations with urgency. Learns from the past, envisions the future, has a healthy dissatisfaction with the status quo.

Talent Catalyst \xe2\x80\x93 Develops and magnifies the power of people. Creates an inclusive climate, empowering everyone to be at their best. Investing in people, coaching individuals, and teams to realise their full potential. Continually inspires powerful collaboration.

Passion for High Performance \xe2\x80\x93 Inspires the energy needed to win, generating intensity and focus to motivate people to deliver results at speed.

Unilever is an organisation committed to equity, inclusion and diversity to drive our business results and create a better future, every day, for our diverse employees, global consumers, partners, and communities. We believe a diverse workforce allows us to match our growth ambitions and drive inclusion across the business. At Unilever we are interested in every individual bringing their \xe2\x80\x98Whole Self\xe2\x80\x99 to work and this includes you! Thus if you require any support or access requirements, we encourage you to advise us at the time of your application so that we can support you through your recruitment journey.

Unilever