Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Support oversight of Information Security and Cyber Security controls at LCH.
- Company: Join a leading financial services organisation focused on cyber risk and governance.
- Benefits: Competitive salary, professional development, and opportunities for career advancement.
- Other info: Dynamic role with excellent collaboration across teams and stakeholders.
- Why this job: Make a real impact in protecting critical business services and data assets.
- Qualifications: Experience in InfoSec/Cyber roles with strong knowledge of security technologies.
The predicted salary is between 60000 - 80000 £ per year.
Overview
The purpose of this role is to support the Director of Business Information Security (BISO) in the oversight of Information Security across LCH. The role contributes to ensuring that LCH’s critical business services, systems, and data assets are adequately protected, that information security and cyber controls are effective and operating within defined risk appetite, and that any identified gaps have appropriate and proportionate risk treatment plans in place. The role will best suit an experienced Information Security Professional with experience in InfoSec/Cyber roles within the FS or FMI industries. The successful candidate must have subject matter expertise in Information Security, as the role demands a strong knowledge in all areas of information security and cyber security, as well as in-depth knowledge of legacy, existing, and emerging technologies including cloud and security technologies/controls. A background in information security engineering, security architecture, and security operations will be advantageous given stakeholder and project engagement.
Responsibilities
- Information Security & Cyber Oversight: Support the oversight of Information Security and Cyber Security controls that enable LCH to operate securely and resiliently. Review and assess the design and operational effectiveness of security controls, identifying gaps, weaknesses, and improvement opportunities. Support the tracking, reporting, and follow‑up of InfoSec and Cyber risk remediation actions. Monitor cyber‑related roadmaps, programmes, and initiatives impacting LCH, identifying risks, dependencies, and areas requiring escalation.
- Cyber & Technology Domain Knowledge: Apply strong cyber and technology domain knowledge to understand, assess, and articulate security risks and control effectiveness across IAM/PAM, infrastructure and platform technologies, vulnerability management, cloud and SaaS security, and SDLC/applications security. Engage credibly with technical specialists and translate technical issues into clear, risk‑based insights for stakeholders.
- Vulnerability & Risk Remediation: Review vulnerability and security findings, analyse trends, coordinate with technology and engineering teams to support timely remediation, and support risk-based remediation decisions.
- Governance, Risk & Reporting: Contribute to risk, security, and governance forums with accurate updates; work with the three lines of defence; assist with Risk & Control Assessments; maintain key risk and performance indicators.
- Engagement with the Business: Develop understanding of business services and risks; identify improvements; support risk management decision‑making; mitigate emerging threats; build relationships across the business; collaborate across the three lines of defence on information security and data privacy.
- Stakeholder & Third‑Party Engagement: Work with technology and cyber teams; engage with internal third‑party oversight; maintain relationships with risk, compliance, legal, and audit.
- Executive Communication: Prepare executive materials reflecting current security posture; develop briefing papers and presentations; support senior leaders and communicate risk in regulator‑appropriate manner.
- Knowledge of Technology, Security & Threat Landscapes: Maintain awareness of emerging technologies and the threat landscape; contribute to articulating cyber risk mitigations; stay aware of data protection regulations; operate autonomously.
Essential experience and skills
- Experience in Information Security, Cyber Risk, Technology Risk, or Security Governance roles.
- Strong conceptual knowledge of IAM/PAM, infrastructure and platform technologies, vulnerability management, cloud and SaaS security concepts, and SDLC principles.
- Experience with risk, controls, and governance processes.
- Excellent written and verbal communication skills.
- Ability to operate independently and prioritise effectively.
Desirable Certifications
- CISSP
- CISM
- CCSP
Knowledge of Standards & Frameworks
- NIST Cyber Security Framework
- SOC 2
- CBEST / TIBER-EU
Career Stage Senior Associate
Information Security Officer – Cyber Risk & Governance employer: LSEG
Contact Detail:
LSEG Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Information Security Officer – Cyber Risk & Governance
✨Tip Number 1
Network like a pro! Reach out to folks in the industry, attend events, and join online forums. The more connections we make, the better our chances of landing that dream job.
✨Tip Number 2
Prepare for interviews by practising common questions and scenarios related to InfoSec and cyber risk. We should be ready to showcase our expertise and how we can tackle real-world challenges.
✨Tip Number 3
Don’t underestimate the power of follow-ups! After an interview, drop a quick thank-you email to express our appreciation and reiterate our interest. It keeps us on their radar.
✨Tip Number 4
Apply through our website! It’s the best way to ensure our application gets noticed. Plus, we can find roles that match our skills and interests perfectly.
We think you need these skills to ace Information Security Officer – Cyber Risk & Governance
Some tips for your application 🫡
Tailor Your CV: Make sure your CV is tailored to the Information Security Officer role. Highlight your experience in InfoSec and Cyber roles, especially within the FS or FMI industries. We want to see how your skills align with our needs!
Showcase Your Expertise: Don’t hold back on showcasing your subject matter expertise in Information Security. Include specific examples of how you've tackled security challenges and improved controls. This is your chance to shine!
Craft a Compelling Cover Letter: Your cover letter should tell us why you’re the perfect fit for this role. Share your passion for cyber risk and governance, and how your background aligns with our mission at LCH. Keep it engaging and professional!
Apply Through Our Website: We encourage you to apply through our website for a smoother application process. It helps us keep track of your application and ensures you don’t miss any important updates from us!
How to prepare for a job interview at LSEG
✨Know Your Stuff
Make sure you brush up on your knowledge of information security and cyber risk. Familiarise yourself with the latest trends in IAM/PAM, cloud security, and vulnerability management. Being able to discuss these topics confidently will show that you're not just a candidate, but a subject matter expert.
✨Speak Their Language
When engaging with technical specialists, translate complex security issues into clear, risk-based insights. Practice explaining technical concepts in simple terms, as this will demonstrate your ability to communicate effectively with stakeholders across different levels.
✨Showcase Your Experience
Prepare specific examples from your past roles that highlight your experience in security governance and risk management. Be ready to discuss how you've identified gaps in security controls and implemented effective remediation plans. This will help you stand out as a proactive problem-solver.
✨Engage and Build Relationships
During the interview, express your enthusiasm for collaborating with various teams, including technology, compliance, and legal. Highlight your ability to build relationships across the business, as this is crucial for success in the role. Show them that you're not just about the tech, but also about teamwork.