Assistant Vice President, Information Cyber Security Engineer

About The Position

Requirements

• A minimum of 5 years of information security experience with at least 2 years in an engineering capacity.
• Expert knowledge of one or more of the following: firewalls, TCP/IP, network IDS/IPS, host-based IDS/IPS, endpoint and network-based DLP, web proxies, email protection, endpoint protection software, SIEM
• Sound knowledge of enterprise security concepts/frameworks and products, secure design principles and patterns
• Monitor, tune and develop technical CLS Security controls and frameworks to ensure appropriate preparation, monitoring and response to threats
• Ability to collaborate effectively with others to drive forward key security objectives
• Strong documentation and report writing skills (to both technical and business audiences)
• Excellent time management and organizational skills combined with technical CLS Security acumen
• In a technology discipline (Computer Science, Information Management, Computer Engineering, Cybersecurity or equivalent) or Security Certifications such as CISSP, SANS GIAC GSEC, GCED, GCIA, GCIH, GREM
• Industry recognized cloud security qualifications (e.g. CCSK, CCSP, AWS Security Fundamentals, AWS Certified Security)
• Working knowledge of the following frameworks and regulations: ISO 27001/2, SANS Top 20 Critical Security Controls, NIST CSF, NIST 800-53 and FFIEC handbook
• Possess a strong service-oriented mind set to consistently deliver balanced security solutions that include people, process and technology.
• Possess strong technical, analytical and problem-solving skills.
• Self-motivated to exceed management expectations and objectives.
• Ability to effectively communicate complex technical issues to both business and technical staff at all levels.
• Strong collaboration skills to tackle complex security challenges that may span across multiple internal and external departments and groups.
• Able to effectively cope with change and comfortably handle risk and ambiguity, not upset when things are up in the air.
• Tenacious resolve and positive attitude in challenging situations

Nice To Haves

• Financial and/or Banking industry experience preferred
• Strong communication (verbal and written) skills to engage with technical and non-technical audiences.
• Ability to clarify technical detail and confidently communicate business risks to senior management.

Responsibilities

• Develop and implement CLS security strategy in consultation with the CLS IT teams, ensuring that all initiatives are mirrored in respective strategies including the overall CLS Strategy.
• Provide security advice and support for information technology projects.
• Research new security related products and services to ensure that CLS is equipped with appropriate industry best of breed tools and solutions.
• Operate and maintain CLS Security controls related to SIEM, DLP, Vulnerability Management, Cyber Threat Intelligence, Endpoint Protection, Network Protection, etc.
• Review and help refine CLS Security procedures to ensure compliance with cyber resilience requirements.
• Be responsible when assigned ownership of CLS Security related Regulatory and Internal Audit finding(s), and provide effective / timely resolution.
• Design and integrate consistent security solutions across CLS on-premise and cloud environments for domains like Vulnerability Management, Endpoint Security, Data Security, Network Security, Identity and Access management, etc.
• Facilitate monitoring and enforcement of configurations, as well as manage and monitor security on systems deployed in the cloud in a similar fashion as is done on-premises at CLS.
• Oversee design principles and controls relating to third party solution providers.
• Work as a team member and individual contributor being able to work independently and confidently without direct supervision.
• Through example and behaviour, strive to provide peer leadership to other team members with the goal of being excellent service providers and enablers to other constituencies (both internal and external).
• Execute CLS Security Engineering team’s vision and mission in alignment with the overall CLS Security vision and mission, as well as with CLS’s strategic direction as it pertains to cyber resilience.

Benefits

• 25 holiday days and 3 ‘life days’ (in addition to bank holidays) for UK/Asia employees.
• 23 holiday days for US employees.
• 2 paid volunteer days
• Generous parental leave policies
• Parental transition coaching programmes and support services.
• Wellbeing and mental health support resources
• Employee Networks (including our Women’s Forum, Black Employee Network and Pride Network)
• Hybrid working
• Active support of flexible working for all employees where possible.
• Monthly ‘Heads Down Days’ with no meetings across the whole company.
• Generous non-contributory pension provision for UK/Asia employees
• 401K match from CLS for US employees.
• Private medical insurance
• Dental coverage.
• Social events
• Annual flu vaccinations.
• Discounts and savings and cashback across a wide range of categories including health and retail for UK employees.
• Discounted Gym membership – Complete Body Gym Discount/Sweat equity program for US employees.
• Discover – our comprehensive learning platform with 1000+ courses from LinkedIn Learning.
• Access to frequent development sessions on a number of topics to help you be successful and develop your career at CLS.