Chief Information Security Officer
Role details
Job location
Tech stack
Job description
We seek a seasoned Technology and Cyber Risk Management Leader with over 15 years of experience in the financial services or technology sectors. The role will report to the Global Head of Enterprise Technology Risk Management. The ideal candidate will excel in identifying, managing, and monitoring technology and cyber risks through effective risk management processes, frameworks, and policies for the EMEA region. This role will involve communication with all levels of First Line teams, management, and senior executives in IT, Business Units, Enterprise Risk Management (ERM), and other corporate functions at both EMEA and global levels. Exceptional interpersonal and communication skills are essential, along with the ability to convey technology risks to non-technical audiences. Candidates should demonstrate strong initiative, perform well under pressure, and manage multiple diverse assignments. Prior experience with EMEA regulators (e.g., PRA, FCA and ECB) is highly desired. Experience in Cyber and Information Security, Cloud Risk Management (AWS, Azure), and Technology and Operational Resilience is required. Why this role is important to us The ETRM team is critical to our organization's success. Our mission is to establish a world-class Technology and Cyber Risk Management Oversight program that aligns business and technology strategies for effective decision-making. As we undergo significant transformations and risk reduction initiatives, you will provide thought leadership and support to both ETRM peers and EMEA stakeholders (business and corporate areas) of the various jurisdictions. What you will be responsible for As the ETRM advisor for the EMEA region, you will be responsible for: Technology Risk and Cyber Risk Management
- Lead and support functions within the ETRM Service Catalogue, including real-time risk oversight, technology targeted risk assessments, Material Risk Identification, Regulatory Audit and Client Engagements, Risk Reporting.
- Advise and/or support on technology risk and regulatory matters for the EMEA community.
- Collaborate with ETRM Risk professionals to align with the broader Enterprise / Operational Risk Management Programs and mandates at global level. At regional level, develop and maintain EMEA relationships with Business and IT stakeholders. Partner with EMEA ERM team to assure the firm's technology risks and non-compliance are proactively identified, prudently managed (monitored and effectively challenged).
- Develop effective communication channels for measuring and escalating technology risk exposure.
- Evaluate IT Security risks arising from control inefficiencies in EMEA Legal Entities (LE).
- Ensure reporting is properly balanced between perspectives of global ETRM opinion and the local Authorities.
- Participate in due diligence for new clients, vendors and M&A activities.
- Monitor emerging technology risks and trends in financial services.
- Deliver assignments and projects independently and on time.
- Prepare presentations for Management, Risk committees and Board meetings.
Governance and Oversight
- Oversee governance, policy and framework execution across the EMEA region, ensuring alignment with global frameworks.
- Support the development of technology risk oversight and embed the ETRM and practices.
- Oversee communication with EMEA regulators in alignment with the ETRM program.
- Report with appropriate and timely information for the committees/Boards to effectively discharge their responsibilities
Risk Excellence and Education/Awareness
- Foster a culture of effective challenge throughout the organization.
- Provide consulting on technology risk management and ongoing guidance aligned with ETRM strategy.
- Stayed informed on regulatory developments and their impacts on State Street in EMEA.
- Conduct training on technology risk management, State Street seeks to recruit a Chief Information Security Officer - Managing Director to improve the overall protection of State Street's UK and Ireland customers and partners from the evolving landscape of threat actors. The UK / Ireland CISO candidate must have...
Head of Data, Emerging Technology and AI Audit, Managing Director
State Street
Who we are looking for In this role, you will lead Corporate Audit's Data, Emerging Technology and AI Audit team, reporting directly to the Global Head of Technology and Cyber Audit. You will oversee a team of auditors focused on understanding and assessing risks and... © 2025, Jobsora.com
Requirements
- Exceptional communication and interpersonal skills
- Ability to influence and implement decisions
- Flexibility to accommodate business hours across EMEA and global teams.
- Strategic mindset to connect various aspects and initiatives for a holistic risk and control environment
- Ability to be a strong voice for review and challenge while continuing to maintain positive relationships with stakeholders
- Strong multitasking skills and ability to navigate competing priorities
- Effective relationships management across diverse cultural groups
Primary Skills (Must Have)
- In-depth knowledge of EMEA Technology Regulatory Requirements (e.g., FCA, PRA, ECB); Experience with regulatory exams and responses is strongly desired.
- Experience in IT audits or risk assessments, Information Technology General Controls (ITGC) and cybersecurity controls. Familiarity with Information Security Frameworks (e.g., NIST, ISO 27000, CSA Cloud Control Matrix) and ITIL practices
- Extensive experience in IT & Cyber Security products and solutions.
- Ability to articulate technical issues to non-IT stakeholders and business perspective to IT stakeholders
- Strong communication, negotiation, and presentation skills, with cross-cultural competencies
- Proficient in Microsoft Suite, Adobe Acrobat Reader, Zoom, and Teams., * Minimum 15 years of experience in the financial and/or technology industries.
- Strong project management, critical thinking, problem-solving, and decision-making abilities.
- Experience in IT risk management, compliance or audit, including control framework design & implementation.
- Familiarity with Emerging Technologies (e.g., AI, Cloud, FinTech, Digital Assets) and professional IT certifications (e.g., CGEIT, CISA, CISM, CISSP, CCSP, COBIT, CRISC and ITIL) would be advantageous.
- Experience with data analytics and GRC tools, including Tableau and Power BI, is a plus.
- Undergraduate or advanced degree in a technology discipline
Are you the right candidate? Yes! We truly believe in the power that comes from the diverse backgrounds and experiences our employees bring with them. Although each vacancy details what we are looking for, we don't necessarily need you to fulfil all of them when applying. If you like change and innovation, seek to see the bigger picture, make data driven decisions and are a good team player, you could be a great fit.
