Unilever SAP Security Engineering Analyst in London, United Kingdom
Job Title: SAP Security Engineering Analyst
Location: London 100VE or Bangalore, India
This Security Engineering Subject Matter Expert (SME) role is tasked with delivering world class security engineering services, advising our organisation and ensuring that our network, infrastructure systems, applications, products, and information are securely protected and monitored. The aim will be frictionless security, enabling the business to achieve their output and uptime goals through cyber resilience services and a strong cyber security culture. These activities will be conducted with a ‘Risk Based’ approach to help individual businesses manage cyber risk in their area.
A vacancy exists for a Security Engineering SME within Unilever’s cyber function. The successful candidate will be responsible for building out and managing the security technology stack and integrating it with the enterprise-wide technology estate, as well as advising and providing security engineering support. This position will report to the Security Engineering Manager.
Key areas under this role delivered by the Security Engineering Team include:
Building out the security technology stack in line with the security architecture roadmap and integrating it with the enterprise-wide technology estate including IT, Operational Technology (OT) and Internet of Things (IoT).
Ongoing management of the security technology stack within the Tech & Ops remit, e.g., IT service management activities and driving continuous improvement.
Ensuring close integration and effectiveness of the security tools and associated processes in support of the SOC.
Working closely with suppliers and Managed Security Service Providers to ensure best practice is adopted in our security tools and Tech & Ops processes
Participating in Proof of Concept testing with Security Architecture to evaluate alternative toolsets.
Becoming a trusted advisor in Security Engineering, pro-actively providing security leadership and guidance to business divisions, projects, and third parties.
Advising on the development and design of digital security solutions, which will be adopted for the protection of IT infrastructure, Hybrid Cloud, IT applications, OT, and IoT.
Advising on security best practice on cyber elements of business initiatives.
Playing an active role in the definition and iteration of the Unilever Cyber Security programme.
Becoming a security champion in Security Engineering, pro-actively providing security insights and guidance to technical teams, projects, and third parties.
Advising on the development and design of digital security solutions, which will be adopted for the protection of IT infrastructure, Hybrid Cloud, IT & Security applications, OT, and IoT, embedded technologies
This role will work with wider areas of the business to achieve these objectives, including the Security, Tech & Ops team and the regional Business Information Security Officer (BISO) teams.
Responsible for becoming a trusted advisor in Security Engineering and pro-actively providing security leadership and guidance to business divisions, projects, and third parties.
Responsible for playing an active role in the definition and iteration of the Unilever Cyber Security transformation.
Responsible for ensuring technical governance is based on sound architectural principles and correctly documented.
Responsible for building out the security technology stack in line with the security architecture roadmap and integrating it with the enterprise-wide technology estate including IT, Operational Technology (OT) and Internet of Things (IoT).
Responsible for ongoing management of the security technology stack within the Tech & Ops remit, e.g., IT service management activities and driving continuous improvement.
Responsible for ensuring close integration and effectiveness of the security tools and associated processes in support of the SOC.
Responsible for working closely with suppliers and Managed Security Service Providers to ensure best practice is adopted in our security tools and Tech & Ops processes
Responsible for participating in Proof of Concept testing with Security Architecture to evaluate alternative toolsets.
Responsible for developing and designing digital security solutions, which will be adopted for the protection of IT infrastructure, Hybrid Cloud, Zero Trust, IT applications, OT, and IoT.
Responsible for advising on security best practice on cyber elements of business initiatives.
Responsible for advising on definition and iteration of the Unilever Cyber Security transformation.
ALL ABOUT YOU
Excellent written and verbal communication skills and ability to be understood by both technical and non-technical personnel.
The ability to lead through accountability with delegated responsibilities.
Ability to manage conflicting priorities and multiple tasks.
Stakeholder management and interpersonal skills at both a technical and non-technical level.
Outstanding influencing ability.
Ability to work in a collaborative environment with international team members.
Outstanding critical reasoning and problem-solving skills – sticking to the problem until it is resolved.
Customer-orientated, whether responding to queries or delivering new services.
Skills in Programme and Project Management.
The role holder will have previously held a role in Cyber Security or Security Engineering.
Cyber qualifications such as CISSP, CEH, ISC2 CCSP, AWS or MS AZURE specific Security or equivalent are desirable
Understanding and experience of creating Landing Zones, Guard Rails, Cloud Native Security tooling, as well as integration with non-cloud/Hybrid specific Security tools.
Awareness on Azure/GCP cloud hosting and security best practice
Experience of leading major security implementation programs across a global organization.
Hands on experience with system administration, such as provisioning and managing servers, deploying databases, security monitoring, system patching, and managing internal and external network connectivity.
Experience and proven track record in Cyber Security Engineering with knowledge of IT Security Controls, Identity & Access Management, User Behaviour Analytics/Advanced Detection and Response, Data Security, SOAR, YARA, Kestrel, or any other security languages
Experience with Threat modelling practices and the development lifecycle.
Extensive experience in providing thought leadership, and driving a complex change agenda, and an ability to challenge the “status quo”.
Excellent strategic and operational business awareness, with a deep understanding of the key drivers, levers, issues, and constraints of digital businesses.
Experience within a customer focused environment.
Knowledge of the applications or the technical landscape within the domain and experience of delivering Cyber Security projects to its demands.
Candidates would be required to demonstrate the Unilever Standards of Leadership & live the Values through showing the following behaviors:
Agility – Flexes leadership style and plans to meet changing situations with urgency. Learns from the past, envisions the future, has a healthy dissatisfaction with the status quo.
Personal Mastery – Actively builds wellbeing and resilience in themselves and their team. Has emotional intelligence to take feedback, manage mood and motivations, and build empathy for others. Sets high standards for themselves and always brings their best self.
Passion for High Performance – Inspires the energy needed to win, generating intensity and focus to motivate people to deliver results at speed.
Unilever is one of the world’s leading suppliers of Food, Home and Personal Care products with sales in over 190 countries and reaching 2 billion consumers a day. Unilever has more than 400 brands found in homes around the world, including Dove, Tresemme, Lynx, Lifebuoy, Shea Moisture, Persil, Domestos, Ben & Jerry’s, Magnum, Marmite, The Vegetarian Butcher, Graze and Pot Noodle.
Faced with the challenge of climate change and the need for human development, we want to move towards a world where everyone can live well and within the natural limits of the planet. That’s why our purpose is ‘to make sustainable living commonplace’
In September 2020, Unilever announced the intention to build a new sustainable campus site in Kingston, London to house the employees who currently work in 100 Victoria Embankment in Blackfriars, Lever House in Kingston and Graze in Richmond. We are creating our own Unilever sustainable, agile work environment, purposefully bringing us together in our own Unilever ecosystem. The campus is due to be completed in early 2025 and will consist of two interconnected buildings, as well as landscaped surrounding areas.
What We Offer
Not only do we offer a competitive salary and pension scheme, we also offer an annual bonus, subsidised gym membership, a discounted staff shop and shares. You’ll have the opportunity to work directly with our renowned and exciting brands in a flexible and hybrid working environment.
Whilst the role is advertised on a full-time basis, we would be happy to discuss possible flexible working options and what this may look like for you. We are a key advocate of wellbeing and offer a variety of support for our people including hubs, programmes and development opportunities. We strive to achieve a family-friendly and inclusive workplace and to, above all, create possibilities for all.
Diversity at Unilever is about inclusion, embracing differences, creating possibilities and growing together for better business performance. We embrace diversity in our workforce. This means giving full and fair consideration to all applicants and continuing development of all employees regardless of age, disability, gender reassignment, race, religion or belief, sex, sexual orientation, marriage and civil partnership, and pregnancy and maternity. We are also more than happy to provide reasonable adjustments during our application and interview process to enable you to be present your best self. To find out more, including about our Employee Resource Groups, please click here Equity, Diversity & Inclusion at Unilever | Unilever (https://www.unilever.co.uk/planet-and-society/equity-diversity-inclusion-at-unilever-uki/) .
Cyber criminals advertise fake job adverts with prestigious employers as a way of stealing information or even defrauding individuals out of money. In the most sophisticated cases, they will set up fake websites, which have a similar address to companies like Unilever. They even conduct fake telephone interviews and then offer candidates a role with the proviso they pay a fee for background checks or to cover work visa costs. These types of attacks are becoming more common as more people are looking for employment in the economic climate.
How is Unilever tackling this?
Many of Unilever’s recruitment sites publish a warning to candidates about recruitment fraud. The Cyber Security team also proactively scan for signs of people setting up fake Unilever sites and act to close them down.
What can I do?
If you become aware of potential recruitment fraud, spot fake Unilever recruitment adverts or fake LinkedIn profiles, report them via Una Live Chat.
Unilever does not accept responsibility or liability for any candidates who are financially impacted by recruitment fraud. Your vigilance is key!
Job Category: Information Technology
Job Type: ISS Info Sec Specialist