Senior Manager, Business Information Security

Location: London, United Kingdom

Time Type: Full time

Posted On: Posted Yesterday

Job Requisition ID: R

Key Accountabilities:

1. Reviewing and assessing the information security and cyber controls that enable FTSE Russell to conduct its business securely, including gap analysis and oversight of remediation activities.
2. Leading and analyzing information security roadmaps, strategies, programs, and projects, identifying and reporting risks and opportunities for improvement.
3. Providing updates to FTSE Russell management regarding the delivery and progress of strategic cyber initiatives.
4. Engaging with external third parties and ensuring appropriate security measures are met.
5. Establishing and maintaining a Cyber Risk Profile and assisting with the Risk Control Assessment (RCA) focused on InfoSec/Cyber risks.
6. Driving key performance indicators and ensuring accurate management information reflects the current control estate.
7. Assessing security architecture solution designs and ensuring compliance with policies and standards.
8. Identifying key areas for improvement in business goals and operational risks.
9. Assisting with the identification of emerging information and cyber security threats and leading risk mitigation plans.
10. Working closely with governance stakeholders on matters relating to information security, cyber risk, and data privacy.
11. Challenging established controls to ensure continuous improvement in security risk mitigation.
12. Monitoring industry trends and keeping leadership informed about information security-related issues.
13. Reviewing and documenting technologies and security controls across the firm.
14. Implementing security controls maturity assessments against industry standards.
15. Reviewing and responding to regulatory matters and presenting risks to senior bodies.
16. Building knowledge of business units and assisting them with their security workloads.

Key Skills:

1. Knowledge of technology, security, and threat landscapes.
2. Deep knowledge of the cyber threat landscape and emerging technologies.
3. Understanding of global data protection regulations and legislation.
4. Proven track record in senior InfoSec management roles.
5. Excellent communication and stakeholder leadership skills.
6. Able to work pragmatically and efficiently in both team and individual settings.
7. Ability to prioritize efficiently with minimal supervision.
8. High performance in problem-solving and critical thinking.

Desirable & Advantageous Certifications:

1. CISSP-ISSAP, CISSP-ISSEP, CISM, CCSP, CCSK, CEH
2. ISO27K, ISF SOGP, NIST CSF, CIS, CSA STAR, CBEST, TIBER-EU, SOC2

LSEG is a leading global financial markets infrastructure and data provider. Our purpose is driving financial stability, empowering economies, and enabling customers to create sustainable growth.

We are proud to be an equal opportunities employer. We do not discriminate on the basis of race, religion, gender, or any other protected basis under applicable law.

Please take a moment to read this privacy notice carefully, as it describes what personal information LSEG may hold about you.