Job Details

Click here to become a registered jobseeker.

Senior Manager - Cyber Risk

London, United Kingdom, £ £ - Annual Annual, Permanent


Role Profile

The Group Risk function covers all aspects of Operational Financial and Strategic risk across the Group given a unique insight and exposure to all areas of the Group.

This role is responsible for supporting the oversight of the risk profile of Information Security/Cyber Risk across the Group. Key focus of the role is to oversee and challenge the management of risk in the 1st line ensuring core business controls are properly designed and operate effectively; key business initiatives; changes to systems; new products are fully risk assessed with appropriate risk mitigation in place.

The role will require close liaison with the senior management of the Chief Information Security Officer\'s team and senior business management as well as attending the key governance committees.

Key Responsibilities

  • Oversight and challenge of Info Security and IRM policies and procedures ensuring best practices are met and adherence to the overall Group\'s risk framework
  • Ensure Key Risk Indicators are in place to monitor all key risks against risk appetite and use to monitor and challenge risk profile
  • Challenge the assessment of risks associated with New Products; business initiatives and material project change and ensure adequate 1st line deployment of appropriate controls to mitigate risks
  • Second line assurance in relation to core control framework
  • Risk reporting for Info Security and Cyber Risk profile at Group level
  • People and performance management
  • Risk awareness and training
  • Facilitation, evaluation and reporting on RCSA, and Scenario Analysis
  • Conducting risk reviews and \"deep dive\" investigations
  • Evaluation of the effectiveness of risk transfer in respect of Info Security and Cyber
  • Oversight and independent challenge of the risk responsibilities, deliverables and resourcing across the three lines of defence
  • Enhanced quarterly reporting to provide an executive focus on all material risks and controls
  • Full utilisation and development of the key risk management tools for Operational risk; Compliance and OR/EC Capital
  • Monitor all IT and Business incidents/losses/claims/complaints to ensure they are appropriately escalated promptly and in due course recorded in the Op Risk system with comprehensive root cause analysis and action tracking
  • Prioritizing new projects to mitigate current and anticipate future risks and impacts
  • Address Internal Audit and Audit Committee recommendations and cascade the information to relevant risk owners and representatives
  • Stakeholder management and effective people management skills
  • Adhere to internal governance processes: chairing OR working groups, committee reporting and attendance, project management governance, etc
  • Ensuring appropriate recovery and resilience arrangements are in place covering aspects of IS and cyber risk in conjunction with group and divisional teams

Candidate Profile / Key Skills
  • Ideal candidate will have appropriate experience and qualifications related to Information Security and Cyber Risk, e.g., CISSP, ITIL Expert, MSC
  • Ideal candidate will have worked in the financial services sector and have experience of managing Information Security and Cyber risks
  • Ideally experience of Information Security and Cyber risk frameworks and a good understanding of best practice in a mature cyber environment
  • Good understanding of the core controls and metrics used to manage cyber risks
  • An interest in developing and delivering risk training and awareness in a creative and innovative way in relation to Info Security and Cyber risks
  • Must have excellent communication skills and be keen to collaborate across the Group, with a global view on problem solving

People are at the heart of what we do and drive the success of our business. Our colleagues thrive personally and professionally through our shared values of Integrity, Partnership, Innovation and Excellence are at the core of our culture. We embrace diversity and actively seek to attract people with unique backgrounds and perspectives. We are always looking at ways to become more agile so we meet the needs of our teams and customers. We believe that an inclusive collaborative workplace is pivotal to our success and supports the potential and growth of all colleagues at LSEG.

A career with London Stock Exchange Group offers you the opportunity to be at the centre of the financial community. As well as competitive salaries and a range of attractive benefits, we maximise each employee\'s potential through personal development plans, training, coaching and mentoring.

Please take a moment to read this privacy notice carefully, as it describes what personal information the London Stock Exchange Group (\"We\") may hold about you, what it\'s used for, and how it\'s obtained. If you would like this information to be removed from the London Stock Exchange Group HR database, please contact . If you choose to have your information removed, you will be removed as a candidate and we will not be able to progress your application for opportunities at the London Stock Exchange Group.

Job Details

Mon, 29 Apr 2019 19:00:00 EST
Not Specified
London, United Kingdom
£ £ - Annual Annual