Role Purpose
Developing cyber defence capabilities to protect LSEG from cyber threats that impact the confidentiality, integrity, and availability of group assets. Domain area is Vulnerability & Threat Management.
Reports to Senior Manager, Vulnerability & Threat Management
No direct FTE reports, but may handle contingents and vendor/partner resources.
Location / flexible working - London and this role will have some elements of paid on-call.
Key relationships & committees
Stakeholders include the wider security team including security architecture, cyber strategy business function, governance, risk and compliance, global security operations centre. Programme management. Entity level Business Information Security Officers (BISOs). Infrastructure & Cloud operations, engineering and architectures teams. Internal risk and audit functions. Architecture and corporate approval forums. External collaborators partners/vendors, regulators and industry schemes.
Key Responsibilities
Develop and be responsible for the strategies, architectures, designs, and associated artefacts. Technologies have clear roadmaps and lifecycles defined.
Lead the controls and ensure they remain effective through their lifecycle.
Lead projects, some with significant risk profile as part of the cyber programme and other initiatives which are sophisticated and span the group and require a broad perspective in solving challenges.
Run and deliver changes to controls which are not part of project activity.
Develop key indicators, analysis, and artefacts to continually evidence and report control effectiveness and risk.
Critical issue support for any operational incident from operations or global security operations centre.
Solve sophisticated problems related to the domain area.
Remain current with principles, concepts and new technologies.
Influence vendor roadmaps and functionality in support of LSEG objectives.
Critical work
Delivery of activities against of agreed cyber security strategies. Shapes project delivery with the project management team and the senior manager.
Delivery of key artefacts associated with the role, artefacts support evidencing and assurance activities.
Ongoing control operation and effectiveness and evidencing of such.
Reporting, development and management of agreed measures, key performance indicators and key risk indicators.
Impact
As a group level function the role has impact across all parts of the business as it has responsibility for the relevant group security controls which seek to mitigate the risk and impact to the group from cyber-attacks. Impacts include financial, economic, regulatory, customer and brand.
The role is key to addressing regulatory concerns for all of our regulated entities related to cyber security and cyber resilience.
Key Critical Metrics
Delivery of projects and BAU activities within agreed timescales to the required standard.
Issues that are identified are fixed and remain fixed and are not recurring.
Key artefacts for the activities performed exist, are accurate and of required standard.
Agreed measures related to controls owned by the role, for example Key Risk Indicators, are delivered and handled.
Technical / Job Functional Knowledge
Knowledge and experience of the architecture, engineering and operation of vulnerability and threat management technology. Discovery and classification of vulnerabilities across systems and platforms. Guidance & assurance aspects of remediation. Level of knowledge in the domain technology area would be considered an expert.
Knowledge and experience of different operating systems and platforms, which includes assurance of security configuration parameters and the depth of knowledge is an authority.
Architecture and engineering of layered control capabilities to a specialist level.
A solid grasp of information security principles and standard methodologies.
Adversary Tools, Techniques and Procedures. A deep understanding of TTP’s is required.
Threat Modelling experience.
Broad technology knowledge across non-core domain area.
Modern engineering practices, automation to drive efficiencies. Infrastructure as Code mentality. Code / scripting for practical tasks and tool integrations.
Structured and methodical problem solving practices for resolving the most sophisticated problems.
Policies, standards and security frameworks, NIST, CIS. Solid skills to author formal documentation.
Risk and control, management, monitoring and reporting.
Works independently and with guidance only in the most complicated of situations, and is encouraged to tackle problems with sound judgement that is aligned to good practice with the long-term interests at its heart!
The role holder is likely to hold one or more of the following security or engineering/architecture specific certifications, CISSP, OSCP, TOGAF, GIAC or those relevant.
Business and sector expertise
Experience and knowledge of technology in financial services and/or regulated environments and industry compliance schemes (for example SWIFT) preferred.
Must have significant experience of working in security focussed roles. Likely will have greater than 5 years full time in security roles in part of an overall career in technology with more than 10 years focussed predominantly in the associated area. Expected to have direct hands-on experience in some of relevant technologies.
Personal skills and capabilities
Collaborating across the group to deliver successful sustainable outcomes for the business and its customers.
Takes ownership and commits to delivering sustainable outcomes and resolving problems and demonstrates a bias for action.
Proven track record of delivering results without compromising on quality.
Critical thinker, takes in broad perspectives to assess and make decisions.
Willingness and flexibility and to work across different technologies.
Capability to quickly assimilate new concepts and technologies.
Takes ownership of own career development and learning.
Delivering feedback in a way useful for an individual and a team for growth.
Adapts messaging and presentation styles for different audiences.
Is measured and considered in exciting and fast paced situations.
LSEG is a leading global financial markets infrastructure and data provider. Our purpose is driving financial stability, empowering economies and enabling customers to create sustainable growth.
Our purpose is the foundation on which our culture is built. Our values of Integrity, Partnership, Excellence and Change underpin our purpose and set the standard for everything we do, every day. They go to the heart of who we are and guide our decision making and everyday actions.
Working with us means that you will be part of a dynamic organisation of 25,000 people across 65 countries. However, we will value your individuality and enable you to bring your true self to work so you can help enrich our diverse workforce. You will be part of a collaborative and creative culture where we encourage new ideas and are committed to sustainability across our global business. You will experience the critical role we have in helping to re-engineer the financial ecosystem to support and drive sustainable economic growth. Together, we are aiming to achieve this growth by accelerating the just transition to net zero, enabling growth of the green economy and creating inclusive economic opportunity.
LSEG offers a range of tailored benefits and support, including healthcare, retirement planning, paid volunteering days and wellbeing initiatives.
We are proud to be an equal opportunities employer. This means that we do not discriminate on the basis of anyone’s race, religion, colour, national origin, gender, sexual orientation, gender identity, gender expression, age, marital status, veteran status, pregnancy or disability, or any other basis protected under applicable law. Conforming with applicable law, we can reasonably accommodate applicants' and employees' religious practices and beliefs, as well as mental health or physical disability needs.
Please take a moment to read this privacy notice carefully, as it describes what personal information London Stock Exchange Group (LSEG) (we) may hold about you, what it’s used for, and how it’s obtained, your rights and how to contact us as a data subject.
If you are submitting as a Recruitment Agency Partner, it is essential and your responsibility to ensure that candidates applying to LSEG are aware of this privacy notice.
About us
LSEG is one of the world’s leading providers of financial markets infrastructure and delivers financial data, analytics, news and index products to more than 40,000 customers in over 170 countries.
We help organisations fund innovation, manage risk and create jobs by partnering with customers at every point in the trade lifecycle: from informing their pre-trade decisions and executing trades to raising capital, clearing and optimisation.
Backed by more than three centuries of experience, innovative technologies and a team of 25,000 people in over 60 countries, we are driving financial stability, empowering economies and enabling you to grow sustainably.
Our purpose
At LSEG, our purpose is driving financial stability, empowering economies and enabling customers to create sustainable growth.
The services we provide as a leading global financial markets infrastructure and data provider are critical for economies around the world. The vital social and economic role we play enables sustainable growth for customers, partners, and the communities we all live in.
Our word is our bond. True in 1801. Just as true today.
London Stock Exchange is one of the world’s oldest stock exchanges and can trace its history back more than 300 years. LSEG was created in October 2007 (as the London Stock Exchange Group) when London Stock Exchange merged with Milan Stock Exchange, Borsa Italiana.
Our values
Our purpose is the foundation on which our culture is built. At LSEG, our values are Integrity, Partnership, Excellence, and Change. Underpinning our purpose, our values articulate how we work with customers, partners, and each other. They go to the heart of who we are and guide our decision making and everyday actions.
What we do
LSEG is a leading global financial markets infrastructure and data provider that operates connected businesses to serve customers across the entire financial markets value chain.
With capabilities in data, indices and analytics, capital formation, trade execution, clearing and risk management, we operate at the heart of the world’s financial ecosystem and enable the sustainable growth and stability of our customers and their communities.
Together, our five business divisions – Data and Analytics, FTSE Russell, Risk Intelligence, Capital Markets and Post Trade – offer customers seamless access to global financial markets, across the trading lifecycle.
Our key locations
LSEG is headquartered in the United Kingdom, with significant operations in over 60 countries across Europe, the Middle East, Africa, North America, Latin America, and Asia Pacific.
Workplace Initiatives
- Programme for parents returning to work after Parental Leave? Yes
- Leadership development programmes? Yes
- Mentoring programmes? No
- Coaching Progammes - Yes
- Employee-led diversity networks? Yes
- Internal women's networking groups? Yes
-Open to discussing flexible work arrangements at interview stage? Yes
Global Parental Leave: 26 weeks
Minimum weeks tenure required to be eligible for paid maternity leave: Global Parental Leave: 12 months / 52 weeks
No. of weeks paid paternity leave at full salary: Global Parental Leave: 26 weeks
Minimum tenure required to be eligible for paid paternity leave: Global Parental Leave: 12 months / 52 weeks
Gender Pay Gap |
|
2023? |
|
Average pay gap: |
N/A* Please see Non-identifiable gender pay gap |
Median pay gap: |
N/A* Please see Non-identifiable gender pay gap |
Average bonus gap: |
N/A* Please see Non-identifiable gender pay gap |
Median bonus gap: |
N/A* Please see Non-identifiable gender pay gap |
Non-Identifiable gender pay gap |
1.2% Find out more in our LSEG Sustainability Report 2023 |
Signatory of the UK Women in Finance Charter? Yes - since 2016
Targets to raise the number of women in leadership? Yes - LSEG achieved our goal of 40% female representation in senior leadership positions globally by December 2022. We remain committed to maintaining at least 40% female representation in senior leadership.
Targets to raise the number of BAME individuals in leadership? Yes - 25% underrepresented ethnic groups in senior leadership roles (ExCo and Group Leaders) by 2027
Listed in the Bloomberg Diversity & Inclusion Index? No
Returner Programme
As part of our Global Parental Leave offering, from 1st July 2024 all parents returning from any type of family leave (Global Parental Leave, UK Maternity, Paternity, Adoption or Shared Parental Leave) are eligible to an eight-week phased return to work, working 80% of normal hours at full pay. Additionally, LSEG is introducing enhanced leave to support families whose children require neonatal care.
Other Programmes
We offer a wide range of opportunities for ambitious graduates and students to start a dynamic and rewarding career in global financial markets. You can join us on an Internship or Graduate programme, which provides a formal learning experience or directly into Entry level positions.
Graduate programmes
Our graduate programmes, for final year undergraduate or Masters students and recent graduates, sit within Businessor Technology.
From day one you will be aligned to a division, where you will access divisional and global learning opportunities and experiences.
Our sustainable growth as a business means that more than ever before there are opportunities to develop your career in a truly global organisation, which is critical to the successful functioning of global financial markets. The breadth of our business means you will never lack opportunities to learn and grow.
Our Business Programme will allow you to gain valuable experience within one of our Divisions (Capital Markets, Post Trade , FTSE Russel and Data & Analytics) or, alternatively, work across one of our Group functions (People, Corporate Affairs and Marketing, Finance, Strategy or Risk). In the Divisional roles, you may be involved in helping companies to raise capital, developing benchmark ranges and indices, or building and evaluating risk models. In one of our Group functions, you’ll work in a central function to support company goals.
Our Technology Programme will enable you to launch your career in Engineering by contributing to live projects, collaborating with and being mentored by best-in-class talent as you acquire critical skills through on-the-job experiences. You’ll have a meaningful role in harnessing new, exciting technologies, and work on projects aimed at integrating them into our frontline products and operations.
Learning and Development
At LSEG we believe that colleagues own and drive their development. We understand it can be nerve-wracking to embark on a new career and, in some cases, make the transition from education to practice. We will assist you in nurturing a growth mindset and developing foundational and human skills such as financial market value chain, customer centricity, adaptability, innovation, problem solving and stakeholder management as well as specialist skills that are critical to the division that you will be working with.
During the programme we will provide curated learning pathways through leading learning platforms, a chance to connect with subject matter experts within LSEG and the opportunity to pursue a professional qualification that supports to build critical skills relevant to your area of specialisation, aiming to develop your knowledge and skills – with a global and divisional focus. You will also have access to Career Navigator, our brand-new personalised platform which will empower you to define and achieve your career ambitions within LSEG. You will access global and local learning opportunities and experiences, as well as a network of Early Careers peers who will support you as you progress your career journey at LSEG. You will contribute to wider society through CSR and volunteering initiatives as you build connections forming a global community across LSEG.
LSEG is a place where you can take your career in any direction. We believe in the career philosophy of “My Career. My Opportunity. My Future.”, empowering you with the tools and structure needed to broaden your skills. Beyond the programme, you can look forward to opportunities to advance your skills and learning at every stage of your career. Our scale and global presence give you the opportunity to deepen your abilities and expertise and take the next steps on your journey to achieving your career ambitions.
Internship programmes
Our summer internship programme, for penultimate year students, is a unique opportunity to get to know LSEG’s business and to gain an in-depth insight into financial markets.
Whether you apply for the Business or Technology internship, you will understand what a career with LSEG would really be like. The programme has been crafted to enable exploration of potential career pathways at LSEG, to start to build some of the key skills you will need as a graduate and to support you to build self-insight into your strengths and interests.
Our Technology Internship will enable you to launch your career in Engineering. Your technical placement will involve coding, development, and innovation. You’ll have a meaningful role in harnessing new, exciting technologies and working on projects aimed at integrating them into our frontline operations.
Our Business Internship programme will allow you to gain valuable experience within one of our Business Divisions, whilst gaining broader exposure to the wider Group. You’ll gain valuable experience in one of our Divisions (Capital Markets and Post Trade).
Schools and young people
We’re passionate about maximising the opportunities available to children and young people regardless of their background and have set up a number of initiatives that allow us to provide support.
LSEG Foundation
A vital way of delivering our purpose in the community and wider society is through the LSEG Foundation. Working with charity and NGO partners, we deliver a range of programmes across the globe, creating opportunities for those in need to participate in education, employment and enterprise. This is a vast challenge, so we aim to focus our support where we think it can have the greatest impact. Our aim is to help people access economic opportunities and build a secure future with financial independence.
Our programmes vary by geography and need. We create change through a variety of initiatives. These could include helping girls stay in school for longer, as part of a wider strategy to address gender inequality and community education, guiding young adults into secure work, education programmes for financial literacy or supporting individuals in reskilling for a fresh start.
Work experience
We are committed to supporting young people to explore career opportunities, build their employability skills and bridge the gap between education and practice.
Apprenticeship Programme (UK)
Our Apprenticeship Programme currently offer an 18-month accelerated development programme, combining real work experience with away-from-the-desk learning.
Online financial literacy resources
At LSEG, we believe financial literacy opens up options and opportunities. Whether it’s study and career choices now, or how to save and invest money later on in life, understanding how finance works can help build a better future for us all. To help boost the financial literacy of kids across the globe we offer a wealth of online resources and videos to help you learn more about the world of finance.