IT Security Manager
Date: 14-Nov-2019
Location: Dublin, Ireland
Company: Ornua Co-operative Limited
Ornua - The Home of Irish Dairy and KERRYGOLD, is an agri-food commercial co-operative. Headquartered in Dublin, Ornua is Ireland's largest exporter of Irish dairy products, exporting to over 110 countries worldwide. It operates from 20 business units worldwide and has sales and marketing teams working in-market across all four corners of the globe.
At Ornua, we invest in our people. We foster a culture of continuous learning and improvement to enable you to advance your career at home or abroad. Our leaders will support your development, helping you flourish and be at your best, while we continue to grow.
Our work environment is stimulating as we focus on meeting the needs of our member co-ops, customers and consumers. That's why we encourage curiosity, innovative thinking and getting things done. We empower you to take responsibility and make your own decisions.
Wherever global expansion may take us, we never forget our roots and values. Inclusivity, acceptance and respect for our colleagues bring us closer together. So, wherever we collaborate, we are all proud of Ornua, and we do great things together.
Here at Ornua, we want to find people that understand and work with heart, with thought with vision, with drive - Ornua's core value
Ornua’s ICT department in Dublin provides a centralised ICT service to group companies in Europe, Africa, Middle East, China and America. In this newly created position, ICT Security Manager will leverage proven ICT Security experience combined with existing security systems deployed in Ornua group and built a strategy of Ornua ICT Security.
We are looking to recruit a talented individual who has a strong background in Information and IT Security, Data Privacy, Information Risk Management and Cloud Security, including experience of dealing with specific challenges in industry verticals relating to food and manufacturing sector in general and Agri sector in particular.
This role requires strategic and technical experience with proven results to lead the overall information security strategy, vulnerability management, incident management, execution of application security standards, and security monitoring. This role is also responsible for identifying, evaluating and reporting on legal and regulatory items, IT, fraud and cyber security risk to information assets, while supporting and advancing business objectives.
Key Areas of Responsibility:
- Being the SME, discover and investigate critical security vulnerabilities across on-prem, cloud and external presence
- Liaise with Ornua Legal to fulfil ICT responsibility of managing and protecting personal data to comply with GDPR
- Advice Senior ICT Leadership team across the delivery of complex security and privacy solutions
- Manage ICT security training and awareness program
- Security Incident Management - 2nd line response to Security Incidents. Support forensic response and problem management as required. Manage and undertake security assessments and approve changes, products and services from an IT Security perspective
- Conduct regular Vulnerability assessments, risk analysis and penetration testing and advise Infrastructure team to take remedial actions
- Implement Security Management and Security Governance best practices
- Monitor and Implement Security Solutions including managing Ornua footprints on Microsoft Azure Cloud
- Manage 3rd party support companies providing security-based solutions
- Perform on call services for security and network related issues outside normal working hours.
- Develop excellent day-to-day working relationships with all ICT teams, particularly the ICT Operations and Project Delivery Team
- Experience in reviewing and designing Network / Infrastructure Security Architecture (on-prem and Azure Platform)
- Ensure technology partners / vendors adhere to Company policies, procedures and standards
- Information Security Policy Development
- Maintaining and monitoring core and support security systems to ensure service continues
Education and Experience Requirements:
- Bachelor's degree in Computer Science, Engineering or other computer related discipline
- Master’s Degree in related field is preferred.
- 10+ years’ experience in supporting IT Security and related functions
- 7+ years of experience evaluating and deploying end-to-end cybersecurity technical solutions, including end point protection, IDS/IPS, SIEM, DLP, MFA, encryption, monitoring and similar solutions and technologies
- 5+ years of experience in designing, developing, implementing and/or managing cyber programs and solutions, including education and awareness, security incident response plans and key performance indicator reporting
- Demonstrable working knowledge of LAN/WAN topologies and protocols, with network devices such as firewalls, switches, routers and network load balancers.
- Proven track record and experience in developing information security programs, policies and procedures, including successful implementations in large enterprise environments
- Knowledge and experience in Tactical management of Cybersecurity Roadmap Development, Vulnerability Remediation and Risk Assessments, Comprehensive Patching and Asset Inventory, Penetration Testing, 3rd Party Vendor Assessments, Data Privacy (Including GDPR), Network Segmentation Testing and Improvements, Social Engineering awareness & prevention
- Management Experience - leading InfoSec Teams
- Experience leading teams and influencing senior management ideas and direction
- Excellent communication and presentation skills – including the ability to explain IT Security concepts and consequences to business leaders
- Flexible to work on multiple projects
- Take ownership of the ICT Risk Register
- Prior experience working within a global company, working across major geographic regions is preferred
- You will hold certification in one or some of, the following or equivalent:
- Certified Information Systems Security Professional (CISSP)
- Certified Information System Manager (CISM)
- Certified Information and Information Systems Control (CRISC)
Job Segment:
Agricultural, Engineer, Marketing Manager, Law, Agriculture, Security, Engineering, Marketing, Legal