Cybersecurity Lead

Essentra Components are a global market leader in plastic injection molded, vinyl dip molded and metal components. We have a history of over 65 years, producing essential components across a huge range of industries and applications. Making it easier for our customers is our top priority. That's why we operate internationally in 29 countries across 4 continents. With every order, we offer a hassle-free experience through our 14 manufacturing facilities, 34 distribution centres and 40 sales and service locations.

We have over 45,000 standard parts and one of the world’s most extensive product offerings, all available for immediate dispatch and fast delivery. Our product range features caps and plugs, wire and cable management, flange protection, knobs, handles and grips, access hardware, PCB and electronics hardware. Our Vision is to be “The world’s leading responsible hassle-free supplier of essential industrial components”.

Please submit resume in English. Fluency in English, both spoken and written, is required for this position.

Job Description:

Essentra’s global Technology team’s vision is to create an amazing customer and employee experience, built on a modern, secure infrastructure, effective workspace tools and highly engaged, customer-focused support. We are a customer focused, technology and data driven business and recognize the key role outstanding technology professionals play in helping us achieve our goal.

The Cyber Security Team at Essentra provides data protection, cyber and information security capability across the global IT environment. We work across functions providing expertise and input into business programs and initiatives to drive improved security culture and compliance in a changing regulatory world. Our goal is to deliver appropriate security controls that protect the business, minimizing operational impact and interference in the daily work of our users.

From a technology perspective, a sample includes the implementation, operations and management of key security infrastructure across identity and access control, firewalls, endpoint (user and server), email and web, vulnerability assessment/remediation plus security monitoring platforms. From a process perspective, the security team provide security advice and direction across projects, drive compliance to standards and regulatory/legislative requirements, cyber security incident management, user access control & provisioning, end-user and application support for security-related issues, change management oversight, release management, business continuity planning and vendor management.

Ultimately, we make Essentra a safer place for frictionless business - internally and externally with customers and supply chain - which directly supports the stability and growth agenda. The Security Lead – Architecture & Platforms is responsible for the design, implementation, maintenance and continuous improvement of Essentra Security platforms and solutions. The role ensures Essentra maintains appropriate levels of defense in depth in all security domains to meet current and future security threats and challenges. The Security Lead will also play a key part in the assessment of software and projects that Essentra business functions propose. They will ensure thorough security assessments are completed, risks are highlighted through the Architecture Board process and appropriate controls are agreed and delivered as part of any implementation project.

Typical Accountabilities:

• - Accountable for the service provision and management of Security Solutions to the Essentra business
• - Ensure continuous improvement and adaption of security tools to provide suitable protection to the business.
• - Own Vulnerability Management and Continuous Threat Evaluation & Monitoring, providing visibility and working with IT teams and stakeholders to drive improvements and mitigate risks.
• - Responsible for management and oversight of Essentra’s SIEM solution, balancing security imperatives with cost management.
• - Oversee assessment of all new technologies and application’s implemented by Essentra to ensure appropriate risks are highlighted as part of the assessment process and controls are implemented and/or refined to mitigate where required.
• - Act as Subject Matter Expert and technology owner across a wide breadth of security technologies including: Web Protection/filtering, Cloud Firewalls, IPS/IDS, Web Application Firewalls, Vulnerability Management, CTEM/BAS, OT/IoT control and visibility, External DNS management, external certificate management, digital platform security (including container protection, DAST/SAST, brand protection), remote access, Email Gateways.
• - Provide security input and control to assist Essentra’s drive towards application footprint simplification
• - Ensure application lifecycles are managed across security tooling ensuring versions are kept current
• - Drive full value from all security tooling investment
• - Lead new security tooling delivery projects
• - Contribute to KPI/metric tracking across key technical security controls
• - Lead vendor relationship management across all solutions within their remit including arranging Quarterly Business Reviews
• - Manage all zero-trust technical solutions for 3rd party access and work with compliance to ensure appropriate validation and regular re-certification of access.
• - Develop and maintain a wider understanding of the security platforms and solutions market, helping select candidate solutions to improve current weaknesses or to deliver new solutions in line with the Cyber Security Strategy
• - Provide L3 support across all Cyber Security systems
• - Play a key role in the Cyber Security leadership team
• - Participate in and sometimes lead major Cyber Security Incident response
• - Act as line manager for 1 x Junior Cyber Security Engineer (Architecture & Platforms focused), ensuring appropriate training, guidance and development
• - Provide out of hours cover as required during incidents, changes and project go-lives
• - Perform related job duties as assigned.

Qualifications:

• - Experience working in a fast-paced Cyber Security position for at least 5 years
• - Experience working in the manufacturing industry is a plus.
• - Track record of delivering new solution implementations and continuous improvement
• - Comfortable working with autonomy and in an environment with constant interruptions, with guidance in only the most complex situations. 
• - Experience of supporting IT services in line with ITIL frameworks and toolsets 
• - Able to identify, prioritize, and solve complex infrastructure and application issues with strong analytical and problem-solving skills 
• - Understand multi-cultural and diverse working environments - across continents, religions, local working practices, beliefs 
• - Strong skills in the following key technologies: Zscaler (ZIA & ZPA), Tigera Calico, Akamai WAF, Network Security, Delinea Secret Server, Rapid 7 IVM, Pentera, Azure Sentinel (and associated technologies, connectors etc.), Proofpoint.
• - Strong vendor relationship management track record
• - Experience risk assessing new technologies and projects
• - Strong stakeholder management skills
• - Experience both leading and participating in response to major Cyber Security Incidents.
• - Experience as Cyber Security lead across a range of IT, Security and business projects
• - Zscaler and Proofpoint certified
• - Desirable to have CISSP certification, Guardicore and Microsoft Security Certifications  

We offer a competitive salary and bonus incentive, generous benefits and time off, and collaborative work environment.