Chief Information Security Officer

Job description

We are seeking a Chief Information Security Officer (CISO) to take full responsibility for information security and identity and access management at Man Group. This role is part of the team and reports to the Head of Enterprise Risk.

Tasks

- Strategy & Standards: Developing and implementing the information security strategy; aligning security investments with the company’s risk profile - Promoting a culture of security and security awareness within the company through training, engagement, and communication - Establishing and enforcing information security standards across technology and business units - Collaborating with teams across the company to integrate security risks into their workflows - Ensuring the secure adoption of AI and new technologies by defining security policies - Responsibility for information security and IAM risks and controls

Identity and Access Management

- Development and implementation of the IAM strategy and transformation roadmap, migration from legacy provisioning to a modern, compliant identity platform - Identification, monitoring, and maintenance of the identity governance program, including application onboarding, automation of account recycling, and access controls - Leadership expertise in the area of identity and access management

Governance & Reporting

- Chairing the Information Security Steering Committee - Presenting security status updates, risks, and program updates to the Executive Board and the Risk and Finance Committee - Overseeing third-party risk management in coordination with the dedicated TPRM team - Assisting with SOC 1, 2, and 3 reports

Requirements

Essential: - A credible role model, comfortable with balancing priorities - Excellent communication skills, capable of executing a full CISO mandate - Extensive experience, likely at the architectural level, and able to delve into details - Deep technical credibility in information security, capable of acting as a CISO - Influential communication skills, comfortable presenting to the board and in technical design reviews Preferred: - CISSP certification - Experience with identity governance platforms and large-scale IAM transformation programs - Familiarity with Infrastructure-as-Code environments (Terraform, GitOps workflows) - Experience with cloud security environments (AWS/GCP/Azure) - Experience in architecting security frameworks for large-scale technology environments - Background in a regulated industry, with an understanding of governance, operational, and compliance requirements

We offer

- A work environment that promotes equal opportunity - A culture that values diversity in thought and values - Opportunities to get involved through our external and internal initiatives, partnerships, and programs - A comprehensive benefits package, including:

• Competitive vacation entitlements
• Pension/VSI and Long-Term Health Insurance
• group health insurance
• Extended parental leave and long-term leave
• Depending on the location, additional benefits may include private health insurance, discounted gym memberships, and pet insurance