Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead a team to enhance information security and data management risk governance.
- Company: International Financial Services firm based in London with a dynamic culture.
- Benefits: Competitive salary, bonus, hybrid work model, and career development opportunities.
- Why this job: Make a significant impact on cyber security in a global financial environment.
- Qualifications: 7+ years in information security and risk management; strong leadership skills required.
- Other info: Engage with top stakeholders and drive change in a highly regulated industry.
The predicted salary is between 110000 - 135000 £ per year.
My client, an International Financial Services firm, based in London, are looking for an Information Security Lead (Director level). You will have to be in the office x 2 days per week.
The Cyber and Information Risk Program Support Lead is responsible for leading a team to support execution of my client's Enterprise Risk Management and Operational Risk Management programs for cyber, information security, and data management risk. The successful candidate will provide review and credible challenge of the effectiveness of information security and data management risk governance, identification, assessment, response, monitoring, and reporting capabilities. This position is highly engaged with firm-wide Information Security and Data Management teams who provide risk and control solutions as well as all corporate departments that own cyber, information security, and data management risk.
Essential Functions / Major duties and responsibilities of the job
- Strategic Risk Culture - Assist the Head of Technology and Information Security Risk Management and Head of Enterprise Risk and Operational Risk Management in driving the culture of engagement, teamwork and accountability.
- Risk Assessments - Work with the Information Security and Data Management teams to challenge risk assessments, and lead in efforts to strengthen the control environment in line with the evolving threat landscape.
- Enterprise and Operational Risk Management Framework - Support the CRO and Head of Enterprise Risk and Operational Risk Management in furthering the use and efficacy of the ERM and ORM framework while enhancing its applicability to manage information security and data management risk.
- Operational Review and Credible Challenge - Provide review and credible challenge of information security and data management risk profile and associated framework components, e.g., risk and control self‐assessments, control testing, event management, metrics and indicators, risk appetite, finding management, and reporting.
- Risk Oversight - Lead in executing oversight of information security and data management risks by performing the following:
- Provide subject matter expertise to business units to drive, guide and influence risk ownership, clarity and assessment of risks & controls.
- Review and monitor the progress of actions and validate appropriateness of closure evidence.
- Document credible challenge of information security and data management risk appetite to support the Enterprise Risk management (ERM) program.
- Regular review and challenge of key risk indicators including thresholds and applicability to risk appetite.
- Prepare monthly and quarterly ORM/ERM reports and present to Technology Leadership, Audit, and regulatory bodies as required.
- Provide challenge of risk management of material information security and data management projects that may impact the firm's risk profile.
- Work with business partners to challenge the quality of the project inherent risk assessments and contribute to the independent risk review for projects.
- Review project benefits and closure artifacts in preparation for transition to BAU.
What we are looking for:
- 7+ years of experience building, maintaining, and managing information security and data management risk governance, operations, and risk management functions.
- Broad-based technology experience at substantial scale and complexity in a global, highly regulated, high‐volume transaction environment. Experience must include time operating within transaction services environments characterized by the need for continuous availability and the highest levels of security.
- Experienced developing and managing Enterprise and Operational Risk programs related to information security and data management, including implementing risk and control frameworks in accordance with best practices and Basel requirements.
- Experienced leading in a complex matrixed organization, ideally in a global firm with a dynamic and rapidly changing environment.
- Experienced leading within a highly regulated environment, with a preference for experience at the international and federal levels.
- Deep knowledge of information security and data management risk and control frameworks and a strong understanding of policies, procedures, guidelines, and structure.
- Functional expertise, with operational knowledge of and exposure to various current and emerging information security and data management areas such as:
- Cyber resilience
- Identity & privileged access management
- Secure coding practices
- Cloud security configuration and control frameworks
- Artificial Intelligence
- Third‐party risk management
- Incident management
- Threat/vulnerability management
- Network security
- Data governance
- Data quality
- Data architecture/lineage
If the above is of interest please apply to this advertisement or call me on 0207 509 8040 or send your CV directly to darius.goodarzi@robertwalters.com.
Director - Information Security Lead (2nd Line) in London employer: Cyber Security training courses
Contact Detail:
Cyber Security training courses Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Director - Information Security Lead (2nd Line) in London
✨Tip Number 1
Network like a pro! Get out there and connect with folks in the industry. Attend meetups, conferences, or even webinars. You never know who might have the inside scoop on job openings or can put in a good word for you.
✨Tip Number 2
Prepare for those interviews! Research the company and its culture, especially around information security. Be ready to discuss how your experience aligns with their needs and how you can contribute to their risk management goals.
✨Tip Number 3
Showcase your expertise! Bring examples of your past work that demonstrate your skills in managing information security risks. Use metrics and outcomes to highlight your impact – numbers speak volumes!
✨Tip Number 4
Don’t forget to follow up! After an interview, shoot a quick thank-you email to express your appreciation. It keeps you on their radar and shows your enthusiasm for the role. Plus, it’s just good manners!
We think you need these skills to ace Director - Information Security Lead (2nd Line) in London
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the role of Information Security Lead. Highlight your experience in risk management and governance, and don’t forget to mention any relevant certifications like CISSP or CISM.
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you’re the perfect fit for this role. Mention specific experiences that align with the job description and show your passion for information security.
Showcase Your Leadership Skills: As a Director, leadership is key. In your application, emphasise your experience in leading teams and projects, especially in complex environments. Share examples of how you've influenced risk culture and driven accountability.
Apply Through Our Website: We encourage you to apply through our website for a smoother process. It’s the best way for us to receive your application and ensure it gets the attention it deserves!
How to prepare for a job interview at Cyber Security training courses
✨Know Your Stuff
Make sure you brush up on the latest trends and frameworks in information security and data management. Familiarise yourself with NIST, ISO 27001, and any other relevant standards. Being able to discuss these confidently will show that you're not just a candidate, but a knowledgeable leader.
✨Showcase Your Leadership Skills
As a Director, you'll need to demonstrate your ability to lead teams and influence stakeholders. Prepare examples of how you've successfully managed risk in previous roles, especially in complex environments. Highlight your experience in mentoring junior staff and driving a culture of accountability.
✨Prepare for Scenario Questions
Expect to face scenario-based questions that assess your problem-solving skills. Think about past challenges you've faced in information security and how you navigated them. Be ready to explain your thought process and the outcomes of your decisions.
✨Engage with the Interviewers
Don't just wait for questions; engage with your interviewers. Ask insightful questions about their current risk management strategies and how they see the role evolving. This shows your genuine interest in the position and helps you gauge if the company aligns with your values.
