Head of Security Architecture

As Group Director, Head of Security Architecture, you’ll be a core member of the LSEG Cyber Security team. You’ll lead and set the direction for the Cyber Security Architecture team which delivers across a number of areas:

Principal Security architecture – a team of engineers who ensure security is built in to all projects across the group. Each architect is aligned to our business units and builds a deep relationship with the teams in that unit.

Security Architecture Design – a central function that delivers design patterns to ensure a consistent implementation of our controls across the group. This team researches new technologies, and provides guidance on how to secure them. They also run a project to provide a risk posture review across the application portfolio against our standards. This team also runs design forums, assists in policy and standard creation, and provides consulting on hard security problems as needed.

Security Architecture review – a central function that delivers a range of security reviews - architecture governance reviews for new build and change projects; network perimeter / firewall reviews to ensure changes are in line with agreed architectures; and third party reviews ensuring our vendor / supply chain portfolio meets our security standards.

You and your teams will be involved in all major projects in the group – ranging from technology new build, cloud migration projects, transformation programs, as well as mergers, acquisition and divestments. As a critical national infrastructure provider across many global regulated markets, you will ensure our technology systems are architected to meet the security rules expected by regulators and our customers and partners.

You will need to have technical skills and experience in securing complex financial applications. The role requires a broad Security Architecture knowledge, but specifically deep application security skills. We have a separate Security Engineering team who look after infrastructure, platform security.

• Leads the development and execution of strategy for Security Architecture team, setting and driving the achievement of KPIs and objectives through effective leadership and ensuring alignment with the broader Cyber Security and Architecture Functions’ strategy
• Manages performance, development and wellbeing of a team of architects across various technology domains to providing end to end architecture services
• Owns the relationships with key stakeholders – including Cyber Security peers, group CTO, Heads of Architecture, First and Second line Engineering Risk, Business Information Security Officers. Defines, Manages and Operates the key functions of the Security Architecture team – Secure Design; Principal Security Architecture; Security Architecture review.
• Defines architecture principles, policies and standards to produce function specific reference architectures and patterns
• Contributes to the development of global enterprise standards for the central Architecture & Technology Strategy function
• Builds relationships with vendors, regulators and industry bodies to seek and adopt industry best practices in enterprise architecture and technology strategy
• Seeks latest technology and business innovations relevant for the function (e.g., Automation, Artificial Intelligence, Quantum Computing etc.)
• Acts as trusted advisor and leader across the wider LSEG Engineering group.
• Ensure Engineering projects meet critical security regulations [DORA, LPM etc]
• Leads security engagement on major transformation protects.

• Knowledge of financial market infrastructure technology, and experience in deploying pragmatic security controls (e.g. trading systems, market data systems, low latency technology)
• Strong deep expertise in Application Security Architecture and controls. The Security Architecture team is application security focused. A separate Security Engineering team manages the infrastructure and platform controls. As a result, the successful candidate will demonstrate technical experience in securing financial applications.
• Enterprise Architecture, Technology Strategy, Cloud, Security, Applications and Infrastructure
• Performing detailed security reviews of complex systems
• Experience of working with architectural development methodology, standards development, technology architecture
• Qualifications in security leadership, such as but not limited to CISSP, CISMP or CISM and TOGAF in architecture
• Modern engineering practices, agile practices, automation and deployment pipelines.
• Extensive experience in Enterprise Architecture and Technology Strategy across multiple Financial Services organisations, or similarly regulated organisations, that provide Technology Services to revenue generating divisions within large multi-country organisations

• Experience of developing and influencing strategic working relationships with key technology suppliers

• Experience in a leadership role within Security in a global financial Services, FinTech, or Technology organisation
• Experience in managing high performing teams and empowering them to deliver against the agreed strategy & roadmap
• Experience of establishing and monitoring governance, including accountability, engagement, KPI metrics, etc., and planning and controlling budgets

• Strong verbal and written communication skills, with particular ability to communicate technical information to non-technical senior stakeholders and to listen to identified concerns and adapt accordingly
• Experience of successfully planning and delivering large scale complex technology integrations and technology transformation programmes
• Proven ability to work well under pressure – particularly during an incident.

Delivering data-driven insights, workflow and products to customers simply and flexibly so they can make better-informed decisions.

Delivering category-defining indices across asset classes and investment objectives to create new possibilities for the global investment community.

Providing a comprehensive suite of screening, due diligence, verification and onboarding solutions, helping customers protect their businesses from a wide range of threats.

Supporting customers across the end-to-end capital markets workflow, providing them with access to liquidity across multiple asset classes and regions; supporting their clearing and reporting obligations; and providing risk and balance sheet solutions.

LSEG is a leading global financial markets infrastructure and data provider. Our purpose is driving financial stability, empowering economies and enabling customers to create sustainable growth.

Our purpose is the foundation on which our culture is built. Our values of Integrity, Partnership, Excellence and Change underpin our purpose and set the standard for everything we do, every day. They go to the heart of who we are and guide our decision making and everyday actions.

Working with us means that you will be part of a dynamic organisation of 25,000 people across 65 countries. However, we will value your individuality and enable you to bring your true self to work so you can help enrich our diverse workforce. You will be part of a collaborative and creative culture where we encourage new ideas and are committed to sustainability across our global business. You will experience the critical role we have in helping to re-engineer the financial ecosystem to support and drive sustainable economic growth. Together, we are aiming to achieve this growth by accelerating the just transition to net zero, enabling growth of the green economy and creating inclusive economic opportunity.

LSEG offers a range of tailored benefits and support, including healthcare, retirement planning, paid volunteering days and wellbeing initiatives.

We are proud to be an equal opportunities employer. This means that we do not discriminate on the basis of anyone’s race, religion, colour, national origin, gender, sexual orientation, gender identity, gender expression, age, marital status, veteran status, pregnancy or disability, or any other basis protected under applicable law. Conforming with applicable law, we can reasonably accommodate applicants' and employees' religious practices and beliefs, as well as mental health or physical disability needs.

Please take a moment to read this privacy notice carefully, as it describes what personal information London Stock Exchange Group (LSEG) (we) may hold about you, what it’s used for, and how it’s obtained, your rights and how to contact us as a data subject.

If you are submitting as a Recruitment Agency Partner, it is essential and your responsibility to ensure that candidates applying to LSEG are aware of this privacy notice.