Information Security Officer – Cyber Risk & Governance
Listed on 2026-07-02
-
IT/Tech
Cybersecurity, Information Security, Data Security, IT Consultant
The purpose of this role is to support the Director of Business Information Security (BISO) in the oversight of Information Security across LCH.
The role contributes to ensuring that LCH’s critical business services, systems, and data assets are adequately protected, that information security and cyber controls are effective and operating within defined risk appetite, and that any identified gaps have appropriate and proportionate risk treatment plans in place.
The role will best suit an experienced Information Security Professional with experience gained from having previously operated within Info Sec/Cyber roles within the FS or FMI industries. The successful candidate must have subject matter expertise in Information Security, as the role demands a strong knowledge in all areas of information security and cyber security, as well as in-depth knowledge of legacy, existing, and emerging technologies including cloud and security technologies/controls.
In addition, a prior background in information security engineering, security architecture, and security operations will be advantageous in this role given the various levels of stakeholders as well as the tech/cyber projects that the successful candidate will engage with daily.
Enter the key responsibilities of the role:
Information Security & Cyber Oversight- Support the oversight of Information Security and Cyber Security controls that enable LCH to operate securely and resiliently.
- Review and assess the design and operational effectiveness of security controls, identifying gaps, weaknesses, and improvement opportunities.
- Support the tracking, reporting, and follow‑up of Info Sec and Cyber risk remediation actions.
- Monitor cyber‑related roadmaps, programmes, and initiatives impacting LCH, identifying risks, dependencies, and areas requiring escalation.
- Apply strong cyber and technology domain knowledge to understand, assess, and articulate security risks and control effectiveness across:
- Use this knowledge to engage credibly with technical specialists and translate technical issues into clear, risk‑based insights for stakeholders.
- Review vulnerability and security findings from enterprise tooling, dashboards, and assurance activities.
- Analyse trends and systemic risk themes across vulnerability and control findings.
- Coordinate with technology and engineering teams to support timely remediation of vulnerabilities
, tracking progress and escalating delays or constraints as required. - Support risk‑based remediation and risk acceptance decisions in line with LCH and LSEG risk appetite.
- Contribute to risk, security, and governance forums by providing accurate, evidence‑based updates on cyber risk posture, remediation progress, and control effectiveness.
- Work with colleagues across the first, second, and third lines of defence to support a consistent and well‑understood cyber risk posture for LCH.
- Support the development and maintenance of the LCH Cyber Risk Profile.
- Assist with Risk & Control Assessments (RCA) covering Info Sec and Cyber risks.
- Maintain key risk and performance indicators, ensuring management information accurately reflects the current control environment.
- Develop and maintain a strong understanding of LCH business services, objectives, and operational risks
, and how these influence cyber and information security risk. - Identify key areas for improvement across cyber risk, control effectiveness, and governance.
- Support risk management decision‑making
, including contributions to relevant risk forums and governance committees. - Assist with the identification of emerging cyber and information security threats
, supporting analysis and mitigation planning. - Build effective relationships across the business to gain a clear understanding of security‑related risks and priorities
. - Work closely with stakeholders across the three lines of defence on information security, cyber risk, and data privacy matters, including regulatory and legislative considerations.
- Work closely with LCH technology and cyber teams…
To Search, View & Apply for jobs on this site that accept applications from your location or country, tap here to make a Search: