AVP, Security Strategy and Research

You will act as both a strategic guide and inspiring spokesperson, effectively articulating our evolving security journey to stakeholders across the company and the industry at large.

• Develop and communicate a comprehensive information security and technology risk strategy that aligns with business strategy, technology objectives and industry advancements
• Craft and maintain a strategic security roadmap in partnership with the Security and Tech Risk leadership team, ensuring alignment with the enterprise reference architecture, business priorities and emerging threats
• Collaborate with Enterprise Architecture and security leaders to recommend actionable security insights into strategic business and technology initiatives
• Enable a culture of continuous learning and improvement within the security and tech risk function by providing actionable industry insights and thought leadership to advance security capabilities
• Evangelize our security journey, translating complex security concepts into compelling narratives that inspire adoption, drive alignment, and demonstrate business value
• Lead security research efforts on emerging threats, industry trends, and innovations, ensuring the organization is well-positioned for the future
• Manage and utilize industry research subscriptions and partnerships to aggregate and disseminate relevant content for technical and business audiences
• Stay ahead of emerging threats, technologies, and regulatory changes to provide strategic insights and innovative solutions
• Evaluate emerging security technologies and framework, providing recommendations for adoption
• Create executive-level presentations, whitepapers, and briefings to communicate security strategies effectively
• Represent Company in industry forums, conferences, and working groups, sharing thought leadership and influencing security best practices
• Build and lead a high-performing strategy and research team, providing mentorship and fostering continuous learning and improvement ' What you will bring
• Advanced degree in Information Security, Computer Science, or a related field preferred
• 10+ years of experience in cybersecurity, technology risk, or related fields, with strong track record of crafting security strategy in large, complex organization
• Relevant certifications such as CISSP, CISM, TOGAF, SABSA or equivalent
• In-depth knowledge of security frameworks, emerging threats, and risk mitigation strategies
• Familiarity with regulatory and compliance requirements in financial services
• Deep understanding of emerging security technologies and paradigm shifts such as cloud security, Zero Trust, AI security, quantum computing risks, and other evolving technologies
• Excellent communication and advocacy skills, with the ability to translate complex security concepts into compelling narratives for technical and executive audiences
• Excellent written and verbal communication skills across all organizational levels
• Experience representing an organization in industry forums, speaking at conferences, or contributing to publications
• Strong analytical skills to assess the viability of emerging technologies and frameworks
• Proven ability to conduct security research and translate findings into strategic recommendations
• Ability to work effectively with diverse teams and personalities, adapting management styles to achieve mutually beneficial outcomes Apply