VP Information Security Officer

About The Position

Requirements

• At least 7 years of progressive cybersecurity experience with 3+ years within financial services.
• 3+ years of operationally focused cybersecurity practitioner working with secure cloud technologies.
• 2+ years’ experience working with business leadership across enterprise projects.
• Strong analytical and problem-solving skills, excellent communication (written and verbal) and advisory skills, attention to detail, ability to work independently and in teams, adaptability, and ethical judgment.
• Strong technical expertise in at least two focus areas specifically in Multi-Cloud, AI, Software Supply Chain, and Quantum Computing.
• Fundamental understanding of data structures, algorithms, and secure coding practices.
• Strong working knowledge of secure architectural design principles such as defense in depth, simplification, and secure by design.
• Strong technical knowledge in network security, product security, and data protection.
• Strong understanding of encryption, tokenization, and hashing.
• Good working knowledge of agile methodology, procedures, and iterative decision making.
• Demonstrate strategic and tactical thinking, along with decision-making skills and business acumen.

Nice To Haves

• Beneficial to have secure programming experience but not a necessity.
• At least one - Professional certifications such as Certified Information Systems Security Professional ( CISSP ), Certified Ethical Hacker ( CEH ), Certified AI Security Fundamentals ( CAISF ), or Offensive Security Certified Professional ( OSCP ).
• AWS or Azure Cloud Security is preferable but not required.

Responsibilities

• Cyber risk assessment at the application/platform/system levels to identify vulnerabilities and potential threats.
• Through collaboration, design appropriate end to end cyber remediation solutions that align to regulatory or industry standards to remediate risk.
• Design security capabilities within the development teams allow them to build scale across all scrum teams.
• Strong technical collaboration and cyber influence with application and platform owners.
• Provide expert guidance and recommendations to senior management on security matters, including risk mitigation solutions, new attack vectors and prevention, and metrics to identify areas of improvement in processes.
• Optimize ways to increase security and speed of deployment, while reducing friction within the development cycle.
• Collective design and optimize strong DevSecOps models.
• Evaluate third party software and services that strengthen cyber capabilities.
• Establish a targeted awareness campaign for developers that fosters a “security-first” culture, promotes collaboration, and encourages proactive ownership.
• Work directly with technology developers in an agile security lifecycle environment from requirements through deployment and response.

Benefits

• Employees are eligible to participate in State Street’s comprehensive benefits program, which includes: our retirement savings plan (401K) with company match; insurance coverage including basic life, medical, dental, vision, long-term disability, and other optional additional coverages; paid-time off including vacation, sick leave, short term disability, and family care responsibilities; access to our Employee Assistance Program; incentive compensation including eligibility for annual performance-based awards (excluding certain sales roles subject to sales incentive plans); and, eligibility for certain tax advantaged savings plans.