Cyber Security Architecture Manager

Title : Cyber Security Architecture Manager

Reporting to: Ian Moore

WL: WL2A

Location: Port Sunlight ( Kingston possible)

Unilever is one of the world’s leading consumer goods companies with operations in over 190 countries and serving 3.4 billion consumers every day. Unilever delivers best in class performance with market making, unmissably superior brands which include Dove, Knorr, Domestos, Hellmann’s, Marmite and Lynx. Our strategy begins with a purpose that places our consumers at the heart of everything we do, “Brighten everyday life for all”.

Role Purpose:
Unilever’s Cyber Security team is a global, product-led function aligned to the NIST Cyber Security Framework. We deliver capabilities across governance, protection, detection, response, and recovery to safeguard our people, operations, and digital assets. Operating alongside our Technology and Data teams, Cyber Security enables secure innovation and resilience across our global business. Our structure is built around product families and risk-based priorities, with teams embedded across regions and business units.

The Cyber Security Architecture team are accountable for fulfilling eight distinct services:
1. Cyber Security Reference Architecture
Build and maintain a Security Reference Architecture (SRA) and Cyber Product Architectures for Unilever to document required capabilities and existing technologies.
2. Technology Assessment
Maintain a framework and reporting to assess and demonstrate the level of maturity and effectiveness of security technologies in the Security Reference Architecture.
3. Technology Roadmaps
Create and maintain high-level roadmaps for improving the effectiveness, utilisation, and or coverage of security technologies and identify opportunities for consolidation.
4. Technology Investment
Support development of the business case for investment, required operating model, and high-level design for new capabilities coming through the pipeline.
5. Vendor Engagement
Through vendor relationships, keep abreast of technology roadmaps for existing vendors and identify opportunities for technology enhancements.
6. POCs
Plan and delivery POCs to evaluate new technologies and/or features in line with the Security Reference Architecture.
7. Service Development
Support transition into project/service and provide ongoing assessment of value potential across Unilever based on vendor capabilities.
8. Security Innovation

Maintain a view of vendor and technology landscape to identify new and emerging industry trends, capabilities and innovations, relevant to Unilever’s Security Reference Architecture.

Based on the aforementioned strategic scope, the role of the Cyber Security Architecture Manager is to clearly understand the requirements our Identify, Protect, Detect, and Respond teams have in their aim of reducing Cyber Security Risk at Unilever and to then align those requirements to a carefully selected landscape of technologies. This careful selection of technologies needs to encompass objective consideration for cost, simplicity in vendor landscape and efforts to ensure that we do not overlap, too extensively, capabilities from different vendors.
The second facet of the role is to stay abreast of Cyber Security technology advancements across our existing vendor landscape and beyond. Being aware of product advancements and shifts in the sector and vendor landscape enable us to surface these opportunities and insights to our Identify, Protect, Detect, and Respond teams.

Role Summary:
This role will report into the Senior Cyber Security Architecture Manager wherein the incumbent will proactively develop, shape, and implement the strategic approach to security architecture within Unilever.
The incumbent into this position will be expected to manage direct reports of WL1 and/or Apprenticeship placements in their team.

Main Accountabilities
• Becoming a trusted advisor in Security Architecture, pro-actively providing security leadership and guidance to Cyber Security NIST Product Teams, Projects and Third Parties.
• Developing and designing Cyber Security solutions, in line with NIST CSF Product Architectures that will be adopted for the protection of OT, IoT, IT infrastructure, Hybrid Cloud, Zero Trust and IT applications.
• Development and implementation of the services under the remit of the Cyber Security Architecture strategy.
• Advising on security best-practice on cyber elements of business initiatives.
• Scanning the market for security solutions and evaluation through Proof of Value and Proof of Concept activities
• Advising on security architecture implementation to facilitate world-class security solution design and ensure Unilever’s cyber protection is continually reviewed and improved to reflect emerging new threats.
• Creation of solution designs that underpin our broad ranging global Cyber Security Transformation Programme ensuring solutions are effectively designed and implemented.

Key Skills and Relevant Experience

Skills:
• Excellent written and verbal communication skills, being able to be understood by both technical and non-technical colleagues.
• Ability to collaborate with multiple stakeholders across the globe to design programs that meet the requirements of the organization & strengthens the resilience posture of Unilever.
• Ability to manage conflicting priorities and diverse stakeholders.
• Evidence of Cyber Security Training, Research and Certifications will be viewed positively.
• Should have sound knowledge of IT Disaster Recovery scenarios and Cyber related Business Continuity Planning.
• Excellent analytical, problem solving, presentation, and critical thinking skills.
• A sound understanding of Cyber Security Risk and its interplay with compliance to Standards, Controls, and Frameworks such as NIST, MITRE, and ISO.

Technical Skills:

A basic appreciation of:

• Threat Modelling and risk analysis.
• OT/IoT Security: Industrial Control Systems, SCADA, IoT device hardening.
• Cryptography.

A working knowledge of:

• AI/ML Security: AI governance, model risk management.
• Offensive Security Knowledge: Penetration Testing, Red Teaming, EASM.
• Secure Software Development and Coding: CI/CD pipeline security, code scanning, SAST/DAST, OWASP Top 10, API security, GitHub security, Container security (Docker, Kubernetes

Proficient in the following technologies:

• Identity & Access Management (IAM): SSO, MFA, Entra ID, RBAC, Privileged Access Management
• Network Security: Firewalls, IDS/IPS, Zero Trust architectures.
• Cloud Security: AWS, Azure, GCP security controls, CNAPP, CSPM.
• Endpoint & Server Security: EDR/XDR, hardening, patch management.
• Threat & Vulnerability Management (TVM): CVSS scoring, EPSS.
• Security Operations: SIEM, SOAR, XDR, DFIR.

Experience:
• At least 5 years of experience in Technology, within a global organisation – ideally within Retail, Manufacturing, Pharma, Banking, or FMCG, or, a breadth of experience with a range of employers across sectors.
• Ideally, at least 3 years of work experience in a role in Cyber Security, Information Security, or Enterprise Architecture.
• Good strategic and operational business awareness, customer concerns, with a deep understanding of the key drivers, levers, issues, and constraints of digital businesses.
• Understanding of global best practices / standards (e.g., NIST, CIS, MITRE), Information Security standards and controls, and business continuity and disaster recovery.
• Experience with cloud platforms (Azure, Google Cloud) and their resilience features.