Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead the transformation of Enterprise Information Security Risk Management strategies.
- Company: Major Financial Markets firm with a strong focus on security and risk management.
- Benefits: Competitive salary, substantial bonus, and comprehensive benefits package.
- Why this job: Be a key figure in shaping security practices that impact the entire organisation.
- Qualifications: 10+ years in information security risk management with relevant certifications.
- Other info: Collaborative culture with opportunities for professional growth and influence.
The predicted salary is between 130000 - 150000 £ per year.
Head of Information & Cyber Security – Permanent Recruitment at Lawrence Harvey
Salary - £130-150k + 40-55k Bonus + Benefits
Location – London (in office 2-3 days per week)
I’m working with a major Financial Markets firm who are hiring for a Director of Information Security Risk Management to lead the change and transformation of their Enterprise Risk Management strategy. Working in the Enterprise and Operational Risk Management function, this role reports directly into the Chief Risk Officer, with a dotted line into the Global CISO; where you will be responsible for leading in the design and implementation of Enterprise Information Security Risk Management frameworks to identify and mitigate information security risks; with a broader scope across the entirety of the 1st and 2nd Lines of Defence.
They are looking for someone with considerable experience of driving and delivering enterprise security risk management programs within highly regulated Financial Markets and Banking organisations, who can not just set out strategy but direct the change and transformation efforts. This is a hugely influential role within a major global Financial Markets organization, where you will be the key figurehead and have an enormous impact on how they identify and mitigate against information security risks for years to come.
Key Responsibilities- Direct and lead in the design and implementation of Enterprise Information Security Risk Management frameworks to identify and mitigate information security risks; with a broader scope across the entirety of the 1st and 2nd Lines of Defence.
- Serve as the Information Security Risk Management focal point across the organization, acting as a trusted advisor whilst effectively challenging on the evolving Information Security, Technology and Data risk landscape.
- Drive a risk management culture across the organization of engagement, accountability and teamwork.
- Lead and develop a team of Information Security Risk professionals from Analyst up to Director level, fostering a high-performance and collaborative culture.
- Significant and demonstrable experience building and leading risk management programs across 1st and 2nd line of defence across Security, Technology and Data.
- Experience working in a highly regulated financial markets environment where the need for continuous availability and low latency, whilst ensuring highest levels of security is paramount.
- In-depth knowledge of key security risk management frameworks, in particular NIST Cyber Security Framework and Cyber Risk Institute CRI profile, are essential.
- 10+ years’ experience dedicated to information security risk management, governance and operations.
- Relevant and current certifications (CISSP, CRISC, CISM, etc) highly desirable.
Seniority level: Director
Employment type: Full-time
Job function: Information Technology
Financial Services, Capital Markets, and Banking
Director Information Security employer: Lawrence Harvey
Contact Detail:
Lawrence Harvey Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Director Information Security
✨Network Like a Pro
Get out there and connect with people in the industry! Attend events, join online forums, and don’t be shy about reaching out on LinkedIn. We all know that sometimes it’s not just what you know, but who you know that can help land that dream job.
✨Show Off Your Expertise
When you get the chance to chat with potential employers, make sure to highlight your experience in risk management frameworks like NIST. We want to see you confidently discuss how you've driven change in previous roles, especially in regulated environments like financial markets.
✨Prepare for the Interview
Do your homework before the interview! Research the company’s current security posture and think about how you can contribute to their risk management strategy. We suggest preparing some insightful questions to show you’re genuinely interested in their challenges and how you can help.
✨Apply Through Our Website
Don’t forget to apply through our website! It’s the best way to ensure your application gets seen by the right people. Plus, we’re always looking for top talent like you to join our team and make an impact in the world of information security.
We think you need these skills to ace Director Information Security
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the Director of Information Security role. Highlight your experience in risk management and any relevant frameworks like NIST. We want to see how your background aligns with the job description!
Craft a Compelling Cover Letter: Your cover letter is your chance to shine! Use it to explain why you're the perfect fit for this role. Share specific examples of how you've led change in security risk management before. We love a good story!
Showcase Your Leadership Skills: Since this role involves leading a team, make sure to highlight your leadership experience. Talk about how you've fostered a collaborative culture and driven engagement in previous roles. We’re all about teamwork here at StudySmarter!
Apply Through Our Website: Don’t forget to apply through our website! It’s the best way for us to keep track of your application and ensure it gets the attention it deserves. We can’t wait to see what you bring to the table!
How to prepare for a job interview at Lawrence Harvey
✨Know Your Frameworks
Make sure you’re well-versed in key security risk management frameworks like the NIST Cyber Security Framework and the Cyber Risk Institute CRI profile. Be ready to discuss how you've applied these frameworks in your previous roles, especially in highly regulated environments.
✨Showcase Your Leadership Skills
As a Director, you'll need to lead teams effectively. Prepare examples of how you've built and developed high-performance teams in the past. Highlight your ability to foster a collaborative culture and drive a risk management mindset across the organisation.
✨Understand the Business Impact
Demonstrate your understanding of how information security risks can impact business operations, particularly in financial markets. Be prepared to discuss strategies you've implemented to ensure continuous availability and low latency while maintaining high security standards.
✨Be a Trusted Advisor
In this role, you’ll act as a trusted advisor. Think about how you can effectively challenge the status quo and engage with stakeholders at all levels. Prepare to share instances where you've successfully influenced decision-making around information security risks.
