Security Architect in Transactions domain ensuring cybersecurity for Payments and Financial markets. Collaborating with teams to enhance compliance and security practices.
About the role
- Head of Security leading information security function across diverse subsidiaries in a global holding organization. Ensuring security maturity evolves with business goals and collaboration with executives.
Responsibilities
- Translate HQ’s baseline standards into a tailored security roadmap
- Develop and maintain a security maturity model scaled to the subsidiaries’ size and complexity
- Define tiers of subsidiaries by risk, industry, and data sensitivity to drive differentiated strategies
- Create and maintain a library of group-level policies, templates, and standards (e.g., IR plan, password policy)
- Facilitate adoption of policies across subsidiaries with appropriate localization
- Establish and manage a policy update cadence with version control
- Provide or recommend shared tooling across the group
- Negotiate contracts with preferred security vendors and manage licensing agreements
- Build lightweight security engineering support, whether internal or outsourced
- Participate in M&A evaluations to assess the cybersecurity posture of targets
- Advise investment teams on cyber risk exposure and hidden liabilities
- Conduct annual or biannual security self-assessments across subsidiaries.
- Consolidate results into quarterly dashboards for group leadership and HQ.
- Publish and maintain a group-wide incident response playbook.
- Serve as the first escalation point for incidents at the subsidiary level.
- Coordinate post-incident reviews and group-level communication.
- Help subsidiaries pursue and maintain compliance (e.g., SOC 2, ISO 27001, GDPR, HIPAA).
- Maintain a centralized view of compliance status across the group.
- Assist with customer/vendor security questionnaires and audits.
- Triage critical vulnerabilities and incidents across subsidiaries.
- Escalate material risks to HQ or Group X executives as needed.
- Maintain a group-wide risk register and coordinate prioritization.
Requirements
- 10+ years of experience in cybersecurity, with leadership roles across multiple business units or portfolio companies.
- Proven ability to work cross-functionally with engineering, operations, legal, and executive stakeholders.
- Deep familiarity with security standards and certifications (e.g., SOC 2, ISO 27001)
- Demonstrated experience in multi-entity environments such as holding companies, private equity, or decentralized organizations.
- Strong communication, negotiation, and influencing skills.
- Empathy for the business: Understands startup vs. mature subsidiary dynamics.
- Influence without authority: Excels at driving outcomes through relationships, not mandates.
- Operational fluency: Balances strategic vision with hands-on delivery.
- Program management: Leads repeatable assessments, tooling, and remediation efforts.
- Adaptability: Able to flex approaches across subsidiaries with varying maturity.
Job title
Job type
Experience level
Salary
Not specified
Degree requirement
No Education Requirement
Tech skills
Location requirements
Modern Infrastructure and Security Architect at MUFG responsible for directing cyber security initiatives. Collaborating with engineers to enhance security features and tools across the organization.
Senior Federal Technical Program Manager driving execution of federal cloud operations. Facilitating engagements between HPE's CSP and MSP teams while ensuring compliance and operational efficiency.
Cloud Cybersecurity Engineer supporting multi - cloud environments for critical missions in alignment with the U.S. Air Force. Roles include overseeing security authorizations and collaborating with government teams.
Program Security Manager overseeing security and compliance for mission applications in the US. Managing security programs and leading facility operations at Aurora and Philadelphia locations.
Information System Security Manager providing cybersecurity and RMF support for DoD systems and applications. Collaborating with military, government, and contractor personnel to ensure national security and systems compliance.
AI Security Engineer focusing on identifying and mitigating AI vulnerabilities. Involves research, development, and implementation of adversarial machine learning algorithms.
Vice President overseeing DHS & National Security Accounts at ITC Federal. Driving growth, managing P&L, and building strategic relationships across federal contracting.
Information Systems Security Officer supporting national priority programs for AMERICAN SYSTEMS. Ensuring security of AIS and network operations as part of information technology and security teams.
Information Systems Security Officer ensuring security for national priority programs at AMERICAN SYSTEMS. Overseeing automated information systems and providing security coordination for compliance and vulnerability management.