Global Head of Business Information Security Officers

The SVP, Information Security Officer provides cyber risk management oversight to all State Street and legal entity businesses globally, sits within the first line of defense and reports into the Global Chief Information Security Officer. The SVP, Information Security Officer will manage a team of business unit aligned ISOs to strengthen cyber control adoption at the business unit level, lead cyber metrics discussions, influence strong cyber awareness behavior, present open risk and vulnerabilities to technical and business aligned partners, while communicating bi-directionally between the business units and the global cybersecurity leadership team.

The ISO will be a strategic change agent that in addition to managing a team, will also be a thought leader to both protect and change the bank. Being able to build trust through information and transparency among senior executives while being able to present to the highest level of leadership within State Street and to external regulators with appropriate technical and business detail is necessary for this role. As a critical partner to the senior business leaders within the first line of defense, the incumbent must be skilled at influencing change to lead teams to further adopt cyber controls while reducing overall residual risk to their businesses.

This role requires a technical background and ability to understand technologies, their purpose, and their security requirements and data protection needs wherever they reside. Must understand threats and risk mitigations, while being able to recommend solutions that protect the bank and strengthen our cyber resiliency.

Other Key Responsibilities Include:

• Partner with senior leaders to enable informed risk decisions providing them all relevant content necessary to formulate a prioritized path forward.
• Key contact to ensure cybersecurity practices are built into the business unit initiatives for the entire lifecycle.
• Overseeing and actively managing risks in line with risk appetite through continuous business unit engagement.
• Work closely with global cybersecurity to instill cybersecurity policies and practices throughout business units to address security operations, incident response, application security and infrastructure.
• Represent the global cyber security organization as a member or an attendee of the Business Control Committee and/or Business Risk Committees.
• Maintain up to date knowledge related to security threats, vulnerabilities and mitigations set forth to reduce the attack surface; and circulate this knowledge through the business units.
• Establish key relationships with business risk executives, third party management, client relations, global technology services, second line and third lines of defense, and internal regulatory teams.
• Identify friction and complexity that hinder efficient security controls enterprise-wide and coordinate solutions.
• Openly support the CISO, management team, and executive leadership, even during tumultuous times.

Qualifications:

• At least 15 years of progressive cybersecurity experience with 8+ years within financial services.
• 6+ years of operationally focused cybersecurity practitioner
• 5+ years’ experience working with business leadership across enterprise projects.
• Effective communication skills both written and verbal across all levels of the organization.
• Able to acquire, motivate, and attain top talent through networking and relationships while building talent pipelines.
• Experience working directly with financial regulators through exam engagements.
• Ability to manage matrix team environments both direct and indirect reporting lines onsite and remotely.
• Demonstrate strategic and tactical thinking, along with decision-making skills and business acumen.
• Bachelor’s degree in business administration, Information Assurance, or related technical field.
• CISSP Required
• AWS or Azure Cloud certification preferable but not required.
• CISM, CRISC, and/or CISA preferable, but not required.

Are you the right candidate? Yes!

We truly believe in the power that comes from the diverse backgrounds and experiences our employees bring with them. Although each vacancy details what we are looking for, we don’t necessarily need you to fulfil all of them when applying. If you like change and innovation, seek to see the bigger picture, make data driven decisions and are a good team player, you could be a great fit.

Why this role is important to us

Our technology function, Global Technology Services (GTS), is vital to State Street and is the key enabler for our business to deliver data and insights to our clients. We’re driving the company’s digital transformation and expanding business capabilities using industry best practices and advanced technologies such as cloud, artificial intelligence and robotics process automation.

We offer a collaborative environment where technology skills and innovation are valued in a global organization. We’re looking for top technical talent to join our team and deliver creative technology solutions that help us become an end-to-end, next-generation financial services company.

Join us if you want to grow your technical skills, solve real problems and make your mark on our industry.

About State Street

What we do. State Street is one of the largest custodian banks, asset managers and asset intelligence companies in the world. From technology to product innovation, we’re making our mark on the financial services industry. For more than two centuries, we’ve been helping our clients safeguard and steward the investments of millions of people. We provide investment servicing, data & analytics, investment research & trading and investment management to institutional clients.

Work, Live and Grow. We make all efforts to create a great work environment. Our benefits packages are competitive and comprehensive. Details vary by location, but you may expect generous medical care, insurance and savings plans, among other perks. You’ll have access to flexible Work Programs to help you match your needs. And our wealth of development programs and educational support will help you reach your full potential.

Inclusion, Diversity and Social Responsibility. We truly believe our employees’ diverse backgrounds, experiences and perspectives are a powerful contributor to creating an inclusive environment where everyone can thrive and reach their maximum potential while adding value to both our organization and our clients. We warmly welcome candidates of diverse origin, background, ability, age, sexual orientation, gender identity and personality. Another fundamental value at State Street is active engagement with our communities around the world, both as a partner and a leader. You will have tools to help balance your professional and personal life, paid volunteer days, matching gift programs and access to employee networks that help you stay connected to what matters to you.

State Street is an equal opportunity and affirmative action employer.

Salary Range:

$225,000 - $337,500 Annual

The range quoted above applies to the role in the primary location specified. If the candidate would ultimately work outside of the primary location above, the applicable range could differ.

Job Application Disclosure:

It is unlawful in Massachusetts to require or administer a lie detector test as a condition of employment or continued employment. An employer who violates this law shall be subject to criminal penalties and civil liability.

State Street’s Speak Up Line