Head of Information Security – Contract
TradingHub
Head of Information Security
TradingHub
full-time
Posted on:
Location Type: Hybrid
Location: London • 🇬🇧 United Kingdom
Visit company websiteJob Level
Lead
About the role
- Take ownership of the firm’s Information Security function and maintain/improve its security posture
- Take the lead in responding to customer security questionnaires or audit follow-ups
- Oversee our regular ISO27001 and SOC 2 Type II audits
- Research and choose technical tools to proactively detect and respond to weaknesses, threats and potential compromises
- Lead the development, implementation, and continuous improvement of information security practices across all teams
- Manage regular pentests by external consultants and coordinate with internal resources to remediate issues
- Information security risk assessment of third-party service providers
- Offer guidance, direction and approval on security solutions and approaches
- Advocate for secure engineering best practices throughout the company
- Manage the standards, policies and guidelines of the InfoSec frameworks
- Maintain an on-going information security awareness program
- Monitor our SIEM, and maintain useful reports and alerts in the system
Requirements
- Significant industry experience in a technical security role (Security Engineering or Application Security Engineering)
- Experience speaking to customers and establishing a good working relationship with infosec counterparts at major financial institutions
- Strong technical intuition, with an ability to partner with engineering to evaluate and develop good security standards
- Take a risk-based approach when suggesting improvements, or proposing fixes
- Ability to perform design reviews and/or technical assessments of software and infrastructure
- Excellent knowledge of InfoSec, risk management and governance, data protection
- Programming/scripting experience, especially to automate repetitive tasks
- Used to multi-tasking and working in a fast-paced environment
- Proven ability to identify and articulate information security requirements, risks and issues, and to make clear decisions / recommendations
- Ability to understand business drivers and risk appetite and align information security compliance accordingly
- Strong ability to communicate clearly and simply, both verbally and in writing
Benefits
- Annual discretionary performance bonus
- Hybrid working policy
- Office lunches twice a week
- Aviva private medical insurance + Unum dental cover
- Extended parental leave (up to 6 months of fully paid maternity leave)
- 25 days annual leave + bank holidays
- Enhanced company pension plan
- Salary sacrifice scheme
- 5 days study leave towards professional qualifications
- Cycle to Work & Techscheme
- Death in service coverage
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
Information SecurityISO27001SOC 2 Type IIpenetration testingrisk assessmentsecurity standardsdata protectionprogrammingscriptingsecurity compliance
Soft skills
leadershipcommunicationrelationship buildingrisk-based approachmulti-taskingdecision makingguidanceadvocacytechnical intuitionclarity in communication
