At FNZ, our purpose is to make wealth management more accessible, bringing easier, fairer, and more inclusive solutions to people worldwide. In the Global Cyber & Information Security team, we aim to embed cyber resilience across FNZ, protecting platforms that support investment solutions for over 20 million people.
We are seeking an exceptional Business Information Security Officer to develop and lead a local security team in support of FNZ Switzerland's business strategy, IT and Data Security setups, Business Continuity Management, and the delivery of a Cyber Resiliency Strategy. The role will report to the EMEA Regional Information Security Officer and require significant experience in regulated financial services.
The successful candidate will possess proven technical Information Security subject matter expertise, knowledge of the cybersecurity landscape, and experience following industry-recognized information security frameworks such as ISO27001 and NIST 800-53. They should also have experience interpreting and implementing client and regulatory requirements, understanding security issues related to technology choices and tech-debt, coupled with the ability to communicate risk effectively to stakeholders of all levels.
The ideal candidate will have prior experience in a complex and evolving environment in regulated financial services across different regions and jurisdictions.
Key Responsibilities
* Implement security strategy and tailor group security policies within the business unit based on local regulatory requirements.
* Ensure that security practices are integrated into the business unit's daily operations.
* Deliver ISO and ISAE certifications in alignment with client contractual obligations.
* Identify, through assessment, security risks and recommend appropriate mitigation strategies.
* Monitor and report on security risk levels and control effectiveness within the business unit.
* Drive business unit compliance with relevant regulatory and policy requirements.
* Prepare and support the business unit during internal and external audits related to information security.
* Serve as the point of contact for security incidents within the business unit.
* Provide tailored security awareness training to the business unit's employees.
* Promote the adoption of secure practices within the business unit.
* Act as the liaison between the business unit and the central information security team.
* Report on the business unit's security posture, challenges, and needs to the CISO and other relevant stakeholders.
* Provide security guidance and support for business unit-specific projects, ensuring that security is considered throughout the project lifecycle.
* Identify opportunities for improving security processes within the business unit.
* Advocate for the business unit's security needs in discussions with the central security team and the Swiss IT Team, to ensure that Group setups and initiatives are effective for the Swiss entities and their activities.
Requirements
* Experience in an Information Security function in a regulated industry, law enforcement, or the military.
* Good knowledge of industry-recognized information security and risk frameworks such as ISO27001, NIST 800-53, and COBIT.
* Good knowledge of auditing frameworks such as ISAE3402 and SOC2.
* Experience in an outsourced service model.
* Proven ability to manage client and regulator relationships.
* Experienced in developing excellent supply chain management practices.
* Ability to manage internal stakeholders through a journey of improving information security maturity.
* Professional Information Security qualifications such as CISSP, CISM, CISA, CRISC.
About FNZ
FNZ aims to open up wealth so that everyone can invest in their future on their terms. We believe that complexity holds firms back from achieving this goal.
We created a global, end-to-end wealth management platform that integrates modern technology with business and investment operations. This platform operates within a regulated financial institution.
We partner with over 650 financial institutions and 12,000 wealth managers, managing US$1.5 trillion in assets under administration (AUA).
Together with our customers, we help over 20 million people from all wealth segments to invest in their future.