Responsibilities:

• Lead and manage the monitoring, logging and remediation of alerts/tickets from our security stack in collaboration with Infrastructure and the Service Desk
• Monitor the remediation of the firms proactive security programme and measures including penetration testing
• Lead and manage the security aspects of all in house software development (HTech) including integration and performance
• Proactively manage the firm’s internal/external information security systems, the associated documentation, assurance activities, evidence, measures, corrective actions and risk portfolio.
• Leading and directing collaborative teams to identify, develop, implement, and maintain security processes, practices, and policies throughout the firm to ensure it is as resilient as possible.
• Ensure the firm’s compliance with the local, national, and international regulatory environments where applicable to the accountability of this role (i.e. information security privacy and data protection)
• Assist the CSO in managing the day-to-day security operations of the firm
• Assist in the implementation and internal audit of the firms ISO 27001 certification
• In partnership with the CSO you will oversee incident response planning as well as the investigation of security breaches, and assist with disciplinary and legal matters associated with such breaches as necessary

Required:

• Must be proficient and have relevant Security Systems experience
• Must be a confident, intelligent, articulate and persuasive specialist who can engage with the senior management team and who is able to communicate security-related concepts to a broad range of technical and non-technical staff
• Must be able to thrive in a highly interactive team environment and possess highly effective interpersonal, communication, collaborative, and leadership skills
• Must have experience leading enterprise level incident response
• Able to work well under pressure, multi-task, and deliver on multiple priorities
• Bachelor’s Degree or relevant experience within a similar professional services role
• CISM and/or CISSP qualifications (or equivalent) would be preferred
• Have demonstrable experience of conducting and overseeing technical risk assessments and supplier security due diligence assessments
• Have demonstrable experience of conducting and overseeing technical risk assessments and supplier security due diligence assessments.