The regional information security manager under the direction of the Global CISO and regional CIO has end-to-end accountability for leading, planning and implementing information security controls and practices across the EMEA region. Working with the global Corporate Information Security team, this highly technical, skilled individual will leverage a combination of current and emerging technologies to ensure security standards are always exceeded and provide expert guidance on all items related to information security in region. State Street is particularly focused on new and innovative approaches to security grounded in experiences across high technology and government organizations.
DUTIES AND RESPONSIBILITIES:
Support the development of a longer term strategic technology roadmap which aligns to the future needs of the organization, to include the prioritization of critical cybersecurity initiatives with data security, informational security advancements. Balances the need for control of information assets with access requirements as it relates to the region and with global alignment.
Ability to provide input into highly detailed system architecture and design principles, ensuring security standards are incorporated within.
Partner with regional clients for their audit engagements both internal and external as a managed service provider.
Protect corporate cyber security information day to day within region and ensure there is consistency and alignment to the Global model where applicable.
Implement and achieve key quality and productivity metrics for data security and management as required within region; ensuring these are benchmarked to industry best practices.
Work with the Global CISO and Regional CIO in managing an effective information security function whereby key stakeholders are brought into the decision process. Drive the prioritization process by aligning business goals with information security resources, identifying the initiatives that are of the highest value to the business, and gaining buy-in for those initiatives.
Recruit, retain and manage an effective information security organization that endorses and support the values and mission of the company.
Integrate emerging data and cloud computing engineering technologies and opportunities into a sophisticated and elastic information security architecture, that both improves security of the firm's data assets, and offers greater flexibility to our clients in terms of access to their data assets, of which State Street is a custodian.
Lead the creation and ongoing maintenance of new security processes to address vulnerabilities for the technology portfolio.
Work with regional compliance and regulatory functions in guiding, implementing and understanding standards as they relate to information security.
Partner with corporate communications and other key local and global stakeholders to increase company-wide knowledge of security capabilities.
Oversee incident response and incident response planning, as well as the investigation of security breaches, and assist with disciplinary and legal matters associated with such breaches, as necessary.
Oversee regular third-party independent audits of information security systems and protocols, represent the company as a knowledgeable resource, and act as the primary contact for issues regarding State Street security.
State Street is seeking a dynamic and highly technical information security leader with an in-depth understanding of security standards across the EMEA region. This individual should have a balance of strategic leadership and vision with a passion for being "hands-on" with leading technology - particularly in the areas of data, cloud and security. It will be critical for the individual to bring a track record of success and fresh thinking to establish credibility within the organization and with its increasingly demanding client base. The Regional Senior Information Security Manager should be both a teacher and a learner, capable of introducing creativity and managing security with flexibity and the desire to support a transforming organization.
Technical and domain expertise
Deep experience in engineering and cloud computing, preferably in high transactional environments with complex security, operational and regulatory requirements.
Depth with newer technology stacks around data science and cloud.
Experience with newer XaaS models, including DevOps and testing automation.
Has a strong appreciation of, and ideally experience leading, information security, in a large, complex, global, highly regulated enterprise.
Seven plus years of recent senior level experience in an engineering or security function at organizations with complex operating environments.
Experience managing regional and global teams.
Relocation expenses are negotiable.
Internal Number: 4993092
About State Street UK
eFinancialCareers is a career site specializing in financial services.