Senior Information Security Officer,Vice President

Posted on Dec 10, 2018 by State Street UK

London, London United Kingdom
20 Nov 2018
Annual Salary
Sr. Role Description
The Senior Information Security Officer (Sr. ISO) will drive compliance with CIS security controls in their business unit/region/country/functional area which they represent. The Senior ISO will serve as a trusted and influential information security advisor to senior-level business management in a large organization. The Sr. ISO will be responsible for monitoring compliance throughout their assigned business area by engaging in the following

  • Successfully position themselves as a trusted advisor sought out by senior management for advice and guidance on security issues
  • Develop and maintain a strong understanding of business processes and technologies used across UKMEA/ EMEA, and the current state of information security control implementation across these
  • Build education & awareness model for UKMEA
  • Lead the region and drive the Compass plan deliverables alongside EMEA ISO
  • Interact with UK Regulators representing the business on our program and control environment
  • Partner with CIS to deliver metric reporting to management and risk committees
  • Help build central resource model and manage in region ISO team
  • Interact with process and technology owners to drive incorporation of business requirements > information security risk mitigation
  • Help CIS understand the potential business impacts of proposed new controls, and of potential security risks from new business initiatives
  • Actively help business unit management evaluate and mitigate risks associated with third party vendors, as part of State Street's broader third party risk program
  • Act as a knowledge bridge between the business line and Corporate Information Security (CIS) during monthly reviews of information security controls
  • Attend and actively participate in recurring meetings of State Street's global Information Security Officer Network
  • Oversee the work of the business unit Information Security resources (Information Security Officers and Administrators)
  • Participate in security incident response program representing the business area to detect and to respond to incidents in a timely manner
  • Ensure management attention to CIS Vendor Risk assessment deliverables
  • Demonstrate a commitment to information security by obtaining additional training and staying current with information security technologies and practices.
  • Review and approve non-standard access for high risk access (e.g. blocked web sites, mass storage, application access, non-standard device and non-expiring passwords, process and system IDs)

Sr. ISO Competencies and Authorization Level (includes Region/Country Sr. ISO)
The Sr. ISO (VP or above) should possess the following skills/experience
§ 5 to 7 years of information security program management/leadership experience
§ Business concepts including financial, business requirements, compliance and risk management
§ Financial services experience a plus
§ CISA, CISM, CISSP or similar certification required or an agreed upon plan to achieve this certification within 1 year of hire
§ Ability to courageously influence colleagues at all levels
§ Strong written and oral communication skills
§ Strong presentation skills

Reference: 599062062

Similar Jobs

Vice President, Compliance Officer

London, London United Kingdom

Michael Page Financial Services

Senior Counsel, Vice President

London, London United Kingdom

State Street UK

Institutional Securities, Internal Auditor- Vice President

London, London United Kingdom

Morgan Stanley

Senior Information Officer

London, London United Kingdom

Morgan Hunt UK Limited