Head of Security Architecture and Engineering
- Dyson
- Malmesbury, Wiltshire
- Aug 04, 2022
Full time
Engineering
Job Description
Why the Enterprise Security team at Dyson?
Scroll down for a complete overview of what this job will require Are you the right candidate for this opportunity
At Dyson, we research, design, manufacture and sell a range of cutting-edge, technology enabled products. We constantly innovate, exploring new markets and technologies, connecting to our customers and products in new ways. As a "multi-dimensional" organisation, Dyson's technology solutions support a whole range of functions worldwide - everything from secure research facilities, to AI enabled robotic manufacturing, to apps which connect owners to our products, to our global physical and online retail footprint.
This presents a highly complex, challenging and ever-evolving cyber risk landscape, and a need for continual review and vigilance to reflect emerging new threats. With board level commitment, and a team backed by a significant investment programme, this newly created role reflects the importance of world class cyber defence and security engineering to Dyson. There's ample scope to develop technical expertise, leadership, business partnering and programme management skills.
About you
We're looking for:
A thought-leader who inspires others to achieve outstanding results
A true champion of diversity, who demonstrates sensitivity to the diversity of cultures across our operations
Intellectual agility, with the ability to apply it to a wide range of business contexts
An exceptional track-record of building enterprise security architecture and engineering functions, including setting up best in class enterprise security capabilities
Broad cyber security subject matter expertise, acquired in the context of a complex, multinational environment
Ability to navigate business complexity, risks and uncertainty, and make evidence-based decisions and recommendations
The business partnering and communication skills required to influence widely at a senior level
Ability to coach others in agile and iterative technology engineering styles and culture, continuously deliver business value, and maintain a high delivery cadence.
(See below for detailed technical requirements)
About the role
As one of two new leadership roles (UK & Singapore), you'll work closely with your APAC counterpart to build and manage two regional Digital Security Architecture functions. Your aim is frictionless security, which enables the business to achieve output and uptime goals through cyber resilience services and a strong cyber security culture
As part of the Cyber Security Architecture Leadership team, help define and iterate Dyson's Cyber Security Strategy, Transformation Roadmap, and Governance Framework
Lead a regional team of security architecture experts, provide a supportive environment that attracts and retains talent
Act as a trusted advisor, provide security leadership and guidance to business divisions, projects and 3rd parties. Support project teams with high and low-level security consultancy
Influence stakeholders: IT architects, developers and engineers, programme managers, business data owners. Build relationships, and business confidence in actions and recommendations.
Develop and implement digital security blueprints for the design, build and maintenance of e.g. products, manufacturing plants, connected platforms and devices, IT infrastructure and applications
Detailed technical requirements:
Expert knowledge:
Security tools, techniques and best practice within enterprise environments
DevOps practices, embedding security in the software development lifecycle
Current industry security threats, challenges and mitigation techniques
Track record in operational security architecture and engineering in at least two of the following three areas:
Embedded product software
Operational Technology / manufacturing
IT applications / infrastructure / Cloud
Understanding of:
IT Security Controls
Identify Access Management
User Behaviour Analytics
Data Loss Prevention
SIEM
Incident Response
Industry standard frameworks (e.g. ISO 2700x, NIST, ITIL)
Best practices (e.g. CIS, SANs, OWASP, CSA)
Regulations (e.g. PCI DSS, GDPR, China CSL).
Experience may include
Network & Infrastructure Security
Application Security
Cloud & Mobility Security (IaaS, PaaS, SaaS, CDN)
Data/Database Security, etc.
Dyson
Scroll down for a complete overview of what this job will require Are you the right candidate for this opportunity
At Dyson, we research, design, manufacture and sell a range of cutting-edge, technology enabled products. We constantly innovate, exploring new markets and technologies, connecting to our customers and products in new ways. As a "multi-dimensional" organisation, Dyson's technology solutions support a whole range of functions worldwide - everything from secure research facilities, to AI enabled robotic manufacturing, to apps which connect owners to our products, to our global physical and online retail footprint.
This presents a highly complex, challenging and ever-evolving cyber risk landscape, and a need for continual review and vigilance to reflect emerging new threats. With board level commitment, and a team backed by a significant investment programme, this newly created role reflects the importance of world class cyber defence and security engineering to Dyson. There's ample scope to develop technical expertise, leadership, business partnering and programme management skills.
About you
We're looking for:
A thought-leader who inspires others to achieve outstanding results
A true champion of diversity, who demonstrates sensitivity to the diversity of cultures across our operations
Intellectual agility, with the ability to apply it to a wide range of business contexts
An exceptional track-record of building enterprise security architecture and engineering functions, including setting up best in class enterprise security capabilities
Broad cyber security subject matter expertise, acquired in the context of a complex, multinational environment
Ability to navigate business complexity, risks and uncertainty, and make evidence-based decisions and recommendations
The business partnering and communication skills required to influence widely at a senior level
Ability to coach others in agile and iterative technology engineering styles and culture, continuously deliver business value, and maintain a high delivery cadence.
(See below for detailed technical requirements)
About the role
As one of two new leadership roles (UK & Singapore), you'll work closely with your APAC counterpart to build and manage two regional Digital Security Architecture functions. Your aim is frictionless security, which enables the business to achieve output and uptime goals through cyber resilience services and a strong cyber security culture
As part of the Cyber Security Architecture Leadership team, help define and iterate Dyson's Cyber Security Strategy, Transformation Roadmap, and Governance Framework
Lead a regional team of security architecture experts, provide a supportive environment that attracts and retains talent
Act as a trusted advisor, provide security leadership and guidance to business divisions, projects and 3rd parties. Support project teams with high and low-level security consultancy
Influence stakeholders: IT architects, developers and engineers, programme managers, business data owners. Build relationships, and business confidence in actions and recommendations.
Develop and implement digital security blueprints for the design, build and maintenance of e.g. products, manufacturing plants, connected platforms and devices, IT infrastructure and applications
Detailed technical requirements:
Expert knowledge:
Security tools, techniques and best practice within enterprise environments
DevOps practices, embedding security in the software development lifecycle
Current industry security threats, challenges and mitigation techniques
Track record in operational security architecture and engineering in at least two of the following three areas:
Embedded product software
Operational Technology / manufacturing
IT applications / infrastructure / Cloud
Understanding of:
IT Security Controls
Identify Access Management
User Behaviour Analytics
Data Loss Prevention
SIEM
Incident Response
Industry standard frameworks (e.g. ISO 2700x, NIST, ITIL)
Best practices (e.g. CIS, SANs, OWASP, CSA)
Regulations (e.g. PCI DSS, GDPR, China CSL).
Experience may include
Network & Infrastructure Security
Application Security
Cloud & Mobility Security (IaaS, PaaS, SaaS, CDN)
Data/Database Security, etc.
Dyson
About Dyson