Head of Information Security, EMEA (City of London)

Key Responsibilities:

In this role, you will be responsible for overseeing and leading a team of security personnel across multiple domains including Security Operations, Global Security Administration, Physical Security, Data Security Analytics, PKI/Certificate Management, and Network Security Engineering. Your role will encompass a wide range of strategic, managerial, and technical responsibilities, including but not limited to:

Technical Leadership and Strategy:

• Provide strategic security guidance and direction for the engineering of multiple high-performing teams across diverse domains.
• Drive the vision and direction of security solutions through active participation in the information security market through involvement with vendors, conferences, connecting with peers for all the firms’ various key technologies.
• Lead, supervise and inspire local team multiple key areas, Global Security Admins, Security Operations, Data Security Scientists and other areas/teams as assigned.

Security Responsibility:

• Conduct in-depth technical vendor security reviews for all vendor solutions integrated into the organization\’s technology stack to ensure proactive security measures from vendors.
• Provide strategic security guidance for technology and delivery, including evaluation and recommendation of technical controls.
• Work closely with application and engineering teams and other infrastructure teams to support and implement security at every level within the firm.
• Proactively identified and addressed emerging technology threats, such as cloud computing security risks and data privacy concerns.
• Developed and implemented risk mitigation strategies, including control enhancements, policy changes
• Conduct information security awareness and training programs
• Ensure that the firm’s technology risk management practices are aligned with industry standards and best practices.
• Participate in rolling out global security initiatives including DLP, Network Segmentation, Secure Server Access
• Help oversee the development and implementation of the firm\’s information security program and governance framework
• Coordinate the response to security incidents and breaches and ensure timely reporting and remediation
• Liaise with external regulators, auditors, and vendors on security matters and compliance requirements

Required Background:

• Extensive knowledge of information security principles and best practices
• Ability to communicate effectively with senior management and stakeholders on security issues and risks
• Expertise in ensuring compliance with relevant cybersecurity regulations and frameworks, such as FCA, NIST, GDPR
• Experience in one or a combination of the following: systems, applications, or architecture planning
• Experience driving security awareness programs
• Strong verbal, written, and interpersonal communication skills
• Ability to influence across all organizational levels, particularly senior management
• Ability to negotiate, influence, and collaborate to build successful relationships
• Knowledge and understanding of data governance challenges as it relates to Data Loss Prevention
• Experience with Governance, Risk, and Compliance (GRC)
• A BS/BA degree or higher in information technology
• Agile experience
• Fundamental knowledge of AWS and/or Azure IaaS/PaaS services
• Self-disciplined, self-starter who can provide leadership and mentor others while resolving complex incidents and delivering projects