Cyber Strategy GRC Senior Manager

Dunnes Stores is Ireland’s leading retailer positioned at the cutting edge of food, fashion and home retailing. We are known for offering a wide range of high-quality products to our customers.

We are a customer focused business and constantly exploring new ways to improve the experience for our customers. This includes embracing changes in technology to drive new innovation including IoT technologies such as Scan & Go/Queue Busting checkout options, intelligent Digital Displays, Smart Shelves, and Smart Trolleys, along with mobile device integration, are enabling such experiences.

Modern IT infrastructures are allowing for the rapid on-boarding of new stores, product lines, and technologies to allow us quickly to adapt to market changes while ensuring security and compliance. This provides a challenging environment for people to drive change and ensure we embrace cyber and security challenges to protect and grow our business. 

We are hiring for a Cybersecurity Strategy, Governance, Risk, and Compliance Senior Manager who will be responsible for developing and implementing the cybersecurity strategy and ensuring that all cybersecurity activities are in line with regulatory requirements and industry best practices. This role involves overseeing the governance, risk management, and compliance aspects of cybersecurity to protect the company's information assets and manage cybersecurity risks effectively. This role is based in our Head Office in Dublin city centre, and reports to our Chief Information Security Officer.

Key Responsibilities:

• Develop and maintain the cybersecurity strategy and framework in alignment with the company's business objectives and risk appetite.
• Lead the development, implementation, and maintenance of cybersecurity policies, standards, and guidelines.
• Oversee the cybersecurity risk management program, including risk assessment, risk treatment, and risk monitoring activities.
• Ensure compliance with relevant laws, regulations, and standards such as GDPR, PCI DSS, and ISO 27001.
• Conduct risk assessments of third parties to identify potential risks associated with their products, services, or business relationships.
• Coordinate with internal and external auditors to facilitate cybersecurity audits and address findings in a timely manner.
• Manage the cybersecurity awareness and training program to ensure that employees and stakeholders are informed about their responsibilities.
• Advise senior management and the board on cybersecurity risks, trends, and the effectiveness of the cybersecurity program.

• Collaborate with IT and business units to integrate cybersecurity GRC considerations into project lifecycles and business processes.
• Develop and maintain relationships with regulatory bodies, industry groups, and other external stakeholders.
• Provide regular reports to senior management and other stakeholders on the status of cybersecurity posture.

Qualifications & Experience:

• Bachelor's or Master's degree in Information Security, Cybersecurity, Computer Science, or a related field.
• Professional certifications such as CISM, CRISC, CGEIT, or equivalent.
• Significant experience in cybersecurity strategy, governance, risk management, and compliance, preferably in the retail sector.
• Strong understanding of cybersecurity frameworks (e.g., NIST, COBIT) and regulatory requirements.
• Excellent leadership, strategic thinking, and communication skills.
• Ability to translate complex cybersecurity concepts into business terms and influence decision-making processes.

Dunnes Stores Competency Profile:

• Technical/professional knowledge
• Building Relationships
• Results Orientation
• Change Advocate

Benefits:

• Competitive salary
• Comprehensive benefits package including our employee discount
• Opportunities for professional development and career progression
• A dynamic and collaborative work environment focused on innovation and growth

If this sounds like the job for you, please apply now!

Dunnes Stores is an equal opportunities employer