Technical Information Security Officer (Global Security)

About The Position

Requirements

• University degree, or equivalent combination of education and cybersecurity experience.
• 10+ years working in data security, information protection, or insider threat programs.
• Demonstrated ability to protect sensitive and regulated data in complex enterprise environments.
• Proven experience identifying and mitigating data leakage and insider misuse risks.
• Familiarity supporting investigations involving insider threat or data misuse.
• Strong knowledge of enterprise data protection and DLP (Data Loss Prevention) capabilities.
• Understanding of regulatory expectations governing protection of sensitive data.
• Experience supporting regulatory cybersecurity programs.
• Skilled at implementing and assessing controls protecting critical data assets.
• Leadership of enterprise data protection initiatives.
• Data risk identification and remediation planning.
• Ability to assess and prioritize risks involving critical data assets.
• Demonstrated ability to collaborate effectively with privacy, legal, and compliance stakeholders.

Responsibilities

• Oversee implementation and optimization of data protection controls supporting US Lines of Business.
• Identify gaps in data protection coverage and lead remediation initiatives across enterprise environments.
• Strengthen controls protecting confidential customer and financial information
• Define logging and monitoring requirements for applications processing sensitive or regulated data.
• Support development and maturity of the US Insider Risk program in coordination with risk, HR, and compliance teams.
• Provide oversight for insider threat monitoring capabilities across US environments.
• Coordinate monitoring and investigation activities related to potential insider misuse of sensitive data.
• Collaborate with security operations teams to ensure insider threat alerts are reviewed and escalated appropriately.
• Support implementation of centralized logging for critical applications handling sensitive or regulated data.
• Work with technology teams to improve visibility into data access and user activity across critical systems.
• Support investigations involving data exfiltration, unauthorized data access, or insider misuse events.
• Identify risks related to unauthorized access, excessive data access, or abnormal user activity.
• Work with Business Information Security Officers (BISOs) to understand how sensitive data is used within business processes.
• Provide guidance to business units on securing sensitive data assets and reducing insider risk exposure.
• Support remediation of regulatory findings related to data protection.
• Collaborate with privacy, legal, and compliance stakeholders on data security initiatives.

Benefits

• bonuses
• flexible benefits
• competitive compensation
• commissions
• stock where applicable
• Leaders who support your development through coaching and managing opportunities.
• A world-class training program in financial services.