Head of Information Security, EMEA

Jefferies is a leading global financial services company that is committed to delivering cutting-edge information security solutions to safeguard our organization's digital assets and protect our client’s data. We are seeking a highly skilled and experienced professional to join our team as Senior Vice President, Head of Security EMEA. This critical leadership role will report directly to the local Chief Information Officer (CIO) and global Chief Information Security Officer (CISO) and play a pivotal role in shaping the information security strategy and engineering direction for our organization.

Head of Security EMEA is a senior-level position responsible for overseeing and managing all security aspects for an organization in the region. The candidate must be technical and adaptable to the rapid pace of financial services development and delivery.  Candidate needs to be an excellent team player with good overall technical and communication skills and above all be self-motivated and drive the overall progress of the security program at Jefferies.

We look to hire people who are comfortable in working with minimal supervision as part of a team that has consistently delivers ground-breaking and innovative solutions in one of the most exciting and fast-moving areas of the financial markets vertical. We need people who can prioritize and effectively communicate complex issues within all levels of the organization.

Key Responsibilities:

In this role, you will be responsible for overseeing and leading a team of security personnel across multiple domains including Security Operations, Global Security Administration, Physical Security, Data Security Analytics, PKI/Certificate Management, and Network Security Engineering. Your role will encompass a wide range of strategic, managerial, and technical responsibilities, including but not limited to: 

Technical Leadership and Strategy:

• Provide strategic security guidance and direction for the engineering of multiple high-performing teams across diverse domains.
• Drive the vision and direction of security solutions through active participation in the information security market through involvement with vendors, conferences, connecting with peers for all the firms’ various key technologies.
  • Lead, supervise and inspire local team multiple key areas, Global Security Admins, Security Operations, Data Security Scientists and other areas/teams as assigned. 

Security Responsibility:

• Conduct in-depth technical vendor security reviews for all vendor solutions integrated into the organization's technology stack to ensure proactive security measures from vendors.
• Provide strategic security guidance for technology and delivery, including evaluation and recommendation of technical controls. 
• Work closely with application and engineering teams and other infrastructure teams to support and implement security at every level within the firm.
• Proactively identified and addressed emerging technology threats, such as cloud computing security risks and data privacy concerns. 
• Developed and implemented risk mitigation strategies, including control enhancements, policy changes
• Conduct information security awareness and training programs
• Ensure that the firm’s technology risk management practices are aligned with industry standards and best practices. 
• Participate in rolling out global security initiatives including DLP, Network Segmentation, Secure Server Access 
• Help oversee the development and implementation of the firm's information security program and governance framework
• Coordinate the response to security incidents and breaches and ensure timely reporting and remediation
• Liaise with external regulators, auditors, and vendors on security matters and compliance requirements

Required Background:

• Extensive knowledge of information security principles and best practices
• Ability to communicate effectively with senior management and stakeholders on security issues and risks
• Expertise in ensuring compliance with relevant cybersecurity regulations and frameworks, such as FCA, NIST, GDPR
• Experience in one or a combination of the following: systems, applications, or architecture planning
• Experience driving security awareness programs 
• Strong verbal, written, and interpersonal communication skills
• Ability to influence across all organizational levels, particularly senior management
• Ability to negotiate, influence, and collaborate to build successful relationships
• Knowledge and understanding of data governance challenges as it relates to Data Loss Prevention
• Experience with Governance, Risk, and Compliance (GRC) 
• A BS/BA degree or higher in information technology
• Agile experience
• Fundamental knowledge of AWS and/or Azure IaaS/PaaS services 
• Self-disciplined, self-starter who can provide leadership and mentor others while resolving complex incidents and delivering projects

#LI-PS1

Jefferies Financial Group Inc. (‘‘Jefferies,’’ ‘‘we,’’ ‘‘us’’ or ‘‘our’’) is a U.S.-headquartered global full service, integrated investment banking and securities firm. Our largest subsidiary, Jefferies LLC, a U.S. broker-dealer, was founded in the U.S. in 1962 and our first international operating subsidiary, Jefferies International Limited, a U.K. broker-dealer, was established in the U.K. in 1986. Our strategy focuses on continuing to build out our investment banking effort, enhancing our capital markets businesses and further developing our Leucadia Asset Management alternative asset management platform. We offer deep sector expertise across a full range of products and services in investment banking, equities, fixed income, asset and wealth management in the Americas, Europe and the Middle East and Asia.

At Jefferies, we believe that diversity fosters creativity, innovation and thought leadership through the infusion of new ideas and perspectives. We have made a commitment to building a culture that provides opportunities for all employees regardless of our differences and supports a workforce that is reflective of the communities where we work and live. As a result, we are able to pool our collective insights and intelligence to provide fresh and innovative thinking for our clients.

Jefferies is an equal employment opportunity employer, and takes affirmative action to ensure that all qualified applicants will receive consideration for employment without regard to race, creed, color, national origin, ancestry, religion, gender, pregnancy, age, physical or mental disability, marital status, sexual orientation, gender identity or expression, veteran or military status, genetic information, reproductive health decisions, or any other factor protected by applicable law. We are committed to hiring the most qualified applicants and complying with all federal, state, and local equal employment opportunity laws. As part of this commitment, Jefferies will extend reasonable accommodations to individuals with disabilities, as required by applicable law.