Technology Resilience Lead

Who we are:
A global supplier of sustainable, infinitely recyclable metal and glass packaging for brand owners around the world; twenty thousand people across 62 production facilities in 16 countries.  We have a clear purpose “We make packaging for good” – and this ethos extends beyond the mere recyclability of our products; it encompasses a commitment to supporting and investing in the future of our communities; initiatives range from a global STEM education program to impactful Community Involvement Projects at each operational site. 

This is a great opportunity to join a new team establishing what Technology and Cyber Resilience means and looks like for Ardagh; implementing a new framework, processes, policies, ways of working and future testing and exercising roadmap. 

What you’ll do: 

Reporting to the Operational Resilience Manger, you’ll support the capability and ability of Ardagh Group, it’s operating businesses and subsidiaries, to prepare for, respond to and recover from disruption to our global technology infrastructure and operating environments.

Be a highly-skilled IT professional; experienced in one or more of the disciplines of infrastructure, cybersecurity, engineering, testing and project management

Be committed to ensuring Ardagh has a robust and resilient technological ecosystem that minimizes risk and maximizes operational readiness, dedicated to ensuring the continuity of critical business functions and technology systems in the face of any disruptions or challenges
You will be responsible for defining what good technology resilience looks like , managing the Group wide Disaster Recovery programme that focuses on testing resiliency, continuity and recoverability of our critical applications and systems
You will work with Technology Service Owners and the wider Group IT and Operating Business teams to facilitate data restoration exercises and perform backups, including maintenance and testing of existing backups to ensure data integrity and availability. 

Test the operational effectiveness of defined DR plans through checklists, walk-throughs, tabletop exercises, simulations (parallel or full interrupt), and comprehensive exercises in coordination with related plans (e.g. IT DR plans and crisis management plans)  

Incorporate cybersecurity scenarios, the review of the test outcomes, implementation of the lessons learned and required improvements/corrective actions into IT DR and Cyber Resilience plans 

Via post incident reviews and results of pre-planned testing you will monitor and evaluate key performance indicators (KPIs), such as recovery time objectives (RTOs) and recovery point objectives (RPOs), to continuously measure and improve the efficiency and effectiveness of the disaster recovery program. 
You will work closely with the Group IT and Group Cyber Security & Resilience teams to align disaster recovery to the broader operational resilience frameworks and assess, develop, and deliver innovative cyber resilient solutions to protect Ardagh’s critical business activities.
Ensure the development of appropriate resilience and continuity plans, policies, and procedures for major systems failures against threats and vulnerabilities

What we expect:

• Demonstrate commitment to the Ardagh core values through upholding our standards of business conduct, complying with Group policies & procedures, and leading by example.
• Establish a working environment which promotes the importance of employees acting with integrity and in an ethical manner in line with the Group Code of Conduct
• Be the subject matter expert, becoming a trusted partner to the business, keeping up to date with latest developments and innovation in this field
• You’ll be able to provide oversight on the execution of Ardagh’s disaster recovery plan in the event of a disaster and enable Ardagh to respond quickly to a loss of capability through cyber attack, damage to infrastructure or any other cause
• Good to have one of the following certifications for example: CompTIA Network +, CompTIA Security +, CISM, CISSP or COBIT 5
• A baseline level of knowledge on the following frameworks: NIST CSF, ISO 27001/27002 and COBIT
• Knowledge or understanding of Manufacturing Security, Manufacturing Operations and Operational Technology Security, with capabilities to safeguard and remediate IT and operational vulnerabilities an advantage