Jobs
>
Munich

    Sr. Information Security Officer, Managing Director - Munich, Deutschland - State Street

    State Street
    State Street Munich, Deutschland

    vor 4 Tagen

    Default job background
    Ganztags
    Beschreibung

    State Street Bank International GmbH ('SSBI') seeks to recruit a Senior Information Security Officer, Managing Director (Sr. ISO) to improve the overall protection of SSBI, its customers and partners from an evolving and sophisticated threat landscape.

    The candidate should have a proven track record in global cyber security and as a risk leader who has experience in delivering on strategic outcomes with business operational quality and a focus on business needs. The candidate should have experience in large scale cyber transformations and execution.

    The SSBI Sr. ISO reports to the SSBI Chief Governance Officer and closely cooperates with the SSBI Head of IT and the wider management team. Key stakeholders include:

  • Information Security Officers
  • Business and Functional Leaders
  • Cyber Fusion Center
  • Cyber Architecture & Security Engineering
  • First Line Risk and Controls
  • 3LOD Partners

    • The SSBI Senior Information Security Officer (Sr. ISO) will drive compliance with GCS security controls in their business unit/region/country/functional area which they represent. The Sr. ISO will serve as a trusted and influential information security advisor to senior-level business management in a large organization.

    The SSBI Sr. ISO roles and responsibilities are defined under five domain areas with the following objectives and specific responsibilities for each domain:

    Information Security program development and management

    Objective: Develop and manage the information security program within the business unit to drive compliance with information security supplemental requirements and reduce risk

  • Identify senior business management and build relationship to ensure effective information security governance is established - strategy with goals and objectives, strategic alignment, roles and responsibilities, performance measurement, outcomes
  • Understand context of the business unit - internal and external issues, organizational structure, organizational drivers, geography, strategy, legal and regulatory requirements
  • Develop an information security strategy aligned to the business unit strategy, defining the goal of information security, objectives and the desired state
  • Develop and maintain an information security policy, associated standards and procedures
  • Define the activities to be performed within the information security program, and assign ownership
  • Establish relevant metrics to evaluate the effectiveness of the information security program
  • Monitor and review information security program, to ensure continual development and improvement

    • Risk and Incident Management

    Objective: Manage information security risk and incident response, from assessment through mitigation of risk, and throughout the entire lifecycle of incident management

  • Support the business unit in identifying high risk/critical processes and technology, ensuring they are inventoried, ownership is assigned and that regular reviews are carried out
  • Assess information security risk associated with high risk/critical business processes and technology, and apply information security supplemental requirements to mitigate risk
  • Integrate information security risk review into lifecycle processes such as Incident Management, ASAP, ISRMP, TPRM, BCP, SDLC, Change and Project management
  • Attend risk and technology committees. Identifying, documenting and communicating Information Security risks. If risk and technology committees do not exist, work with the business unit to establish forums for discussion
  • Act as Information Security representative during regulatory and statutory engagements
  • Review and approve non-standard access for high risk access (e.g. blocked web sites, mass storage, application access, non-standard device and non-expiring passwords, process and system IDs)
  • Participate in security incident response program representing the business area to detect and respond to incidents in a timely manner. Post incident, provide support to the business to identify control gaps.

    • Measurement

    Objective: Develop metrics for measuring the information security program and related activities

  • Establish and agree on appropriate reporting with senior management to give a view of the state of information security throughout the business unit
  • Complete the quarterly ISO maturity assessment to provide a clear understanding of the maturity of the implementation of the ISO framework
  • Identify failed business controls and provide support on remediation to drive compliance with information security supplemental requirements
  • Create development plans for all information security resources to ensure continual improvement

    • Communication

    Objective: Establish internal and external communication channels that support information security

  • Report on potential business impact of proposed new information security supplemental requirements, and of security risks from new business initiatives
  • Report significant changes in information security risk to appropriate level of management for review on both a periodic and an event driven basis
  • Provide regular communication on threat intelligence relevant to the business unit, and issue guidance on supporting controls
  • Report on impact or potential impact of security incidents to senior management

    • Education

    Objective: Maintain up to date knowledge of evolving information security threat landscape and provide information security awareness, training and education to key stakeholders

  • Design and develop an interactive and engaging program for information security awareness and training, which is relevant to the business unit and encompasses the current threat landscape

    • Furthermore, the Sr. ISO (MD) is responsible for:

  • Global collaboration: Collaborate with Global Cyber Security and assigned business partner teams to ensure the business aligns plans addressing security policies and standards are enforced in their products and services
  • Team management: Create a high performing team and environment that promotes continuous growth opportunities

    • Education & Preferred Qualifications

    The Sr. ISO (MD) should possess the following skills/experience

  • 12+ years of experience in cyber security risk and controls, a security related field or other information risk management function
  • Experience with communicating with the European Central Bank,
  • Modern technical aptitude and experience developing and implementing large-scale innovation.
  • Interaction with governing bodies, i.e. ECB, Bafin, Bundesbank, Prüfungsverband, etc.
  • Depth with modern technology stacks – n-tier, cryptography, data science, machine learning, cloud (hybrid)
  • Project Management experience leading large and small technical teams.
  • Experience operating in regulated environment
  • CISA, CISM, CISSP or similar certification required or an agreed upon plan to achieve this certification within 1 year of hire
  • Bachelor's degree or equivalent in a relevant field

    • Critical Leadership Capabilities

  • Driving results
  • Strategic Thinking
  • Collaborating & Influencing
  • Change Management
  • Senior Executive communication
  • Personnel Management
  • Project Management
  • Hiscox

    Executive Assistant Für Den Managing Director

    vor 6 Tagen

    Hiscox Munich, Deutschland

    **Über das Unternehmen** · Wir bieten maßgeschneiderte Versicherungslösungen für Ihre speziellen Risiken. So decken wir Ihre beruflichen Haftpflichtrisiken oder versichern Ihren hochwertigen Privatbesitz (dazu gehören auch Oldtimer, Kunst und Ferienimmobilien). · Wir arbeiten deu ...

  • Hiscox

    Executive Assistant Für Den Managing Director

    vor 1 Woche

    Hiscox Munich, Deutschland

    **Über das Unternehmen** · Wir bieten maßgeschneiderte Versicherungslösungen für Ihre speziellen Risiken. So decken wir Ihre beruflichen Haftpflichtrisiken oder versichern Ihren hochwertigen Privatbesitz (dazu gehören auch Oldtimer, Kunst und Ferienimmobilien). · Wir arbeiten deu ...

  • AURELIUS Group

    Managing Director

    vor 1 Woche

    AURELIUS Group München, Deutschland

    Direkt nach dem Erwerb einer neuen Beteiligung durch AURELIUS übernimmst du vor Ort die Gesamtverantwortung für die Transformation des Unternehmens. Deine Hauptaufgabe ist es, gemeinsam mit dem bestehenden Management, die Strategie, die Equity Story und ein umfassendes Wertsteige ...

  • Board Consultants International

    Managing Director "Sales"

    vor 2 Tagen

    Board Consultants International München, Deutschland

    Managing Director "Sales" (GmbH-Geschäftsführer) global (m/f/d), Renewable Energies Managing Director "Sales" (GmbH-Geschäftsführer) global (m/f/d), Renewable Energies Speichern Sie diese Anzeige mit Ihrem LinkedIn Profil oder legen Sie ein neues Profil an. · Ihre Jobsuchaktivit ...

  • AVNET Logistics GmbH

    Assistant to Managing Director

    vor 1 Woche

    AVNET Logistics GmbH Poing, Deutschland

    **Unser Angebot an Sie**: · - Qualifizierte Einarbeitung · - Vielschichtige Tätigkeit mit Freiraum für Eigeninitiative · - Modernes Büro mit freien Getränken (Tee, Kaffee, Wasser) · - Betriebskantine mit hohem Arbeitgeber-Zuschuss (Selbstkosten: 3,80 EUR für 3 Gang Mittagsmenü) · ...

  • Officine Panerai

    Managing Director

    vor 1 Woche

    Officine Panerai Munich, Deutschland

    Reference Code: 98785**Managing Director (f/m/d)**: · - Munich, BY, DE- PermanentFounded in 1860 in Florence as a workshop, shop and subsequently school of watch-making, Panerai is renowned for producing high-precision instruments for the Italian Navy with a pulse on innovation a ...

  • Verimatrix

    Director, Product Management

    vor 1 Woche

    Verimatrix Munich, Deutschland

    Are you a product person passionate about growing business? Do you use market data, instinct, and customer feedback to develop new features and make existing services better? Have you built cloud services that increase customer engagement? · **Verimatrix is looking for a Director ...

  • ROHDE & SCHWARZ GmbH & Co. KG

    Director Solution Management

    vor 1 Woche

    ROHDE & SCHWARZ GmbH & Co. KG Munich, Deutschland

    **Your tasks**: · - Functional and disciplinary leadership of the solution management team for the segment Spectrum Monitoring and Counter UAS · - Overall responsibility for the solution and service portfolio of the segment · - Identification of market and customer trends, develo ...

  • PMG Holding GmbH

    Global Director Lean Management

    vor 5 Tagen

    PMG Holding GmbH Munich, Deutschland

    **Global Director Lean Management (M/F/d)**: · The PMG Group is a leading global automotive supplier of sintered driveline and chassiscomponents that sets standards today and tomorrow. Driven by our passion, we deliver innovative and efficient powder metal solutions that ensure a ...

  • Harman International

    Director, Master Data Management

    vor 3 Tagen

    Harman International Munich, Deutschland

    A Career at HARMAN · As a technology leader that is rapidly on the move, HARMAN is filled with people who are focused on making life better. Innovation, inclusivity and teamwork are a part of our DNA. When you add that to the challenges we take on and solve together, you'll disco ...

  • PER, Private Equity Recruitment

    Managing Director, Active Buy

    vor 3 Tagen

    PER, Private Equity Recruitment Munich, Deutschland

    NEW JOB · **Reference** · 4013 · **About our client** · Our client is an entrepreneurial investment business with a record of over 25 years driving successful buy & build stories in a number of discrete market niches and has delivered top quartiles returns to its investors. · The ...

  • SSF Ingenieure

    Executive Assistant to The Managing Director

    vor 1 Woche

    SSF Ingenieure Munich, Deutschland

    Cipher M612402 / Location: Munich / Full-time or part-time / as of now · **_SSF International GmbH is the subsidiary of SSF Ingenieure AG, which was specially designed for the management of SSF's international projects. For almost 20 years, SSF International has been working on p ...

  • EIT Health

    Eit Health France Managing Director

    vor 1 Woche

    EIT Health Munich, Deutschland

    Managing Director EIT Health France · At the EIT Health France CLC, Paris · About EIT Health · EIT Health, a Knowledge and Innovation Community (KIC) under the umbrella of the European · Institute of Innovation and Technology (EIT), is focused on supporting entrepreneurship, inno ...

  • Veridos GmbH

    Director Product Management Identification Documents

    vor 1 Tag

    Veridos GmbH Munich, Deutschland

    We make identities more secure every day. · Director Product Management Identification Documents · **Location**:Munich**Stellen-ID**:22083**Business Sector**:Veridos GmbHVeridos handles innovative, large-scale projects every day. Whether it's transferring 40,000 handwritten pages ...

  • Honeywell

    Sr Director, Strategic Account Management

    vor 2 Tagen

    Honeywell Munich, Deutschland

    **Senior Director, Strategic Accounts** · We here at Honeywell have an exciting opportunity for a Senior Director, Strategic Accounts to join the Honeywell team. · This person will manage all aspects of Honeywell's relationship with a Strategic Account. As a senior leader in the ...

  • State Street

    Central Outsourcing Officer, Managing Director

    vor 1 Tag

    State Street Munich, Deutschland

    Who we are looking for · The Central Outsourcing Officer is accountable for all aspects of the outsourcing and third party risk management framework for State Street Bank International (SSBI) in Germany and its eight European Branches. The Central Outsourcing Officer is responsib ...

  • Boston Consulting Group

    Temporary Global Practice Management Sr Director

    vor 1 Woche

    Boston Consulting Group Munich, Deutschland

    **WHAT YOU'LL DO**: · Together with the Global Practice Area Leader (PAL) and the CFS Management Team, the Global Practice Management Senior Director (GPMSD) develops and sets the strategic agenda for the practice and translates it into concrete activities and robust processes. T ...

  • United Initiators GmbH

    Managing Director Australien

    vor 15 Stunden

    United Initiators GmbH Pullach im Isartal, Deutschland

    **Main Focus** · Responsible for the Australia business including the Banksmeadow Site by managing and overseeing overall plant operations which includes, manufacturing, process control systems, engineering, quality assurance/control, environment, safety and health, shipping and ...

  • Alvarez & Marsal

    Managing / Senior Director (M/F/d) - Private Equity

    vor 1 Woche

    Alvarez & Marsal Munich, Deutschland

    Alvarez & Marsal ("A&M") is a global consulting firm with over $2+ billion in revenues and 7000 staff offering a broad range of professional services including Restructuring, Transaction Advisory, Private Equity Performance Improvement ("PEPI"), Corporate Transformation Services, ...

  • ROHDE & SCHWARZ GmbH & Co. KG

    Director (M/F/d) Demand Management Support Services

    vor 3 Tagen

    ROHDE & SCHWARZ GmbH & Co. KG Munich, Deutschland

    **Your tasks**: · - You will lead the Global Demand Management Department with focus on Contract Management, Sales and Operations Planning as well as Service Offer Management and Service Project Management · - More precisely, you will lead our Competence Center for Service Contra ...