Head of Information Security, EMEA

Jefferies is a leading global financial services company that is committed to delivering cutting-edge information security solutions to safeguard our organization’s digital assets and protect our client’s data. We are seeking a highly skilled and experienced professional to join our team as Senior Vice President, Head of Security EMEA. This critical leadership role will report directly to the local Chief Information Officer (CIO) and global Chief Information Security Officer (CISO) and play a pivotal role in shaping the information security strategy and engineering direction for our organization.

The Head of Security EMEA is a senior-level position responsible for overseeing and managing all security aspects for an organization in the region. The candidate must be technical and adaptable to the rapid pace of financial services development and delivery. The candidate needs to be an excellent team player with good overall technical and communication skills and, above all, be self-motivated and drive the overall progress of the security program at Jefferies. We look to hire people who are comfortable working with minimal supervision as part of a team that consistently delivers groundbreaking and innovative solutions in one of the most exciting and fast-moving areas of the financial markets vertical. We need people who can prioritize and effectively communicate complex issues within all levels of the organization.

Key Responsibilities:

• Overseeing and leading a team of security personnel across multiple domains including Security Operations, Global Security Administration, Physical Security, Data Security Analytics, PKI/Certificate Management, and Network Security Engineering.
• Provide strategic security guidance and direction for the engineering of multiple high-performing teams across diverse domains.
• Drive the vision and direction of security solutions through active participation in the information security market.
• Lead, supervise, and inspire the local team in multiple key areas.
• Conduct in-depth technical vendor security reviews for all vendor solutions integrated into the organization’s technology stack.
• Provide strategic security guidance for technology and delivery, including evaluation and recommendation of technical controls.
• Work closely with application and engineering teams to support and implement security at every level within the firm.
• Proactively identify and address emerging technology threats.
• Develop and implement risk mitigation strategies, including control enhancements and policy changes.
• Conduct information security awareness and training programs.
• Ensure that the firm’s technology risk management practices are aligned with industry standards and best practices.
• Participate in rolling out global security initiatives.
• Help oversee the development and implementation of the firm’s information security program and governance framework.
• Coordinate the response to security incidents and breaches.
• Liaise with external regulators, auditors, and vendors on security matters and compliance requirements.

Required Background:

• Extensive knowledge of information security principles and best practices.
• Ability to communicate effectively with senior management and stakeholders on security issues and risks.
• Expertise in ensuring compliance with relevant cybersecurity regulations and frameworks.
• Experience in systems, applications, or architecture planning.
• Experience driving security awareness programs.
• Strong verbal, written, and interpersonal communication skills.
• Ability to influence across all organizational levels.
• Knowledge and understanding of data governance challenges as it relates to Data Loss Prevention.
• Experience with Governance, Risk, and Compliance (GRC).
• A BS/BA degree or higher in information technology.
• Agile experience.
• Fundamental knowledge of AWS and/or Azure IaaS/PaaS services.
• Self-disciplined, self-starter who can provide leadership and mentor others while resolving complex incidents and delivering projects.