Director, Security Resilience

Responsibilities

• Crisis Management & Response
• Maintain and continuously develop AVEVA's crisis management framework - including playbooks, escalation protocols, and decision-making structures.
• Lead crisis management exercises and simulations to test preparedness, and serve as the central coordinator during live crisis events, ensuring a structured and controlled response across the organisation.
• Business Continuity & Disaster Recovery
• Drive Business Impact Analysis (BIA) and Business Continuity and Disaster Recovery (BCDR) planning across AVEVA - identifying critical systems, processes, and dependencies, and ensuring recovery objectives are clearly defined and achievable.
• Plan and facilitate regular tabletop exercises to validate plans under realistic conditions and track improvement actions to closure.
• Travel & Event Security
• Provide security assessments, advisories, and operational support for staff travel and AVEVA-hosted events.
• Maintain a travel risk programme that gives AVEVA employees the guidance and support they need to operate safely, and ensure that event security requirements are assessed and addressed ahead of time.
• Resilience by Design
• Ensure resilience requirements are built into new systems, platforms, and products at the design stage not retrofitted after the fact.
• Work with IT Security, R&D Security, and technology teams to define and validate recovery objectives for critical digital assets and services, and confirm that backup and recovery procedures work under realistic conditions.
• Capability Building & Programme Maturity
• Build the Security Resilience function from its foundation, establishing operating processes, tooling, and metrics that enable the programme to scale.
• Drive automation in resilience workflows, develop a clear maturity roadmap, and report programme progress to the CISO and AVEVA leadership.
• E

Additional Information

AVEVA is creating software trusted by over 90% of leading industrial companies. Job Title: Director, Security Resilience Location: Cambridge | UK Employment type: Full-time regular Previous Experience: 10+ years in information security or enterprise risk management, with at least 5 years in a senior role biased towards building resilience capability, not just running it. Experience designing and building crisis management and BCDR programmes in complex, multi-stakeholder environments. A proven track record as a people and/or department leader, with experience serving as an operational coordinator during live crisis or major incident events. The job This position leads AVEVA's newly established Security Resilience function within the central Digital Security organization, a strategic leadership role created to build and advance AVEVA's capability in crisis management, business continuity, and enterprise-wide resilience. The role holder is accountable for ensuring that AVEVA can withstand, respond to, and recover from disruption whether from a cyber incident, operational failure, or external crisis event and that resilience requirements are embedded into AVEVA's systems and ways of working by design. AVEVA is a fast-growing software company operating in highly regulated markets and is an independent subsidiary of Schneider Electric. This is a build role: the successful candidate will have the opportunity to establish this function from the ground up, defining the frameworks, tooling, and operating cadence that make AVEVA genuinely resilient at scale. The function must be continuously modernised through automation and innovation, so that resilience practices keep pace with the speed and complexity of AVEVA's business. We are building a highly integrated security practice where all security disciplines share and act in coordination on risk signal. The Director of Security Resilience must work closely with Cyber Defence whose incident response capability depends on resilience planning and with GRC to ensure resilience risk is captured in the enterprise risk register, and with federated IT and R&D security teams who own the systems and services that resilience planning protects. The successful candidate will combine deep resilience expertise with a collaborative, data-driven mindset and the drive to build something new. Operating at a senior level within this specialised field, the Director of Security Resilience will often be called on to provide consultation to leaders and counsel to the wider Security function. They are responsible for generating new theories, concepts, principles, and methodologies and will contribute significantly to the development of policy for the Digital Security function.

Your Match

How well this role fits your profile.

Company Intel

What employees say

Worked at aveva? Share your experience