Cyber Risk AVP

Job Title: Cyber Risk AVP

About the Function:

Our Digital and Technology (D&T) team are innovators, delivering ground-breaking solutions that will help craft the future of our iconic brands. Technology touches every part of our business, from the sourcing of balanced ingredients to marketing and development of our online platforms. We utilise data insights to build competitive advantage, supporting our people to deliver value faster.

Our D&T team includes some of the most hardworking digital professionals in the industry. Every day, we come together to push boundaries and innovate, crafting the digital solutions of tomorrow. Whatever your passion, we’ll help you become the best you can be, crafting career-defining work and delivering breakthrough thinking.

Role Responsibilities:

Job Title: Cyber Risk AVP

Level: 4B

Location: Bengaluru, India

Reports To: Global Head of Cyber Strategy

Job Purpose:

The Cyber Risk AVP will be responsible for overseeing the development and implementation of Diageo's cyber risk management framework. This role involves ensuring compliance with relevant regulations, and mitigating risks associated with information security.

Key Responsibilities:

• Develop and maintain the cyber risk management framework in alignment with Diageo’s global policies.
• Develop and execute the cyber risk management strategy aligned with business goals. 
• Conduct regular risk assessments to identify potential threats and vulnerabilities across IT, OT & cloud environments.
• Identify, assess, and prioritize risks based on impact and likelihood.
• Maintain an up-to-date cyber risk register with remediation tracking.
• Coordinate incident response planning and execution, including post-incident analysis.
• Collaborate with IT, legal, compliance, and other departments to ensure comprehensive risk mitigation strategies.
• Recommend and track implementation of risk mitigation actions and controls.
• Ensure compliance with applicable regulations (e.g., GDPR, NIST, ISO 27001, etc.).
• Provide regular reports, dashboards, and insights to senior management.
• Collaborate with senior leadership to communicate risk exposure and mitigation plans.
• Act as the point of contact for cyber risk in internal audits and regulatory reviews.

Qualifications:

• Bachelor’s degree in computer science, Information Security, or related field.
• Minimum 10 years of experience in cybersecurity or related roles.
• Strong knowledge of cyber risk management frameworks and methodologies.
• Relevant certifications such as CISSP, CISM, or CRISC are highly desirable.
• Good understanding of cloud platforms (Azure, AWS, GCP), IT & OT security environments and their risk profiles.
• Risk modelling and assessment using tools or BI platforms (Power BI, Tableau, etc.).

• Excellent communication skills with the ability to present complex technical information to non-technical partners.
• Experience working with compliance and regulatory frameworks (e.g., GDPR, SOX, NIS2).

Flexible Working Statement: Flexibility is key to our success. From part-time and compressed hours to different locations, our people work flexibly in ways to suit them. Talk to us about what flexibility means to you so that you’re supported from day one.

Diversity statement: Our purpose is to celebrate life, every day, everywhere. And crafting an inclusive culture, where everyone feels valued and that they can belong, is a crucial part of this.

We embrace diversity in the broadest possible sense. This means that you’ll be welcomed and celebrated for who you are just by being you. You’ll be part of and help build and champion an inclusive culture that celebrates people of different gender, ethnicity, ability, age, sexual orientation, social class, educational backgrounds, experiences, mindsets, and more.

Our ambition is to build the best performing, most trusted and respected consumer products companies in the world. Join us and help transform our business as we take our brands to the next level and build new ones as part of crafting the next generation of celebrations for consumers around the world.

Feel encouraged? Then this may be the opportunity for you. 

If you require a reasonable adjustment, please ensure that you gather this information when you submit your application.