About

• In this global role, you'll lead the development and governance of our Cyber and Information Security policies, standards, and control frameworks—ensuring they reflect industry best practices and align with our risk appetite. You'll collaborate with senior stakeholders across all markets and entities, driving complex change programmes and supporting adherence to our frameworks through expert guidance and partnership. You'll be at the forefront of our Cyber Health and Adaptive Risk Method (CHARM), owning the Cyber control framework and continuously evolving it in response to emerging threats, incidents, regulatory shifts, and technological advancements. Your leadership will extend to our Cyber education and awareness programme, where you'll champion a strong security culture through engaging training, testing, and communications. As part of the Cyber Governance, Risk and Control (GRC) leadership team, you'll also help shape the strategic direction of both GRC and the wider Cyber function, contributing to our long-term roadmap and technology priorities. Role title: Senior Manager, Cyber Policies and Controls | ---|--- Band: F | Department: Cyber Security Reports to: Global Head of Cyber Governance, Risk & Controls | Broad technical knowledge of cybersecurity and controls, ideally with exposure to cloud and telecoms security Deep expertise in policy, control, risk management, standards-setting, and audit Proven experience leading large-scale change in complex, multinational environments Strong leadership skills with the ability to inspire and guide teams through transformation Excellent stakeholder management, including engagement with senior leadership Strategic thinking with the ability to balance detailed execution and big-picture vision A collaborative mindset and commitment to fostering an inclusive, security-conscious culture (Desirable) Professional qualifications such as CRISC, CISSP, or CISA