Who we are looking for

The IFDS Europe Information Security Officer is a Senior Information Technology role within the IFDS Europe Change Management and IT organisation supporting the Cross Border business (Ireland and Luxembourg).The IFDS Europe Information Security Office is built on 5 pillars:

• Governance & Oversight
• Client Engagement
• Training & Awareness
• Incident Management
• ISO by Design

The ISO has responsibility for the overall framework, policy adherence and day to day tasks across each of the 5 pillars.

IFDS Technology is provided by a combination of Group/JV technology functions and other 3rd party software providers and a key element of the role is developing a detailed understanding of the Information Security model, principles and controls adopted by each of these providers and to act as the primary Oversight partner for these services.

Why this role is important to us:

The team you will be joining is a part of International Financial Data Services (IFDS). IFDS is a world-leading provider of outsourcing and technology solutions to the financial services industry. With its global headquarters in Toronto, IFDS services over 240 financial organizations around the world, providing solutions to a wide range of global asset managers, wealth managers, banks, and insurance companies. IFDS is present in North America, EMEA and APAC.

Join us if making your mark in the financial services industry from day one is a challenge you are up for.

What you will be responsible for:

• Own and maintain Information Security Policy and overall framework, ensuring both organisational compliance and alignment with regulatory bodies such as the Central Bank of Ireland, CSSF and EBA
• Perform ongoing oversight of Group/JV Information Security functions and services – acting as primary liaison for all related MI/Reporting/Incident Management
• Partner with Group/JV Security, Governance and Technology functions to align with strategic vision and goals – supporting significant projects as required
• Support annual or periodic Due Diligence requests from clients or prospects (i.e. presentations, questionnaires, RFP responses etc.) and present at client board meetings as required
• Prepare quarterly Board reports and monthly Business Risk Committee reports on the current Information Security Posture for both Ireland and Luxembourg
• Communicate inherent security risks, awareness and training to technical and non-technical business users
• Partner with the IT Vendor function and Risk & Compliance team on Information Security risk management activities including information security risk assessment, vendor reviews - lead the remediation of identified gaps and issues.
• Perform application ISRMP (Information Security Risk Management Profile) exercises and own overall programme of ISRMPs for IFDS applications
• Act as Senior Information Security escalation point for all significant incidents, issues or adhoc support requirements
• Oversee UAM (User Access Management) function and control framework – including responsibility for quarterly user access recertification programme
• Day to day oversight and management of Information Security analyst

About State Street

What we do. State Street is one of the largest custodian banks, asset managers and asset intelligence companies in the world. From technology to product innovation, we’re making our mark on the financial services industry. For more than two centuries, we’ve been helping our clients safeguard and steward the investments of millions of people. We provide investment servicing, data & analytics, investment research & trading and investment management to institutional clients.

Work, Live and Grow. We make all efforts to create a great work environment. Our benefits packages are competitive and comprehensive. Details vary by location, but you may expect generous medical care, insurance and savings plans, among other perks. You’ll have access to flexible Work Programs to help you match your needs. And our wealth of development programs and educational support will help you reach your full potential.

Inclusion, Diversity and Social Responsibility. We truly believe our employees’ diverse backgrounds, experiences and perspectives are a powerful contributor to creating an inclusive environment where everyone can thrive and reach their maximum potential while adding value to both our organization and our clients. We warmly welcome candidates of diverse origin, background, ability, age, sexual orientation, gender identity and personality. Another fundamental value at State Street is active engagement with our communities around the world, both as a partner and a leader. You will have tools to help balance your professional and personal life, paid volunteer days, matching gift programs and access to employee networks that help you stay connected to what matters to you.

State Street is an equal opportunity and affirmative action employer.

• Preferred Qualifications and Working Experience:
• 10+ years IT experience combined with Financial background (Funds / Investment services an advantage)
• Experience managing 3rd party software providers
• Experience working with sophisticated, high transaction, high availability environments
• Knowledge of Security fundamentals including access control, cryptography, vulnerability management, secure configurations, secret management, logging and alerting, and system and network Security
• Understanding of Secure Software Development Life Cycle (SSDLC) practices
• Understanding of infrastructure and platform technologies (Windows, Linux, virtualisation, public cloud, firewalls etc.) and related secure design patterns
• Formal Information Security qualifications - e.g. CISSP, Security+ etc/
• Solid understanding of relevant cross border regulations and guidelines (CBI, CSSF)

Travel

Some travel will be required as part of the role (~10%)