Match score not available

Director, Information Security Risk

extra holidays - extra parental leave - fully flexible

Remote:

Full Remote

Contract:

Full time

Experience:

Expert & Leadership (>10 years)

Work from:

United Kingdom

Offer summary

Qualifications:

CISSP, CRISC, GCEIT, CISA preferred.

Key responsabilities:

Lead security risk assessments and communication.
Deliver metrics and reporting to stakeholders.
Champion security risk management across the organization.
Manage continual risk and control self-assessment effectiveness.
Engage with leadership on security strategy development.

CLS Group Financial Services SME https://www.cls-group.com/

501 - 1000 Employees

See more CLS Group offers

Job description

About CLS:

CLS is the trusted party at the centre of the global FX ecosystem. Utilized by thousands of counterparties, CLS makes FX safer, smoother and more cost effective. Trillions of dollars’ worth of currency flows through our systems each day.

Created by the market for the market, our unrivalled global settlement infrastructure reduces systemic risk and provides standardization for participants in many of the world’s most actively traded currencies. We deliver huge efficiencies and savings for our clients: in fact, our approach to multilateral netting shrinks funding requirements by over 96% on average, so clients can put their capital and resources to better use.

CLS products are designed to enable clients to manage risk most effectively across the full FX lifecycle – whether through more efficient processing tools or market intelligence derived from the largest single source of FX executed data available to the market.

Our ambition to make a positive difference starts with our people. Our values – Protect, Improve, Grow – underpin everything that we do at CLS and define and shape a supportive and inclusive working environment in which everyone is encouraged to be open and forward-thinking.

Job information:

Functional title - Director - Information Security Risk
Department - Security Risk Management
Corporate level - Director
Report to - Director - Information Security Risk
Location - London

What you will do:

Operational

Primary focal point for security risk assessments creation and communication across projects and BAU engagements
Deliver and communicate metrics and reporting to internal and external stakeholders
Main communication delivery point for SRM for all internal committees
Champion security risk management within the first line, engaging with stakeholders across the organization to improve the security risk culture and posture.
Ensure KRIs are effective in identifying weakness, areas of focus or significant challenge
Manage and operate continual risk and control self-assessment (RCSA) effectiveness across security.
Maintain security functions risk profile within the Operational Risk Management Tool, submitting all risk updates across the team and tracking to closure.
Participate in audits of security or business areas with security in scope
Assist the SRM team with full scope of services such as, but not limited to, Due Diligence Questionnaires and Application Risk Assessments.
Support CLS Security’s response to regulatory deliverables, including examinations, continuous monitoring sessions, and responses to regulatory correspondence.
Execute and lead additional SRM objectives as necessary.

Strategic

Engage with the Head of Security Strategy & Business Engagement to support the development of the annual security strategy
Serve as thought leader to consider emerging security best practices for security operational risk management
Support the Head of Information Security Risk Manager in continual improvement of security risk management across the security program and the wider organization.
Foster the understanding of security risk management across the functional security teams and alignment of security risk management. .
Act as trusted security advisor to the business and technical teams, assisting them on understanding and addressing cyber risk.
Develop relationships with the business, technology, second line, third line, and other CISO teams.
Review results of cyber security risk appetite non-compliance, understand the gaps identified, their root causes, assess impacts, and provide guidance to responsible stakeholders on risk remediation and reduction prioritization.
Working knowledge of security risk frameworks and the ability to apply them across a rapidly changing environment.
Ability to apply pragmatic approaches to managing security risk and establishing a continuous improvement program across the environment.

Leadership

Excellent written and verbal communication skills
Work as an individual contributor while being a self-starter.
Autonomous worker that meets deadlines.
Collaborate and influence senior stakeholders to gain consensus on security risk management

Professional qualifications / certifications

CISSP, CRISC, GCEIT, CISA preferred

#LI-JF1

Our commitment to employees:

At CLS, we celebrate diversity and consider this to be one of our strongest assets. We are committed to fostering an environment in which everyone feels comfortable to be who they are, and inclusion is valued. All employees have access to our inclusive benefits, including:

Holiday - UK/Asia: 25 holiday days and 3 ‘life days’ (in addition to bank holidays). US: 23 holiday days.
2 paid volunteer days so that you can actively support causes within your community that are important to you.
Generous parental leave policies to ensure you can enjoy valuable time with your family.
Parental transition coaching programmes and support services.
Wellbeing and mental health support resources to ensure you are looking after yourself, and able to support others.
Affinity Groups (including our Women’s Forum, Black Employee Network and Pride Network) in support of our organisational commitment to embrace and always be learning more about DE&I.
Hybrid working to promote a healthy work/life balance, enabling employees to work collaboratively in the office when needed and work from home when they don’t.
Active support of flexible working for all employees where possible.
Monthly ‘Heads Down Days’ with no meetings across the whole company.
Generous non-contributory pension provision for UK/Asia employees, and 401K match from CLS for US employees.
Private medical insurance and dental coverage.
Social events that give you opportunities to meet new people and broaden your network across the organisation.
Annual flu vaccinations.
Discounts and savings and cashback across a wide range of categories including health and retail for UK employees.
Discounted Gym membership – Complete Body Gym Discount/Sweat equity program for US employees.
All employees have access to Discover – our comprehensive learning platform with 1000+ courses from LinkedIn Learning.
Access to frequent development sessions on a number of topics to help you be successful and develop your career at CLS.