Manager InfoSec Incident Response

Philip Morris International UK

Location: Greater London

Job Type: Full time


At PMI, we’ve chosen to do something incredible!

We’re totally redefining our business and building our future on smoke-free products with the power to deliver a smoke-free future.

With huge change, comes huge opportunity. So, wherever you join us, you’ll enjoy the freedom to dream up and deliver better, brighter solutions and you will have the space to move your career forward in many different areas/directions.

PMI’s journey to a smoke-free future implies a shift from a tobacco manufacturer to a science and technology-based consumer facing organisation.
Such a shift creates an abundance of unique and progressive IT projects to match all levels of skills and ambitions. You’ll feel like you’re working in a start-up – with the freedom to shape and define the future of digital, but with the support and scope of a vast global business. You’ll get a chance to work with innovative technologies (e.g., Cloud, APIs, AI) as well as management practices (e.g., Agile, Design Thinking, Product Management). Our environment is fast-paced and highly collaborative. If you want the freedom to find new ways to connect with consumers, there’s no better place to progress your career.

Joining Information Security
Running at the forefront of PMI's Digital Transformation, Information Security offers guidance, solutions and advisory all across PMI, supporting our secure journey towards a smoke-free future.

Our scope ranges from security assessments, architecture, governance and risk advisory, through resilience, cyber threat intelligence and incident response, to supporting PMI Functions, Markets, and Platforms (e.g. Finance, People & Culture, Operations, Consumer or Product) and building an organizational security culture.

Your ‘day to day’
  • You will be leading the Incident Response Management function within Cyber Defense.
  • You will also manage the various external vendors we partner with to provide surge capacity to our Incident Response and Forensic investigation team.
  • Your team is globally based, and growing, supporting our 24x7x365 business.
  • As the need arises you will be required to be technically engaged in some operational or Incident Response activities as well as providing leadership and support.
  • You will work closely with the InfoSec Threat Intelligence, Vulnerability Management and Engineering teams to ensure that you have seamless cross-functional inter-operations.
  • You will be focussed both on reactive Incident Response activities as well as proactive and cross functional activities to maximise the value and impact of your team, while always focussed on your goal of building an extraordinary Infosec Security Operations capability.

Who we’re looking for:
  • 10 years’ experience in Enterprise Security Operations including Incident Response with at least 3 years in a leadership role
  • Excellent track record of leading global Information Security forensic investigations
  • Technical Security/Engineering Background with a track record of building and running CSIRT/SOC/IR teams
  • Excellent track record of Senior Leadership and Board level communications
  • Excellent knowledge MITRE ATTACK and NIST CSF frameworks
  • Excellent knowledge of Incident Response process
  • Excellent knowledge of Forensic activities.
  • Excellent knowledge and experience working with tools used in Incident Response.
  • Excellent knowledge of Play Book and Use Case creation to facilitate the Incident Response capability.
  • Experienced in managing budgets and cross functional teams/activities
  • Experience in report writing and communications to C-Level stakeholders.
  • Experienced in InfoSec program management, project support and large scale change.
  • Experienced in Cloud security (IaaS, PaaS, SaaS)
  • Proven knowledge of general information security practices, principals, and standards
  • Shown knowledge of compliance, regulatory practices and experience handling audits

What’s in it for you?
There are many IT Organizations out there, so why should you join ours?

We believe PMI IT’s true strength is fuelled by our people, and that our success depends on them coming to work every single day with a sense of purpose and an appetite for progress. We are a people first organisation committed to providing you with first-class employee journey. Here’s a glimpse of what’s in it for you upon joining us:
  • Work-life balance: Wellbeing comes first. We offer a fantastic office environment and hybrid working options to ensure you have the best work-life balance possible.
  • Learning & Development: Your growth is a priority. Our robust and varied learning & development ecosystem will help you strengthen your technical skills and enhance your soft skills and intuition for business. The capabilities you will acquire with us will support your life-time employability within IT, PMI, and beyond.
  • Inclusion & Diversity: Our differences - much more than our similarities - generate the innovation we are looking for. We aspire to build a diverse and inclusive organization to access the breadth and depth of thinking and sensitivity necessary to thrive.

Every single IT colleague is part of our Transformation journey. Join us and pursue your ambitions – our staggering size and scale provides endless opportunities to progress. If this offer resonates with you, we look forward to receiving your application and getting to know you.

Together, let’s deliver a smoke free future.

You’ve got this!