Ahold Delhaize is one of the world's largest food retail groups and a leader in both supermarkets and e-Commerce. Its family of great, local brands serves more than 50 million customers each week in Europe, the United States and Indonesia. Together, these brands employ more than 420,000 associates in more than 7,000 grocery and specialty stores. Our Global Support Office (GSO) is based in Zaandam in the Netherlands, but GSO associates also work in all the countries we serve. This team supports all our great local brands in finance, HR, IT, legal, communications, sustainable retailing, and other key functions. . 

Manager II Cyber Human Risk & Awareness

This senior professional focused on business outcomes must have a plan to set and lead the agenda for transforming security culture and adapt to the multidisciplinary nature of the work, including creating content and experience- driven awareness to foster critical thinking; quantifying human risk with a data-led approach to change behavior; and developing a security culture. The ‘Head of Cybersecurity Human Risk Management and Awareness’ is a key member of the GRCO lead team and a key to the success of security’s internal brand.​

About Ahold Delhaize

We’re Ahold Delhaize, one of the world’s largest food retail groups and a leader in both supermarkets and e-commerce. Together with our 19 strong local retail brands all over the world, we aim to make a meaningful difference in the lives of our customers, our people and the world around us. We offer a highly dynamic, international work environment in which our employees thrive.

You will be given the freedom and responsibility to take ownership of your work and broaden your horizons by working together with knowledgeable colleagues from different countries who have an abundance of expertise in many areas. We will continually invest in you and help you build on your talents and skills for the future.

Key responsibilities of your role

Your role is highly diverse and encompasses various responsibilities. Here are the key ones:

As the ‘Head of Cybersecurity Human Risk Management and Awareness’ within the GRCO, you will: ​

• Advise the Head of GRCO and the ISO MT on overall strategies to influence security across and outside of the organization​
• Lead the delivery, implementation, and continuous improvement of cybersecurity education, phishing simulations, and content (face-to-face and virtual) targeting a variety of audiences​
• Identify the security behaviors that are causing risk to the organization in a data- driven manner and in consultation with key stakeholders, including security team peers​
• Quantify the top human-related cybersecurity risks facing the organization and incorporate strategies to effectively change behaviors to bring the human risk to an acceptable level​
• Map the security culture by measuring and managing the attitudes, behaviors, and sentiment around cybersecurity​
• Study and model individual and group psychology in the context of security behavior and decision-making​
• Recommend processes and technologies that must be emphasized to realize the right security behaviors. This could include creating proactive policy adjustments for the highest-risk users and enriching the security operations center with employee risk data to improve triage​
• Provide leadership and specialist, expert advice and strategies to influence the organization to measurably reduce human risk throughout and improve its security culture​
• Develop and implement tools and processes to support knowledge-sharing, collaboration, and effective practices among cybersecurity and risk teams across the organization​
• Build a network of security champions to promote security culture across the organization, translate policies into a language that everyone understands, create an open, effective feedback loop to the security function​
• Manage the budget allocations and associated financial forecasts relating to cybersecurity awareness, including hardware, software, and service providers.​
• Be part of the GRCO lead team​
• Lead a team of 3 to 5 full time employees across the regions​

What’s in it for you?

Aside from what we ask of you in this role, we also have a great deal to offer you: plenty of growth opportunities and various cross-brand career options; flexible working hours; a hybrid working model (we ask you to spend at least 50% of your working time at the office); and the chance to drive meaningful change on a global scale. You can look forward to a good work-life balance, and the chance to work in an inclusive environment that wholeheartedly encourages growth and welcomes you just the way you are.

Requirements

We think you’ll be best geared for success if you meet the following requirements:

• Education: Bachelor’s degree or equivalent technical training in Information Technology, Information Systems Security, Cyber security, Business administration or related field (master’s degree preferred) ​
• ​Experience:
  • 10+ years of relevant IT and Information Security experience ​
  • 3+ years of people management experience, preferably in a multinational company​

• Knowledge/Skills:
  • Advanced knowledge of industry authoritative sources such as NIST, COBIT, and ISO standards​
  • Solid stakeholder management, communication and presentation skills ​
  • Strong results orientation to achieve goals​
  • Familiarity with the retail industry ​
  • Ability to act independently with minimal supervision ​
  • Excellent command of English language, both written and spoken ​

Aside from these hard skills, we think you should also bring some much-valued soft skills to the table: an entrepreneurial mindset, outspoken communication skills and a proactive approach. In addition to these, a high level of creativity, empathy, and enthusiasm will take you far. 

Apply now!
Are you keen to join the team? Even if you don’t tick all the boxes, but you still believe you have the personality and skills that make you a suitable candidate, we strongly encourage you to reach out to us. Apply now via the button on this page, or feel free to contact Katie Hillman via Katherine.hillman@aholddelaizeusa.com if you have any questions.

At Ahold Delhaize and our local brands, we broadly define diversity as being inclusive of thoughts and skills, generational differences, LGBTQ+, gender, race and ethnicity, disabilities, nationalities and more, and we accept all people for who they are.
 

The GSO sets global strategies frameworks, facilitates the sharing of best practice and encourages economies of scale. Great examples include sharing technology and digital know-how, so we can continue to lead in online and in-store retailing, setting global targets for healthy and sustainable products-including reducing food waste, use of plastics and making our products healthier to use and eat, and championing development for our future leaders-from learning about the digital mindset to leading our stores of the future.

Under the federal Transparency in Coverage rule, group health plans are required to make publicly available machine-readable files that include in-network rates and out-of-network allowed amounts and billed charges. Click  the link to view the in-network rates and out-of-network allowed amounts and billed charges under the welfare benefits plan in which GSO participates

We are an equal opportunity employer. We comply with all applicable federal, state and local laws. Qualified applicants are considered without regard to sex, race, color, ancestry, national origin, citizenship status, religion, age, marital status (including civil unions), military service, veteran status, pregnancy (including childbirth and related medical conditions), genetic information, sexual orientation, gender identity, legally recognized disability, domestic violence victim status or any other characteristic protected by law.