Chief Security Officer (CSO)

ABOUT US

We’re the world’s leading provider of secure financial messaging services, headquartered in Belgium. We are the way the world moves value – across borders, through cities and overseas. No other organisation can address the scale, precision, pace and trust that this demands, and we’re proud to support the global economy. 

We’re unique too. We were established to find a better way for the global financial community to move value – a reliable, safe and secure approach that the community can trust, completely. We’re always striving to be better and are constantly evolving in an ever-changing landscape, without undermining that trust. Five decades on, our vibrant community reflects the complexity and diversity of the financial ecosystem. We innovate diligently, test exhaustively, then implement fast. In a connected and exciting era, our mission has never been more relevant. Swift now has a presence in 200+ countries and legal territories to serve a community of more than 12,000 banks and financial institutions.   

Company and Program Leadership 

• Responsible for the strategic and operational leadership of Swift's global information security program leading global security and risk mitigation strategies

• Drive the evolution of the global security function towards a service organization (identify customers and develop a service catalogue with proper service level management, capacity management, cost management, etc.)

• Provide support to help the organization move towards a risk-based approach where risks, controls and costs are managed as interrelated dimensions to help drive "Operational readiness, resilience and efficiency" investments 

• Improve employee experience and overall engagement and retention by further developing areas such as functional identity, upskilling the workforce, strengthening the feedback culture, uplifting leadership skills and empowerment of employees

• Create more security ownership across the organization to help spread accountability on risks and controls and go beyond changing behavior by changing attitudes and perceptions of security

• Continue to transition the cyber program to a risk-based organization that prioritizes security controls and delivers value to the organization (quarterly defined priorities, sprint objectives, value monitoring, etc.) 

• Enable the secure adoption of Cloud Services and AI (people, process and technology perspectives) and support the transition to a first line of defense and risk-based approach from security perspective in an agile environment, adopting market practices where relevant

• Provide guidance and counsel to the CTO and key members of leadership team and the Board, working closely with senior executives, industry leaders, and the overall community in defining objectives for information security, while building relationships and goodwill

• Work with the leadership team to oversee the secure operations of regional and business unit security functions

• ·Promote collaborative, empowered working environments across groups, removing barriers and realizing possibilities

• Support the organization's information security governance processes and build/lead the GS team as aligned to the global information security program and project priorities

• Lead information security planning processes to establish an inclusive and comprehensive information security program in support of technology, research, and administrative information systems and technology

• Align annual and long-range security and compliance goals. Work with the CTO to define security strategies, metrics, reporting mechanisms and program services, and create maturity models and a roadmap for continual program improvements

• Stay abreast of information security issues and regulatory changes affecting the financial community, participate in policy and practice discussions, and communicate to teams on a regular basis. Engage in professional development to maintain continual growth in professional skills and knowledge essential to the position

• Develop the GS management team members and implement professional development plans with members of the team

• Assist the CTO in representing Swift's committees and boards associated with global, national and regional consortiums and collaborations 

• Perform special projects and other duties as assigned 

Policy, Compliance and Audit 

• Support the development and implementation of effective and reasonable policies and practices to secure protected and sensitive data and ensure information security and compliance with relevant legislation and legal interpretation. 

• Lead efforts to internally assess, evaluate and make recommendations to management regarding the adequacy of the security controls for Swift's information and technology systems. 

• Coordinate and track all information technology and security related audits including scope of audits, teams involved, timelines, auditing agencies and outcomes. 

• Work with the leadership team to build cohesive security and compliance programs for Swift to effectively address global, national and local statutory and regulatory requirements. 

Outreach, Education and Training 

• Work closely with leadership team and other IT leaders and technical experts across the company and industry on a wide variety of security issues that require an in-depth understanding of the security environment in their units.

• Support education and awareness programs and advise operating units at all levels on security issues, best practices, and vulnerabilities.

• Pursue employee security initiatives to address unique needs in protecting against identity theft, mobile/social media security and online reputation program.

Security Operations, Risk Management and Incident Response

• Ensure efficacy of services for cyber security monitoring, response, assessment, testing, and remediation for the Swift enterprise to protect the brand, secure proprietary data, and secure operations while minimizing business impact and disruption that may occur due to cybersecurity incidents. 

• Keep abreast of security incidents and act as primary control point during potential information security incidents.

• Develop, implement and administer technical security standards, as well as a suite of security services and tools to address and mitigate security risk.

• Provide leadership, direction and guidance in assessing and evaluating information security risks and monitor compliance with security standards and appropriate policies. 

• Examine impacts of new technologies on Swift's overall information security posture. Establish processes to review implementation of new technologies to ensure security compliance. 

PROFESSIONAL EXPERIENCE QUALIFICATIONS

This is a critical role that requires a strategic, business-focused cyber security professional with a track record in the delivery of leading-edge security approaches within a mission critical and high transaction volume environment. In addition to broad technology competence and highly current security experience, the successful candidate will need exceptional communication and leadership skills with the ability to engage with and influence the culture and perception of business leaders internal to the organization as well as external constituencies. Additional qualifications include: 

• 15 years+ of relevant work experience in the cyber security field and/or technology risk management 

• University degree is required, with master’s degree in computer science, technology, engineering, cyber security, related field or MBA a plus.

• Demonstrate extensive knowledge of network information, security concepts, principles and standards and their application in an enterprise environment, preferably for a global network of professional services firms

• Experience in project management and development environments is an asset

• Demonstrate thought leader level knowledge and proven record of success directing efforts in driving execution of strategic priorities 

• Familiar with frameworks and methodologies such as ITIL, Agile, NIST, CISSP, ISO27000, PCIDSS

• Experience in managing a highly complex and global security function, preferably serving as a CSO or second in command or equivalent role with a track record of innovation

• Solid experience in tackling challenges linked to risk-based approach (adoption of cloud and AI a plus), preferably to the Financial Community 

• Ability to drive virtual technical teams in an agile multicultural environments and proven experience to provide coaching and development for others to maximize their potential 

• Possess a fundamental technology heritage that will garner the respect of security technologists as well as top leaders and technologists within the financial industry

• Experience in business continuity planning, auditing, compliance and risk management as well as contract negotiation and vendor management

• A track record of assessing threat and vulnerability risks from a business as well as technical perspective and the ability to develop and champion appropriate effective and timely security architectures and solutions that support our business

• Experience in leading a significant security team organization within the financial services industry or equivalent critical infrastructure environment and with an established network of industry and public sector relationships

• Personal drive, passion and enthusiasm to both understand and successfully navigate a company undergoing meaningful transformation in technology

• Proven track record of improving performance and driving high performance in their teams

• Ability to manage, develop and retain a highly technical and diverse global organization 

• Able to develop effective internal and external relationships across divisional boundaries and demonstrated ability to make and influence decision making within a diverse corporate culture

• Track record of representing the interests of the company in external settings and communicating with governments and consumers

• Strong familiarity with regulatory environments, as well as ability to communicate with global regulators

• Experience recruiting, building and leading world class information security teams

• Exceptional communication skills necessary to advise and influence senior management, board members and external organizations

What we offer

We put you in control of career

We give you a competitive package

We help you perform at your best

We help you make a difference

We give you the freedom to be yourself

We give you the freedom to be yourself. We are creating an environment of unique individuals – like you – with different perspectives on the financial industry and the world. A diverse and inclusive environment in which everyone’s voice counts and where you can reach your full potential.

If you believe you require a reasonable accommodation to participate in the job application or interview process, please contact us to request accommodation.

Don’t meet every single requirement? At Swift, we are dedicated to building a workplace where people can bring their full selves and ideas to the team, so if you are excited about this role, we encourage you to apply even if you do not meet every single qualification.