Information Security Officer

Role Description
At FNZ, our purpose is to make wealth management more accessible, bringing easier, fairer and more inclusive solutions to people worldwide. Here in the  Global Cyber & Information Security  team, we are on a mission to embed cyber resilience across FNZ, protecting the platforms that support investment solutions for over 20 million people.

We are looking for an exceptional and proven  Information Security Officer , reporting to the  Regional Information Security Officer , responsible for driving and monitoring compliance to information security controls, identifying and managing non-compliance, providing support in client, audit, and regulatory engagements, and supporting the Regional Information Security Officer to implement the cyber resilience strategy.

You will have proven technical Information Security subject matter expertise, knowledge of the cybersecurity landscape, knowledge and experience following a variety of industry recognised information security frameworks, experience in interpreting and implementing client and regulatory requirements, coupled with an ability to communicate risk effectively to stakeholders of all levels. You will consult and challenge through a risk lens.

You will have prior experience in a complex and evolving environment in regulated financial services across different regions and jurisdictions.

Specific Role Responsibilities
Support the Regional Information Security Officer in managing and developing Information Security Analysts.
Support the local implementation, delivery and support of FNZ’s cyber resilience strategy in alignment with our organisational mission.
Contribute to the development and communication of corporate information security policy, standards and guidelines.
Support the local provision of services to support all client and regulatory requirements such as audit preparation, support for RFPs and contractual client information security committees.
Be part of a local team of Officers and/or Analysts to deliver a consistent global service, supporting the delivery of business goals with expert guidance.
Lead the way in implementing security culture across the business.
Manage the assessment, analysis and reporting of information and cyber security risks to the appropriate audiences.
Communicate security risks and issues to FNZ business areas.

Experience required
Primary requirements

Experience of an Information Security function in a regulated industry, law enforcement or the military.
Good knowledge of the practical implementation of information security and risk frameworks such as ISO
27001, NIST 800-53 and COBIT.
Good knowledge of auditing frameworks such as ISAE
3402 and SOC
2.
Experienced in managing client and regulator relationships.
Experienced in developing excellent supply chain management practices.
Proven ability to manage internal stakeholders through a journey of improving information security maturity.
Good ability to communicate information security and risk concepts to stakeholders of all levels.
Professional Information Security qualifications such as CISSP, CISM, CISA, CRISC.

About FNZ Culture
Our culture is what drives us. It's at the heart of who we are and everything we do. It's what inspires, excites and moves us forward. Our ambition is to create a culture for growth, one that opens up limitless opportunities for our employees, customers and the wider world. At FNZ we know that great impact is only possible with great teamwork.
That’s why we value the strength and diversity of thought in our global team.
The FNZ Way is the cornerstone of what we do. It is comprised of four values that set the standard for how everyone at FNZ interacts with each other, with our customers, and with all our diverse stakeholders around the world.
Customer obsessed for the long-term
Think big and make an impact
Act now and own it all the way
Challenge, commit and win together

Read more about The FNZ Way and our values :