Overview
The CISO is responsible for establishing and leading the enterprise information security strategy for the organisation. In the context of a complex FMCG environment-spanning manufacturing, supply chain, retail partners digital platforms, and global operations-the CISO ensures the protection of digital assets, operational technologies (OT), consumer data, brand reputation, and business continuity. This role provides executive leadership, risk management, and governance to ensure the organisation operates securely and meets all regulatory and customer requirements.
Responsibilities Strategy & Leadership
- Develop and execute an enterprise-wide information security strategy aligned to FMCG business priorities, digital transformation, and supply chain resilience
- Provide executive leadership and clear direction for cybersecurity, data protection, and OT security
- Advise the Board and senior leadership on emerging threats, regulatory changes, and risk posture
Cybersecurity Governance & Risk Management
- Own the information security risk framework and ensure alignment with ISO 27001, NIST, and relevant market standards
- Oversee cyber risk assessments across manufacturing plants, logistics partners, third party suppliers, and commercial functions
- Drive compliance with data protection legislation (e.g., GDPR) and customer/retail partner security requirements
Operational Technology (OT) & Supply Chain Security
- Implement security controls for key environments
- Ensure secure integration between OT, IT, and IoT platforms used across the value chain
Security Operations & Incident Response
- Oversee the Security Operations Centre (SOC), threat intelligence, vulnerability management, and monitoring capabilities
- Lead incident response preparedness, including simulations, crisis management, and communication with regulators and customers where required
- Ensure rapid response to cyber events to minimise disruption to production and distribution
Data Protection & Privacy
- Ensure appropriate controls for consumer, employee, and commercial data across ERP, CRM, e commerce, and marketing platforms
- Oversee data privacy governance and collaborate closely with the Data Protection Officer (DPO)
Technology & Architecture
- Embed security-by-design into digital initiatives including e commerce platforms, cloud transformation, and AI/ML use cases
- Set architecture standards for identity and access management, network security, endpoint protection, and cloud services
People, Culture & Training
- Build security awareness and resilience across global manufacturing sites, distribution centres, and corporate offices
- Lead and develop a high-performing cybersecurity team with diverse skills across IT, OT, and risk
Qualifications Essential
- Proven experience as a CISO or senior cybersecurity leader in a complex, global environment
- Experience working in FMCG, manufacturing, logistics, or other industrial sectors
- Strong knowledge of OT/ICS security and supply chain risk
- Strong stakeholder management and board communication skills
Desirable
- Experience leading cybersecurity in organisations with e commerce or direct to consumer channels
- Familiarity with SASE, Zero Trust, cloud-native security, and identity governance
- Relevant professional certifications (e.g., CISM, CISSP, CRISC, CISA)