EMEA Enterprise Information Security Senior Manager

About the role

The Enterprise Information Security Manager for Canon EMEA is responsible for contributing to and driving the execution of the organization’s Information Security Strategy, and for managing the Information Security team for the EMEA region.

Overall responsible for core security activities in Canon EMEA: Security Incident Response, Vulnerability Management, Application Security, Policy Management, Security Risk Management, Security Awareness & Education.

Maintain and grow the expertise of the security team members, and improve the maturity of the team’s security processes.

About Canon

Canon is a world-leading imaging company and a global brand - driven to enrich people’s lives and businesses with innovative products and smart digital solutions.

Canon champions hybrid working with a flexible working policy. You will be part of an energetic and innovative environment with more than 50 different nationalities. Canon encourages continuous learning and development with a wide range of resources and support available on demand.

Responsibilities

• Translates the enterprise security strategy into annual operational plans for the security team.
• Ensuring execution across all subsidiaries, regional entities and NSOs & provides structured feedback loops to the Director on execution progress
• Develop, provide and enforce Canon EMEA’s Security Policies to IT, business, NSO’s and subsidiaries.
• Recruit, manage, coach, develop and motivate a high-performing team of SME’s and Specialists.
• Manage and execute the Canon EMEA Security activities, with its main components: security audits and assessments, Application Security, Vulnerability management, Incident Response & Forensics, Security Architecture, security awareness & education.
• Liaison with the global Canon Inc. security organization, an support the alignment and integration of security activities at global level.
• Act as deputy for the Information Security Director as well as Canon’s deputy spokesperson on all information security matters
• Be responsible for achieving the organization’s security KPIs & preparing security dashboards, risk summaries, and reports for Steering Committee meetings.
• Accountable for standardising security team’s core processes & owning the audit cycle preparation for internal/external audits.
• Be the designated security contact for the top IT vendors, and represent Canon EMEA in the vendors Security Steerco meetings.
• Ensure ongoing coordination with the Data Privacy and the Compliance organizations, as well as with the Legal, Procurement and HR teams.
• Maintaining and managing the enterprise security risk register.
• Operational owner of enterprise security incidents, reporting to the Director with recommendations and guidance during major incident.
• Responsible for information security finances, managing budgets in line with Canon’s policies and guidelines.
• Ownership of the Security Maturity Model for enterprise security teams. Responsibility for monthly/quarterly security posture reporting to the Director.
• Keep executive management appraised of the security posture of the organization, and of major incidents and risks to the organization.

Qualifications

Personal Specification e.g. Technical skills, knowledge, experience required

• Extensive experience in IT Security, Risk Management and Compliance, preferably in large multi-national organizations.
• Solid people leadership skills, providing direction, mentoring, coaching to the team, and building positive high-performing working environments.
• Proven budget and project management skills.
• Excellent stakeholder management and communication skills.
• Contractual management and tender writing and evaluating experience.
• Conflict management and resolution skills.
• Experience dealing with and coordinating security incident activities.
• Ability to think adversarially, and good knowledge of the current cybersecurity threat landscape.
• Expert knowledge of current and emerging security technologies and tooling.
• Working knowledge of security standards and frameworks, such as ISO 27001, CIS Top 20, OWASP Top 10, ISF SOGP etc.
• Hands-on experience in one or more of: Security Architecture, Security assessments or penetration testing, Application Security, Vulnerability Management, Forensics, Threat Modelling, Security Incident Response or Security Operations.
• Fluency in English, both written and spoken.

Canon Leadership Principles

• Inspires a shared vision
• Is courageous and has conviction
• Ensures delivery of the outcome
• Understands the customer
• Drives growth and innovation
• Inspires and motivates others
• Collaborates building trust-based relationships
• Develops self, others and the organisation

Benefits

• Performance-Based Bonus of 12.5%
• 31 Days of Annual Holiday: Enjoy a healthy work-life balance with plenty of time to recharge.
• Pension Plan: Secure your future with our comprehensive pension scheme.
• Bicycle Plan: Save on transportation costs while staying active and eco-friendly.
• Hybrid Working: Flexibility to work 3 days in the office and 2 days from home.
• Commuting: Full coverage of public transport costs or partial reimbursement for car expenses (if you commute by car).
• Exclusive Discounts: Up to 40% off on Canon products.
• Free On-Site Parking: Convenient parking spaces available for those who drive to work.
• Subsidized Restaurant: Enjoy healthy, affordable meals at our excellent on-site restaurant.
• Subsidized Starbucks Coffee to keep you energized throughout the day.
• Fresh fruit to support your health and productivity.
• On-Site Gym: Access our fully-equipped gym, free for all employees.
• Canon Social Club: Join sport and cultural activities with colleagues.
• Learning & Development Opportunities: We’re committed to helping you grow, with plenty of support for your personal and professional development.