BUA Foods is a leading Food and Fast-moving consumer goods (“FMCG”) business which processes, manufactures, and distributes food produce as well as packaged food. Our business operations comprise of five divisions, including Sugar, Flour, Pasta, Rice, and Edible Oils.
Summary
The Business System & Technology Manager will be responsible for overseeing the implementation of new technologies and systems within the company and ensure that these new technologies and systems are implemented properly, as well as training of employees on how to use them.
As a Business System & Technology Manager, you will take ownership of and manage the company’s IT infrastructure to identify, suggest and implement IT solutions that help drive the business forward. You will also monitor and maintain the security and stability of IT systems to ensure that they comply with industry standards and work as effectively as possible for the company.
The Business System & Technology Manager is responsible for protecting all BUA Foods’ digital assets against threats, such as security breaches, viruses or attacks by cyber-criminals. As a domain expert, you will take an active role in developing and implementing the BUA Foods Cybersecurity policies, raising awareness across the business on cybersecurity matters, identifying risks, managing cybersecurity incidents, assisting with cybersecurity audits and ensuring that BUA Foods is operating effective security controls.
You will be expected to drive and deliver across all IT Security requirements arising from policies, standards, projects, business processes, etc. and associated risks regarding confidentiality, integrity, and availability of information as (to be) processed, stored, retained in BUA Foods’ information systems.
Duties and Responsibilities
IT Governance
- Plan, design, deliver and manage the overall IT risk framework and policies.
- Champion and coordinate Cyber Security and IT risk activities across BUA Foods Plc in collaboration with wider risk governance functions.
- Provide expert advice to the company, including Information Security Steering Committee (ISSC), ensuring best practice for Information Security issues generally and on IT risk analysis/management.
- Lead on Risk and Information Security within the IT team, interfacing with the wider BUA Foods’ risk governance functions, maintaining risk management records and systems as appropriate.
- Provide support for SAP/ERM Automation Project.
IT Security & Controls
- Develop a rolling roadmap for continual improvement in security practice and controls.
- Conduct audits over policy and adherence to policy including liaison with Internal and external auditors.
- Provide assurance regarding adequacy and operating effectiveness of IT security and controls.
- Drives the implementation of Information Security Management System (ISO 27001) across the business.
IT Risk Management
- Assess and evaluate all IT risks and work with Risk Owners to eliminate / mitigate / accept the risks.
- Report on IT risks & security issues to the IT Leadership team and Change Leadership Team as it might happen.
- Mentor Business Units to improve with regards to IT risk and security management.
- Leads on project related risks and security issues
- Promote a culture whereby risk/security is considered and observed with correct balance by IT staff, projects, suppliers and our customers to achieve appropriate levels of assurance.
- Demonstrate with colleagues, clients and supplier’s habitual behaviour consistent with the compnay’s core values.
General
- Co-ordinates the responses and actions together with external auditors around the annual audit.
- Manage Business Solutions’ processes, operations and promotional budget.
- Guarantee the smooth running of all IT systems, including anti-virus software, print services and email provision.
Knowledge, Skills & Experience Required
- Substantial experience in working within a technical IT environment and extensive experience in a combination of risk management, information security and IT jobs.
- Excellent written and verbal communication skills, interpersonal and collaborative skills, and the ability to communicate security and risk-related concepts to technical and nontechnical audience.
- Proven track record and experience in developing risk and information security policies and procedures, as well as successfully executing programs that meet the objectives.
- Ability to work independently in a very large scale and enterprise setting.
- Experience conducting vulnerability assessments, code reviews and penetration tests against web/mobile application technologies, APIs, platforms and languages to find flaws and exploits (e.g. SQL Injection, Cross-Site Scripting, Cross-Site Request Forgery, Clickjacking, Authentication/Authorization, etc.)
- Knowledge of Windows & Linux operating systems; network and web related protocols/technologies; along with knowledge of enterprise security design.
- Poise and ability to act calmly and competently in high-pressure, high-stress situations.
- Must be a critical thinker, with strong problem-solving skills. Mentor Business Units to improve with regards to IT risk and security management.
- Knowledge of common information security management frameworks, such as ISO/IEC 27001, ITIL, COBIT and ones from NIST.
- Professional security management certification, such as a Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Information Systems Auditor (CISA) or other similar credentials, is desirable.
- Certified ISO 27001 lead implementer.
- Experience with contract and vendor negotiations.
- High level of personal integrity, as well as the ability to professionally handle confidential matters, and show an appropriate level of judgment and maturity.
Requirements
Education
- Minimum requirement: First Degree
- Added advantage: Master’s degree/MBA
Experience
Professional (Memberships & Certifications)
Experience
-
Knowledge of common information security management frameworks, such as ISO/IEC 27001, ITIL, COBIT and ones from NIST
Method of Application
Signup to view application details.
Signup Now
