Connecting...

Head of Information and Security - FinTech - London

Job Title: Head of Information and Security - FinTech - London
Contract Type: Permanent
Location: London, England
Industry: financial services
Salary: £70000 - £90000 per annum
REF: BBBH18342_1524680960
Contact Name: Doug Collyer
Job Published: about 1 month ago

Job Description

Head of Information and Security - FinTech - London

An up and coming FinTech/Challenger bank are looking to recruit a Head of Information Security. The Head of Information security will have to operate from a strategic level engaging the board and Exco to a fully hands on approach on all protection, detection and awareness initiatives.

Responsibilities:

  • Gathering of high level requirement to help identify and prioritise security controls and solutions
  • Provide guidance on design, alternatives and their implications (function, cost, complexity)
  • Ensure best practice standards and process are followed within the teams so that high quality solution is developed
  • Work closely with internal and external stakeholders to understand their requirement and how best to approach them
  • Identify and working with 3rd party suppliers to design and implement an integrated technology solution
  • Define and manage non-functional requirements including service levels and KPIs to ensure successful supplier management
  • Work with external partners and external stakeholders to sign-off logical and physical design models
  • Suggest areas where processes need improvement or further design to support efficient and high quality delivery to customers
  • Be a strong advocate for security needs
  • Perform risk analysis on projects, services, vendors, technologies…
  • Be the lead for Information Security matters in all architecture, infrastructure and risk forums and committees

Required Skills:

  • Ability to road map enterprise wide security strategies
  • Keen familiarity with PCI DSS, GDPR and all banking and financial regulations in the UK (desired)
  • Ability to provide top-down perspective of an organisations security strategy
  • SME in preventive controls, mitigation strategies against targeted cyber-crime, monitoring, log management and incident detection and management, cyber security, building security architecture, secure development, risk analysis
  • Strong understanding of the business relevance of information risks and the current trends
  • Ability to articulate security advice directly to stakeholders, including up to CTO, COO, Exco and board members of the bank or with IT Director level within key service providers and suppliers
  • Demonstrable security focused knowledge against broad spread architectural domains including networks, database, middle-ware, applications, IAM and end point devices
  • Demonstrable security focused knowledge against broad range of technologies including Microsoft stack and Cloud and server-less environments
  • Knowledge of ISO 27001, PCI DSS, NIST cyber security framework, banking and financial services (desirable)