IT Security & Tech Risk AVP

Job Description

Who we are looking for An Information Security Officer who will be part of a team across EMEA; responsible for ensuring the security of the business and functional teams in line with company security policy and risk tolerances. What you will be responsible for

• Consistent and effective engagement with Information Technology and Business leadership to embed security into their strategic and tactical plans.
• Champion the Information Security mandates acting as a liaison between Global Cyber Security (GSC) and Business Units (BU).
• Addressing cyber security and risk posture within the region.
• Being a Trusted Security Adviser to the Regional Leadership team.
• Cross pollinating information risk management practices across to the BU as a standard practice.
• Serve as an informed liaison between the Global Cyber Security org and regional business units and management.
• Assist in the development and successful outcomes of Security KPIs that drive control effectiveness.
• Directly support security assessments.
• Participate in Information Security and 3rd Party Risk Management (TPRM) assessment for assigned BU.
• Stay up to date on present and emerging security trends, technology, & threats.

What we value

• Collaborate across Global Cyber Security and business partner teams to ensure alignment addressing security policies in their products and services.
• Create visibility through effective metrics and reporting.
• Participate actively in decision making with engagement management and seek to understand the broader impact of current decisions.
• Create and deliver effective presentations as a means for communicating project and deliverable progress.
• Build and nurture positive working relationships with clients with the intention to exceed client expectations.
• Ability to give presentations at all levels and diverse audiences.
• Work cross-functionally with team members to support and enhance collaborative environment.
• Positioning security within the business with the ability to communicate in non-technical terminology.
• Partner with your stakeholders to identify, evaluate, and address cyber security risks.
• Ensures and monitors security compliance with industry and government rules and regulations.
• Coordinates with technology and business groups to assess, implement, and monitor IT-related security risks.
• An ability to communicate complex and technical issues to diverse audiences, orally and in writing, in an easily-understood, authoritative, and actionable manner
• Report security performance against established security metrics.
• Promote information security awareness program to ensure staff members across the organization understand the trade-off between risk and return.
• Understands "voice of the customer" and develops mechanisms to proactively sense adoption and usage patterns by end users so that policy can align with need.

Desired Outcomes

• Delivery of effective security outcomes that drives improvements of security within the business.
• Development of Forum based security communication channels.
• Reach target Key Risk Indicators for security

Education & Preferred Qualifications

• Technical understanding and experience developing and implementing innovated techniques and solutions to delivering cost efficient security solutions.
• Hands-on experience or working knowledge in multiple security domains: firewall, network, VPN, encryption, code review, Windows/Unix security hardening, security framework & standards, various protocols (e.g., TCP/IP, UDP, MPLS, SSL/TLS, SSH, HTTPS, FTP,RDP, ICA, BGP, LDAP, etc.)
• An interest in data analysis, feeding into decision-making processes
• An ability to effectively influence others to modify their opinions, plans, or behaviors
• Ability to react to dynamic changing environments

Preference not Mandatory : Certified Information Systems Security Professional (CISSP), Certified in Risk and Information Systems Control (CRISC), and/or Certified Information Security Manager (CISM) Critical Leadership Capabilities

• Driving results
• Strategic Thinking
• Collaborating & Influencing
• Change Management
• Senior Executive communication

Are you the right candidate Yes!We truly believe in the power that comes from the diverse backgrounds and experiences our employees bring with them. Although each vacancy details what we are looking for, we dont necessarily need you to fulfil all of them when applying. If you like changeand innovation, seek to see the bigger picture, make data driven decisions and are a good team player, you could be a great fit. Why this role is important to usOur technology function, Global Technology Services (GTS), is vital to State Street and is the key enabler for our business to deliver data and insights to our clients. Were driving the companys digital transformation and expanding business capabilities usingindustry best practices and advanced technologies such as cloud, artificial intelligence and robotics process automation. We offer a collaborative environment where technology skills and innovation are valued in a global organization. Were looking for top technical talent to join our team and deliver creative technology solutions that help us become an end-to-end, next-generationfinancial services company. Join us if you want to grow your technical skills, solve real problems and make your mark on our industry. About State StreetWhat we do. State Street is one of the largest custodian banks, asset managers and asset intelligence companies in the world. From technology to product innovation, were making our mark on the financial services industry. For more than two centuries,weve been helping our clients safeguard and steward the investments of millions of people. We provide investment servicing, data & analytics, investment research & trading and investment management to institutional clients. Work, Live and Grow. We make all efforts to create a great work environment. Our benefits packages are competitive and comprehensive. Details vary by location, but you may expect generous medical care, insurance and savings plans, among other perks.Youll have access to flexible Work Programs to help you match your needs. And our wealth of development programs and educational support will help you reach your full potential. Inclusion, Diversity and Social Responsibility. We truly believe our employees diverse backgrounds, experiences