Global Senior Security Manager

About The Position

Requirements

• 10+ years in cybersecurity with at least 5 years in a leadership role managing global, cross-functional teams.
• Proven track record of representing security at C-suite and board level, translating complex risk into clear business narrative.
• Experience in financial services or a similarly regulated industry (FCA, PRA, DORA, SOX, PCI-DSS).
• Familiarity with deploying AI security frameworks such as NIST AI RMF 1.0, MITRE ATLAS, and financial services AI governance standards.
• Practical knowledge of implementing AI-powered security tools to automate detection, response, and guardrail enforcement.
• Familiarity with AI model risk, LLM threat surfaces, data poisoning, prompt injection, and adversarial ML attack vectors.
• Familiarity with enterprise security tools.
• Broad exposure to endpoint protection, vulnerability management, CSPM, DLP, and email security platforms.

Nice To Haves

• CISSP, CISM, or CRISC — one or more preferred.
• CCSP or equivalent cloud security credential; AI/ML security certification (e.g. GAISC) advantageous.

Responsibilities

• Support CISO in key decision making and regulatory meetings — presenting risk posture, programme status, and strategic recommendations with clarity and confidence.
• Build, mentor, and manage high-performing, globally distributed security teams spanning multiple time zones and functions.
• Define and execute the enterprise security roadmap aligned with business strategy and applicable regulatory requirements (FCA, PRA, DORA, SOX, PCI-DSS).
• Lead end-to-end transformation of Identity & Access Management (IAM) and Privileged Access Management (PAM), including strategy, tooling selection, and programme delivery.
• Drive implementation of an Identity Governance & Administration (IGA) framework — encompassing joiner/mover/leaver processes, role engineering, access certification, and policy enforcement.
• Oversee deployment and maturation of PAM controls, credential vaulting, just-in-time access, and session monitoring to eliminate over-privileged accounts across the enterprise.
• Establish access management metrics and KPIs reported to executive leadership and regulators.
• Lead the Zero Trust Architecture (ZTA) transformation programme — defining principles, technology roadmap, and phased rollout across on-premises, cloud, and hybrid environments.
• Drive AI-augmented network and security architecture, leveraging machine learning for anomaly detection, automated policy enforcement, and predictive threat modelling.
• Build and operationalise a Network Operations (NetOps) operating model — defining governance, runbooks, escalation paths, and SLA frameworks for a globally resilient network.
• Own network security strategy including micro-segmentation, SASE, secure SD-WAN, and next-generation firewall policies aligned to Zero Trust principles.
• Lead and coordinate internal and external security audits including SOC 1, SOC 2 (Type I & II), NIST CSF 2.0 and ISO/IEC 27001 — managing evidence collection, remediation tracking, and auditor engagement.
• Prepare the organisation for emerging AI regulatory frameworks: NIST AI RMF 1.0, NIST AI 600-1 (Generative AI Profile), EU AI Act, and ISO/IEC 42001 — developing controls, policies, and governance structures to demonstrate compliance.
• Maintain and mature the enterprise Information Security Management System (ISMS), ensuring policies, standards, and procedures remain current and auditable.

Benefits

• Support for professional accreditations
• Flexible arrangements, generous holidays, plus an additional day off for your birthday!
• Continuous mentoring along your career progression
• Active sports, events and social committees across our offices
• 24/7 support available from our Employee Assistance Program
• The opportunity to invest in our growth and success through our Employee Share Plan
• Plus additional local benefits depending on your location