Head of Security Architecture and Engineering

Accountabilities

• Leading a regional team of security architecture experts, providing a supportive environment that attracts and retains talent.
• Working as part of the Cyber Security Architecture Leadership team, you will become the trusted advisor in your area, pro-actively providing security leadership and guidance to business divisions, projects and 3rd parties.
• Developing, and the leading the implementation of, digital security blueprints, which will be adopted for the design, build and maintenance of, Products, Manufacturing plants, Connected platforms and devices, IT infrastructure, and IT applications.
• Implementing security best practice on cyber elements of business and IT-led initiatives.
• Play an active leadership role in the definition and iteration of the Dyson cyber security strategy, and the realisation of the resultant transformation roadmap.
• Lead security engineering operations to industrialize world-class security solutions and ensure Dyson's cyber protection is continually reviewed and improved to reflect emerging new threats.
• Lead the creation of solution designs that underpin our broad ranging global cyber security transformation programme ensuring world-class solutions are effectively designed and implemented.
• Manage vendor and supplier commercial relationships, continuously explore and implement cost effective measures to optimize security investment (technology & support model).
• Influencing a broad range of senior stakeholders in various teams across the business, including IT architects, developers and engineers, programme managers, and business data owners. Therefore, you will need to build rapport quickly and project confidence in your actions and recommendations. Throughout your tasks you will ensure your recommended solutions are cost effective, observe industry good practice, exhibit appropriate security governance, and that the technologies you choose are adequately implemented and secured to support the needs of the business.
• Cultivate core relationships between internal stakeholders and external partners and other third-party entities that support Dyson.
• Work alongside our CISO and Global Director or Security Architecture to contribute effectively to our Cyber Security Governance Framework.

About you

• We are looking for individuals with an exceptional track-record of building and running enterprise security architecture and engineering functions, encompassing a range of responsibilities including setting up best in class enterprise security capabilities.
• You must be practical not theoretical and be a supportive people leader who achieves success through working collaboratively and cross-functionally and attracting and retaining talent.
• You will have worked in similar roles and demonstrate awareness and sensitivity to the rich and varying cultures across our operations in Asia, Europe and the US.
• You will be a true champion of diversity and have a passion for giving your team new challenges and opportunities in a safe and supportive management environment.
• You will be able coaching people in agile and iterative technology engineering styles and culture, that continuously deliver business value and maintain a high delivery cadence.

Professional Experience

• Highly self-motivated with positive mindset & can-do attitude, and a strong believer of Security as an enabler to support business growth.
• Expert knowledge and hand-on implementation experience specific may include Network & Infrastructure Security, Application Security, Cloud & Mobility Security (IaaS, PaaS, SaaS, CDN), Data/Database Security, etc.
• Strong understanding of IT Security Controls, Identify Access Management, User Behaviour Analytics, Data Loss Prevention, SIEM, Incident Response.
• Practical knowledge of industry standard frameworks (ISO 2700x, NIST, ITIL, etc.), best practices (CIS, SANs, OWASP, CSA) and regulations (PCI DSS, GDPR, China CSL etc).
• Expert knowledge of security tools, techniques and best practice within enterprise environments.
• Expert knowledge of DevOps practices and embedding security in the software development life cycle.
• Expert knowledge of current industry security threats, challenges and mitigation techniques.
• Demonstrable experience of implementing Enterprise Security Architecture and Security Engineering organisations and best practice.
• Demonstrable experience of supporting project teams with high and low-level security consultancy, design and delivery, with a wide-ranging understanding of security considerations across key technologies across market-leading solutions.
• You will have a strong track record in operational security architecture and engineering in at least two of the following three areas of 1. Embedded product software 2. Operational Technology / manufacturing or 3. IT applications / infrastructure / Cloud.
• Ability to lead and manage a specialist-based, high-performing and multicultural team.
• Demonstrable experience of developing strong partnerships across senior management teams within complex businesses, you'll possess the strength of character and conviction to make tough decisions when required.
• Strong knowledge of managing various types of security partners and vendors, including service management and financial cost management.
• Ability to evaluate & articulate risks, develop consensus, raise awareness and provide thoughtfully considered security solutions to various key business stakeholders.
• Ability to translate and distil complex technical information across all levels of the organisation as required for the audience.
• Ability to effectively develop and manage all defined communication channels and relationship management with diverse stakeholder groups.
• Must be highly reliable, trustworthy, honest and commitment oriented.
•