Your new company

Our client is one of the UK's largest investment managers offering equity, international, fixed income, alternative and money market strategies. Investors around the globe have relied on the company for world-class investment management since 1955. The company's success in the investment management industry over the decades comes from a commitment to excellence and integrity.

Your new role

• The purpose of the role is to manage the operational security team and deputise the Head of Information Security.
• You will manage and provide oversight to the operational security team.
• You will oversee delivery of key security services including vulnerability management, security monitoring, third part risk monitoring, security awareness and access management.
• Act as the bridge between security operations and the rest of the Technology teams both the support and project delivery front.
• Engage with the Information Security team based in US for alignment and effective stakeholder management.
• Act as the primary point of contact for non-technical stakeholders, internal and external (Client services and RFP teams, Risk, Audit etc.).
• Provision regular security status and operation effectiveness reporting, written and verbal.
• Manage the capacity planning for the operational security team and align priorities with the rest of the IT functions.
• Manage the delivery of key operational security services.
• Managing the capacity and the backlog of the operational security team.
• Providing regular reporting on the performance of operational security services and escalating risks.
• Acting as the primary liaison between the operational security team and other key stakeholders within IT, across the business and with the team based in US.

What you'll need to succeed

• You will need a strong professional experience in developing policy and standard requirements based on best practices.
• Experience with IT security and privacy frameworks, standards and regulations, including ISO27001, NIST, SOX, GDPR.
• Experience and ability to participate in technical audits of IT and IT security controls.
• Experience in managing and leading teams in cyber security or related areas.
• Industry recognized technical certification desirable - (CISA) Certified Information Systems Auditor, (CISM) Certified Information Security Manager, (CISSP) Certified Information Systems Security Professional, (CGEIT) Certified in the Governance of Enterprise IT, (CRISC) Certified in Risk and Information Systems Control or (CBCP) Certified Business Continuity Professional.
• Knowledge of assurance standards e.g. SOC2, AAF 0106, ISAE 3402.
• Excellent stakeholder management skills and experience working with non-technical stakeholders. Demonstrated ability to interact with technical teams.
• Broad understanding of information security and excellent interpersonal and collaborative skills to develop strong working relationships and positively influence.
• Able to analyse and interpret information, reporting conclusions in formats aligned to the target audience. Understanding of policy and procedure, and the ability to implement that understanding across a wide range of information security and compliance support scenarios.

• Previous experience in financial services and investment management is desirable.

What you'll get in return

• This role will give you the opportunity to develop your skills and knowledge in a company providing world-class investment solutions to financial professionals in the US and around the world.
• Our client offers competitive salary and bonus.

What you need to do now

If you are interested in this role, feel free to send me your updated CV at Doriane.madec1@hays.com