Senior Manager Disaster Recovery and Cyber Resilience

The Senior Manager Disaster Recovery and Cyber Resilience will define, deliver and embed an enterprise-wide capability to ensure timely, predictable recovery of critical business services following cyber, technology, or operational disruptions.

This role is accountable for moving the organization from traditional disaster recovery and documentation-based continuity planning to orchestrated, cyber-resilient recovery, with a specific focus on regional/country-level outages, hybrid environments, and identity-first recovery.

The role partners closely with Enterprise Architecture, IT Infrastructure, Information Security, Enterprise Risk, Legal, and Business Leadership and serves as the primary owner for BCP/DR/Cyber Resilience maturity, audit commitments, and regulatory expectations.

Enterprise Strategy & Governance

• Define and execute the enterprise BCP / DR / Cyber Resilience strategy and multi-year roadmap in line with strategy
• Establish clear recovery governance, decision authority, and escalation models
• Serve as owner for BCP/DR/CR-related audit findings, remediation plans, and reporting
• Align continuity and recovery practices with enterprise risk appetite and regulatory expectations

Recovery Orchestration & Architecture

• Design and implement business-service-based recovery orchestration, moving beyond application-centric DR
• Establish identity-first recovery sequencing across hybrid (on-prem, cloud, SaaS) environments
• Define and operationalize clean recovery / clean-room approaches for ransomware scenarios
• Partner with Architecture, Infrastructure, and Security teams to ensure recovery patterns are embedded in future-state designs

Business Impact Analysis & Tiering

• Lead enterprise Business Impact Analysis (BIA) standards, certification, and lifecycle management
• Ensure business services have defined, validated RTO/RPO targets
• Translate BIAs into executable recovery priorities and sequencing

Testing, Exercises & Validation

• In conjunction with IT Security, design and execute cyber-inclusive recovery testing, including regional and country-level scenarios
• Lead executive and leadership recovery simulations focused on decision-making under stress
• Ensure testing outcomes drive funded remediation and continuous improvement

Regional & Third-Party Resilience

• Establish a central standards / regional execution operating model
• Partner with regional IT and business leaders to validate local recovery readiness
• Assess and validate third-party and vendor recovery dependencies that could impact regional operations

Metrics, Reporting & Continuous Improvement

• Define and maintain enterprise and regional recovery metrics, including:
  • Immutable backup coverage
  • BIA certification
  • Validated RTO achievement
  • Recovery testing completion
  • Orchestration playbook readiness
• Provide regular reporting via CIO dashboards, IT Risk forums, and Audit Committee materials
• Drive continuous maturity improvement toward a resilient, repeatable recovery posture

• Senior experience in business continuity, disaster recovery, cyber resilience, or technology risk, with direct accountability for enterprise‑scale recovery capabilities.
• Demonstrated leadership during real-world cyber incidents or major outages, including cross-functional coordination, executive communication, and time‑critical decision-making.
• Proven ability to develop and execute enterprise-scale recovery orchestration, moving beyond traditional application‑centric DR toward business‑service‑based sequencing and automation
• Experience partnering with Audit Committees, regulators, enterprise risk, and senior business leaders, with the ability to clearly translate technical recovery strategies into business and risk impacts.

Technical Expertise

Network, Infrastructure & Platform Resilience

• Deep understanding of network segmentation and micro-segmentation strategies to contain lateral movement and enable controlled recovery operations, aligning with the comment recommending additional technical requirements.
• Experience implementing zero-trust architectures and secure isolation patterns across hybrid environments.
• Expertise with infrastructure components (DNS, load balancing, routing, SD‑WAN) and their behavior during partial outages or recovery states.

Cyber Recovery Architecture & Clean-Room Concepts

• Hands-on experience designing clean recovery / clean-room architectures, including sterile rebuild patterns, minimal‑trust environments, and tooling for post‑compromise reconstitution. 
• Deep knowledge of immutable backup strategies, air-gapped storage, and data integrity validation consistent with the enterprise metrics defined in the role.

Identity-First Recovery

• Extensive experience with identity platforms including Active Directory and cloud identity systems, covering secure rebuild patterns, recovery, and segregation, along with practical expertise in identity‑first recovery sequencing such as AD forest recovery, Azure AD and cloud identity restoration, privileged identity tiering, and break‑glass access.
• Expertise with Privileged Access Management (PAM) platforms, including secure rebuild and reintegration after cyber incidents. 

Operating System, Application & Container Recovery

• Experience creating and maintaining standardized recovery patterns for Windows, Linux, and virtualized environments—aligned to the orchestrated recovery expectations in the role. 
• Understanding of container platform recovery (e.g., Kubernetes cluster rebuild, control plane restoration) as referenced in the comment on additional technical expertise. 
• Expertise with database platform recovery across SQL, NoSQL, and cloud-native services, including replication vs. point‑in‑time restore strategies. 

Cloud & Hybrid Recovery Engineering

• Experience designing and executing recovery strategies for cloud-based workloads, ensuring alignment with multi-region and hybrid architecture models described in the role. 
• Familiarity with SaaS recovery patterns and dependency mapping across federated or multi-region organizations. 

Security Tools & Telemetry Recovery

• Strong understanding of how to safely restore and validate security tooling, including EDR, SIEM, logging pipelines, MFA, and forensic enrichment services following compromise.

Automation, Orchestration & Tooling

• Experience with recovery automation and orchestration tooling (Terraform, Ansible, Azure Automation, runbooks) enabling repeatable, predictable recovery outcomes aligned to the role’s orchestration mandate.

Preferred Experience

• Experience in regulated industries (financial services, insurance, healthcare, or similar)
• Familiarity with resilience frameworks (COBIT, NIST, ISO 22301, DORA)
• Experience operating in federated or multi-region organizations
• Prior responsibility for BCP/DR audit remediation and regulatory examinations

Leadership Attributes

• Ownership mindset — accountable for outcomes, not artifacts
• Calm and decisive under pressure
• Influences without direct authority
• Pragmatic, execution-oriented, and business-focused
• Comfortable challenging assumptions and legacy practices

Reporting & Location

• Reports to: CTO, Global IT Operations & Strategy
• Partners closely with: CISO, Enterprise Risk, Legal, Regional IT & Business Leaders