Requirements
You will be part of a team responsible for ensuring that the organization obtains new attestations (SOC 2 / ISAE 3000) for key products that can be shared with our customers within Europe.
This role involves assessing and improving the organization's resilience security posture in line with the Digital Operational Resiliency Act (DORA), developing the necessary frameworks, conducting readiness assessments, and collaborating with external auditors to obtain clean reports.
The position also requires contact with our customers for delivering client audits.
You will work closely with various groups to ensure the successful delivery of new SOC 2 / ISAE 3000 attestations.
What you'll be doing:
* Assisting with the development, implementation, and delivery of SOC 2 (Type 1 or 2) and ISAE 3000 attestations for LSEG's products.
* Conducting regular audits and assessments to ensure compliance with regulations, frameworks, and best practices.
* Coordinating the remediation of identified gaps, issues, or incidents related to the frameworks.
* Providing mentorship and support on compliance matters related to the frameworks.
* Creating and delivering reports and presentations on framework status.
* Engaging in risk management processes, including risk identification, assessment, mitigation, and supervision to ensure compliance and protect company assets.
Essential Criteria:
* Industry qualification related to audit, information security, or a relevant business subject area.
* At least five years of experience in an information security or compliance-related role.
* Deep experience managing SOC 1/2 and ISAE 3000 frameworks within a global company.
* Strong understanding of information security compliance frameworks such as ISO 27001, 9001, 22301, SOC 1/2, PCI DSS 4.0, NIST, SWIFT, and Cyber Essentials Plus.
* Excellent communication, analytical, and problem-solving skills.
* High attention to detail and accuracy.
* Ability to work independently and collaboratively across functions in a global environment.
* Proactive and adaptable approach to work.
Desirable Criteria:
* Bachelor's degree or equivalent in Information Security, Computer Science, or a related field.
* Bachelor's degree or equivalent in a Business-related subject.
* Previous experience working within LSEG.
* Proven record of people management.
* Experience in client engagement and delivering client audits.
* Experience in customer service.
#J-18808-Ljbffr