Assistant Vice President, Information Cyber Security Engineer

About CLS:

CLS is the trusted party at the centre of the global FX ecosystem. Utilized by thousands of counter parties, CLS makes FX safer, smoother and more cost effective. Trillions of dollars' worth of currency flows through our systems each day.

Created by the market for the market, our unrivalled global settlement infrastructure reduces systemic risk and provides standardization for participants in many of the world's most actively traded currencies. We deliver huge efficiencies and savings for our clients: in fact, our approach to multilateral netting shrinks funding requirements by over 96% on average, so clients can put their capital and resources to better use.

CLS products are designed to enable clients to manage risk most effectively across the full FX lifecycle - whether through more efficient processing tools or market intelligence derived from the largest single source of FX executed data available to the market.

Our ambition to make a positive difference starts with our people. Our values underpin everything that we do at CLS and define our working environment:

• Pivotal purpose
• Trusted guardian
• Targeted innovation
• Facilitate connections
• Delivering excellence
• Inclusive culture

Job Purpose

The Cyber Security Engineering role is responsible for the delivery of security related activities and maintenance and enhancements of security solutions to improve the security posture of the CLS estate.

This individual will interact with the IT Enterprise Security and Security Architecture Teams, IT Security Fusion Teams, Project Management Teams, global IT Teams, and outsourcing partners to deliver solutions that enhance the security program for CLS.

Essential Function / Major Duties and

Job Responsibilities

Strategic

• As part of the CLS Security Engineering team, develop and implement CLS security strategy in consultation with CLS IT teams, ensuring that all initiatives are mirrored in respective strategies including the overall CLS Strategy.
• Provide security advice and support for information technology and business projects.
• Research new security related products and services to ensure that CLS is equipped with appropriate industry best of breed tools and solutions.

Operational

• Operate and maintain CLS Security controls related to Azure, Microsoft 365 services and other cloud services.
• Review and help refine CLS Security procedures to ensure compliance with cyber resilience requirements.
• Be responsible when assigned ownership of CLS Security related Regulatory and Internal Audit finding(s), and provide effective / timely resolution.
• Facilitate monitoring and enforcement of configurations, as well as manage and monitor security on systems deployed in the cloud in a similar fashion as is done on-premises at CLS.
• Oversee design principles and controls relating to third party solution providers.

Leadership

• Work as a team member and individual contributor being able to work independently and confidently without direct supervision.
• Through example and behaviour, strive to provide peer leadership to other team members with the goal of being excellent service providers and enablers to other constituencies (both internal and external).
• Strong communication (verbal and written) skills to engage with technical and non-technical audiences.
• Ability to clarify technical detail and confidently communicate business risks to senior management.
• Execute CLS Security Engineering team's vision and mission in alignment with the overall CLS Security vision and mission, as well as with CLS's strategic direction as it pertains to cyber resilience.

Experience / Essential and Desired for Successful Job Performance

• A minimum of 5 years of information security experience with at least 2 years in an engineering capacity.
• Knowledge and experience in implementing and managing security controls within Microsoft Azure and Microsoft 365 services.
• In-depth knowledge of one or more of the following: firewalls, TCP/IP, network IDS/IPS, host-based IDS/IPS, endpoint and network-based DLP, web proxies, email protection, endpoint protection software, SIEM
• Sound knowledge of enterprise security concepts/frameworks and products, secure design principles and patterns
• Monitor, tune and develop technical CLS Security controls and frameworks to ensure appropriate preparation, monitoring and response to threats
• Ability to collaborate effectively with others to drive forward key security objectives
• Strong documentation and report writing skills (to both technical and business audiences)
• Excellent time management and organizational skills combined with technical CLS Security acumen
• Financial and/or Banking industry experience preferred

Qualifications / Certifications

• Degree level qualification in a technology discipline (Computer Science, Information Management, Computer Engineering, Cybersecurity or equivalent) or Security Certifications such as CISSP, SANS GIAC GSEC, GCED, GCIA, GCIH, GREM
• Industry recognized cloud security qualifications (e.g. CCSK, CCSP, AWS Security Fundamentals, AWS…