Senior Information Security Officer,Vice President

Posted on Dec 10, 2018 by State Street UK

London, London United Kingdom
Legal
20 Nov 2018
Annual Salary
Full-Time
Sr. Role Description
The Senior Information Security Officer (Sr. ISO) will drive compliance with CIS security controls in their business unit/region/country/functional area which they represent. The Senior ISO will serve as a trusted and influential information security advisor to senior-level business management in a large organization. The Sr. ISO will be responsible for monitoring compliance throughout their assigned business area by engaging in the following

  • Successfully position themselves as a trusted advisor sought out by senior management for advice and guidance on security issues
  • Develop and maintain a strong understanding of business processes and technologies used across UKMEA/ EMEA, and the current state of information security control implementation across these
  • Build education & awareness model for UKMEA
  • Lead the region and drive the Compass plan deliverables alongside EMEA ISO
  • Interact with UK Regulators representing the business on our program and control environment
  • Partner with CIS to deliver metric reporting to management and risk committees
  • Help build central resource model and manage in region ISO team
  • Interact with process and technology owners to drive incorporation of business requirements > information security risk mitigation
  • Help CIS understand the potential business impacts of proposed new controls, and of potential security risks from new business initiatives
  • Actively help business unit management evaluate and mitigate risks associated with third party vendors, as part of State Street's broader third party risk program
  • Act as a knowledge bridge between the business line and Corporate Information Security (CIS) during monthly reviews of information security controls
  • Attend and actively participate in recurring meetings of State Street's global Information Security Officer Network
  • Oversee the work of the business unit Information Security resources (Information Security Officers and Administrators)
  • Participate in security incident response program representing the business area to detect and to respond to incidents in a timely manner
  • Ensure management attention to CIS Vendor Risk assessment deliverables
  • Demonstrate a commitment to information security by obtaining additional training and staying current with information security technologies and practices.
  • Review and approve non-standard access for high risk access (e.g. blocked web sites, mass storage, application access, non-standard device and non-expiring passwords, process and system IDs)

Sr. ISO Competencies and Authorization Level (includes Region/Country Sr. ISO)
The Sr. ISO (VP or above) should possess the following skills/experience
§ 5 to 7 years of information security program management/leadership experience
§ Business concepts including financial, business requirements, compliance and risk management
§ Financial services experience a plus
§ CISA, CISM, CISSP or similar certification required or an agreed upon plan to achieve this certification within 1 year of hire
§ Ability to courageously influence colleagues at all levels
§ Strong written and oral communication skills
§ Strong presentation skills

Reference: 599062062

Similar Jobs

Vice President, Compliance Officer

London, London United Kingdom

Michael Page Financial Services

Senior Counsel, Vice President

London, London United Kingdom

State Street UK

Institutional Securities, Internal Auditor- Vice President

London, London United Kingdom

Morgan Stanley

Senior Information Officer

London, London United Kingdom

Morgan Hunt UK Limited