Global Head of Cyber Security Strategy & Enterprise
Full time
Derby/London - Hybrid
What you will be doing
The Cyber Security function is accountable for Cyber Security and Information risks management in the Rolls-Royce Group as a Line of Defence 2 (LOD2) function within the IT function.
Cyber Security Strategy & Architecture leader is accountable and the custodian of the Group’s Cyber Security Strategy, and Cyber security architecture to ensure Rolls-Royce group is managing Cyber threats and risk agile, proactive manner whit highest level of Cyber Security & resilience.
The Cyber Security Strategy & Architecture Manager works closely with the Digital IT Strategy & Enterprise Architecture function, Digital Operations, portfolio of suppliers, industry partners. Ensures Cyber Security function’s strategies, standards, processes, guidelines and governance are implemented and in operation consistently across the Group to protect Rolls Royce.
Time to time the Cyber Strategy & Architecture Manager represents and participates in external engagements on behalf of the Rolls-Royce Cyber Security function and provides input to the broader collaboration with its industry peers.
Responsibilities
In this role you will be accountable for Cyber Security strategy, architectural standards, baselines, guidelines are consistently implemented, adopted across to Group to ensure the Group is protected against cyber threats & risks.
Leading the Cyber Strategy & architecture team and ensures high performance delivery and develops his team
Accountable for the development of the Cyber Security Strategy with consideration of Business and D&IT strategies, changing threat landscape, technology shifts and the dynamic Cyber Security product & market Changes
Custodian of the Group’s Cyber Security strategy, must adopt an agile & proactive approach for dynamic response to the changes in threat landscape, regulatory requirements, business need, and identified gaps to protect the Group against Cyber threats and risk
Accountable for the Cyber Security portfolio and its optimization in line with the strategy and ensures Cyber Security Function has the right capabilities in place for successful protection of the Group against Cyber Threats & Risks
Leading the Digital Domain cyber-Security capability, and the development of Cyber Security strategies, responses to protect each domain against cyber-threats and risks. Acting as the Domain Architecture Authority
Accountable for development of prioritised Strategic Cyber Security program, to ensure Cyber Security strategy implemented inclusive of each D&IT domains requirements to have highest-level Cyber Resilience, and consistently deployment, operation across the group.
In line with the annual planning/budget process, leads the development of Cyber Security investment papers and operational budget requirements to ensure required funds are available.
Accountable for Annual appraisal & assessment of the strategy & the strategic program
Accountable for development of Domain Base lines for the Digital Landscape, continuous enhancement of them to respond to changing threat landscape and attack vectors and any keeping the baselines evergreen in line with the product developments
Accountable for development of Cyber Security Architecture standards, guidelines and their structurally deployment and adoption by the Digital Operations & Application delivery teams
Developing security architecture solutions and provides Cyber Security Solution architecture for high value Programs
Advising Group CISO, Cyber Security Leadership team on cyber security strategy, any tactical responses in an agile and proactive manner
An active & participating member of the Cyber Security LT contributes to the decisions of the function and consequently operates according to the functions strategies, guidelines, standards, policies, processes and behaviours
A Strategic partner active & Participating member of any Digital Operation Service performance review behalf of the Cyber Security function to ensure Cyber Security assurance supplier delivery and KPI performance and the consistent implementation of the Cyber Security portfolio, strategies, guidelines, standards, policies, processes are adopted
Leading the Cyber Security procurement process of the Cyber Tooling with the Procurement function for timely and cost-effective delivery based on the commercial strategy
Leading External Collaboration & relations and provides external in view of Cyber Security industry and market to the Cyber Security Leadership team for continuous agile responses
Accountable for compliance to strategic industry standards across the group and annual assessment of the level of the maturity and gaps to be dynamically closed with focus, and an agile approach
Provides Cyber Security Solution architecture for high value Programs
Establishing structural relationships with Digital Operation and any services party that are part of he EKO systems to ensure Cyber Security strategy and portfolio understood, service Towers are compliance to the standards, baselines and guidelines
Ensuring Rolls-Royce Cyber security requirements are fit for purpose in an outsourced environment that protect the Group
Explain complex cyber security strategy and the related strategic programs to executive management for their sponsorship
Lead multi-specialist content view on Cyber Security strategic program projects
Why Rolls-Royce?
Work with us and we’ll welcome you into a culture of caring and belonging where you can be yourself. We will listen first, embrace feedback and act with integrity. We will invest in your continuous learning and development, and make sure you have access to a wide breadth and depth of opportunities to grow your career and make a difference.
We offer excellent development, a competitive salary and exceptional benefits. These include bonus, employee support assistance and employee discounts.
Hybrid working is a way in which our people can balance their time between the office, home or another remote location. It’s a locally managed and flexed informal discretionary arrangement. As a minimum we’re all expected to attend the workplace for collaboration and other specific reasons, frequency will depend on business needs, nature of role, what works for the team and for the individual. Discover more on our GBS Service Portal about hybrid working.
Who we’re looking for
Being a part of Rolls-Royce you’ll know we put safety first, do the right thing, keep it simple and make a difference. These principles form our behaviours. They are an essential component of our assessment process and are fundamental qualities that we seek for all roles.
Substantial experience of IT service and project delivery management
Substantial understanding of Strategy & architecture discipline
Substantial experience in leading Global Cyber Security Risk and Compliance programmes
Substantial experience in working and leading in a matrix structure and able to use influence and being inclusive
Substantial experience and understanding of the key compliance and regulatory standards in Information Security and Compliance.
Ability to represent requirements and incidents to senior executives
Leadership skills and ability to work with remote / virtual teams across diverse cultures.
Practical experience of managing within an outsourced and global environment.
Has experience in staff management where influencing, developing/and or motivating people is critical to the achievement of objectives.
Competent and familiar with the IT Controls Framework practices.
Competent and familiar of Cyber Security practices and processes
Join us & help Rolls-Royce to become a high-performing, competitive, resilient business.
Please be aware that the priority will be given to employees identified as being at high risk.
The professional level and the salary of the position will be dependent on the skills and experience of the successful candidate.
It is advised that you inform your current manager of your application for this role.
We are an equal opportunities employer. We’re committed to developing a diverse workforce and an inclusive working environment. We believe that people from different backgrounds and cultures give us different perspectives. And the more perspectives we have, the more successful we’ll be. By building a culture of respect and appreciation, we give everyone who works here the opportunity to realise their full potential.
Learn more about our global Inclusion Strategy
Grade: B
Closing Date: 18th November 2025
For further information please contact: Alison Connaughton