Head of Information Security, EMEA
Jefferies is a leading global financial services company that is committed to delivering cutting-edge information security solutions to safeguard our organization's digital assets and protect our client’s data. We are seeking a highly skilled and experienced professional to join our team as Senior Vice President, Head of Security EMEA. This critical leadership role will report directly to the local Chief Information Officer (CIO) and global Chief Information Security Officer (CISO) and play a pivotal role in shaping the information security strategy and engineering direction for our organization.
The Head of Security EMEA is a senior-level position responsible for overseeing and managing all security aspects for an organization in the region. The candidate must be technical and adaptable to the rapid pace of financial services development and delivery. The candidate needs to be an excellent team player with good overall technical and communication skills and, above all, be self-motivated and drive the overall progress of the security program at Jefferies.
We look to hire people who are comfortable working with minimal supervision as part of a team that consistently delivers groundbreaking and innovative solutions in one of the most exciting and fast-moving areas of the financial markets vertical. We need people who can prioritize and effectively communicate complex issues within all levels of the organization.
Key Responsibilities:
In this role, you will be responsible for overseeing and leading a team of security personnel across multiple domains including Security Operations, Global Security Administration, Physical Security, Data Security Analytics, PKI/Certificate Management, and Network Security Engineering. Your role will encompass a wide range of strategic, managerial, and technical responsibilities, including but not limited to:
Technical Leadership and Strategy:
- Provide strategic security guidance and direction for the engineering of multiple high-performing teams across diverse domains.
- Drive the vision and direction of security solutions through active participation in the information security market through involvement with vendors, conferences, and connecting with peers for all the firm's various key technologies.
- Lead, supervise, and inspire the local team in multiple key areas, including Global Security Admins, Security Operations, Data Security Scientists, and other areas/teams as assigned.
Security Responsibility:
- Conduct in-depth technical vendor security reviews for all vendor solutions integrated into the organization's technology stack to ensure proactive security measures from vendors.
- Provide strategic security guidance for technology and delivery, including evaluation and recommendation of technical controls.
- Work closely with application and engineering teams and other infrastructure teams to support and implement security at every level within the firm.
- Proactively identify and address emerging technology threats, such as cloud computing security risks and data privacy concerns.
- Develop and implement risk mitigation strategies, including control enhancements and policy changes.
- Conduct information security awareness and training programs.
- Ensure that the firm’s technology risk management practices are aligned with industry standards and best practices.
- Participate in rolling out global security initiatives including DLP, Network Segmentation, and Secure Server Access.
- Help oversee the development and implementation of the firm's information security program and governance framework.
- Coordinate the response to security incidents and breaches and ensure timely reporting and remediation.
- Liaise with external regulators, auditors, and vendors on security matters and compliance requirements.
Required Background:
- Extensive knowledge of information security principles and best practices.
- Ability to communicate effectively with senior management and stakeholders on security issues and risks.
- Expertise in ensuring compliance with relevant cybersecurity regulations and frameworks, such as FCA, NIST, and GDPR.
- Experience in one or a combination of the following: systems, applications, or architecture planning.
- Experience driving security awareness programs.
- Strong verbal, written, and interpersonal communication skills.
- Ability to influence across all organizational levels, particularly senior management.
- Ability to negotiate, influence, and collaborate to build successful relationships.
- Knowledge and understanding of data governance challenges as it relates to Data Loss Prevention.
- Experience with Governance, Risk, and Compliance (GRC).
- A BS/BA degree or higher in information technology.
- Agile experience.
- Fundamental knowledge of AWS and/or Azure IaaS/PaaS services.
- Self-disciplined, self-starter who can provide leadership and mentor others while resolving complex incidents and delivering projects.
'/%3e%3cpath%20d='M101.744%2012.4726L102.894%2016.1947L99.0021%2013.2201L101.744%2012.4726ZM105.3%208.40937H100.488L99.0026%203.59473L97.5116%208.41047L92.7%208.40385L96.5965%2011.3834L95.1055%2016.1942L99.0021%2013.2196L101.408%2011.3834L105.3%208.40992V8.40937Z'%20fill='white'/%3e%3cdefs%3e%3clinearGradient%20id='paint0_linear_5593_1381'%20x1='90'%20y1='9.44471'%20x2='99'%20y2='9.44471'%20gradientUnits='userSpaceOnUse'%3e%3cstop%20stop-color='%2300AD70'/%3e%3cstop%20offset='0.998594'%20stop-color='%2300B67A'/%3e%3cstop%20offset='1'%20stop-color='%23DCDCE6'/%3e%3c/linearGradient%3e%3c/defs%3e%3c/svg%3e){kind=small}
job faster
