Information Security Architectural Specialist

Platform Implementation Leader: We are seeking a highly skilled and experienced Platform Implementations Leader to drive the development and enhancement of platforms supporting our global Information Security Assessment program. This pivotal role requires close partnership with engineering teams to evolve these platforms to ensure the implementation of secure, efficient, and scalable solutions enabling effective risk identification, analysis, and mitigation across our technology landscape.

This position offers an exciting opportunity to directly influence our Security Assessment program strategy and contribute to a robust security posture within a dynamic and collaborative environment. The successful candidate will be responsible for structuring and leading the platform implementations team for Information Security Assessments, aligning with cybersecurity, regulatory and business objectives.

The ideal candidate will have 7+ years of experience in platform implementation, cybersecurity operations, or information security assessments, preferably in financial services. They will possess a strong understanding of information security frameworks (e.g., NIST, ISO 27001), risk management, and control assurance.

A proven track record of leading the implementation of technical platforms, ideally within GRC, assessment, or evidence management domains, is essential. Proficiency in managing Agile/Waterfall projects with global stakeholders and technology teams is also required.

The selected candidate will partner closely with engineering teams to define, scope, and implement changes to the Security Assessments platforms, ensuring these platforms effectively support evolving security assessment needs and progress towards new platform uplifts.

They will collaborate with internal stakeholders including security assessments, risk management, compliance, audit, and technology teams, to translate security assessment requirements into practical and scalable technical solutions, considering local data sovereignty and compliance requirements.

Key responsibilities include designing, building, and integrating modules and enhancements within the Security Assessments platforms that automate security assessment workflows, reporting, data aggregation from various sources (e.g., GRC tools, threat intelligence feeds), and risk register updates, leveraging cloud-native solutions and DevSecOps principles.

Additional responsibilities include managing project delivery timelines, resources, and dependencies related to Security Assessments platform enhancements, adhering to agile methodologies and fostering effective communication.

Conduct thorough user acceptance testing (UAT) of changes to Security Assessments, collect feedback, and drive iterative improvements post-implementation, ensuring smooth transition and optimal user experience.

Ultimately, the goal is to develop and maintain comprehensive risk assessment methodologies and frameworks, staying abreast of industry best practices and regulatory changes, and ensuring these are reflected in the capabilities of Security Assessments.

• 7+ years of experience in platform implementation, cybersecurity operations, or information security assessments, preferably in financial services.
• Strong understanding of information security frameworks (e.g., NIST, ISO 27001), risk management, and control assurance.
• Proven experience leading the implementation of technical platforms, ideally within GRC, assessment, or evidence management domains.
• Proficient in managing Agile/Waterfall projects with global stakeholders and technology teams.
• Familiarity with data architecture, APIs, and integration with enterprise platforms (e.g., ServiceNow, Archer, Jira).
• Strong analytical, problem-solving, and organizational skills with excellent attention to detail.
• Effective communicator with experience in stakeholder management, change adoption, and training delivery.

• Experience with GRC Platforms (Service Now, IBM, etc.).
• Experience working in a global