The Stack’s latest job of the week is at investment bank Credit Suisse, which is looking for a CISO for its London office. The role’s advertised responsibilities include to “independently challenge, guide and support the leadership of the Enterprise Security Services department in delivering the best possible IT Security solutions.”
Applicants will need to have “extensive experience directing and managing Enterprise Security technology at a large multinational across multiple domains such as Identity & Access, Network Security, Data Protection, Cyber, DevSecOps” and some decent strategic chops: the role includes ensuring a “roadmap for future security technologies focuses on the right priorities and is understood and adopted across the Bank.”
You'd be joining a network of 5,500 employees in the UK. The company's refurbished Canary Wharf offices include an on-site restaurant, coffee shops and gym with a swimming pool. There is also a dedicated faith room, mothers' room and wellbeing room for meditation, yoga and mental health sessions.
Follow The Stack on LinkedIn
"You will independently challenge, guide and support the leadership of the Enterprise Security Services department in delivering the best possible IT Security solutions to Credit Suisse. Your role will include ensuring the security of the products being delivered and operated, but also ensuring that the roadmap for future security technologies focuses on the right priorities and is understood and adopted across the Bank" - Credit Suisse's job spec for the London CISO role.
Credit Suisse itself doesn’t list the salary, but we understand that it is up to £160,000 basic plus a competitive bonus and benefits package from the bank. Perhaps less attractively for some, the successful application will support the UK Senior Manager Regime reporting requirements in relation to Cyber Security – regulation for the financial services sector that holds senior individuals, in the form of senior managers, should also be held to account for operational failings. (In practice, should the worse happen, CISOs will “just” need to be able to give evidence to regulators that they took all reasonable steps to protect the organisation and its clients.)
Applicants for the Credit Suisse CISO opening must have “proven knowledge of IT Security principles demonstrated by a qualification such as University degree or Post Graduate degree in IT or Information Security, CISSP, CISA, CISM or equivalent Information Security qualification; extensive experience operating at Senior Management/Executive levels with IT Security and Business level stakeholders and ideally, experience in directing large projects that “help to drive alignment or adoption of common tools and technologies.”
Experience in financial services at a multinational is not mandatory, but would be “beneficial”.
Glassdoor reviews for Credit Suisse in London are largely positive, citing good work-life balance and a collegiate atmosphere; as a large and heavily regulated organisation, “death by committee” is also flagged. Regardless, as high-profile and challenging CISO roles go, it looks like an attractive one. It rates highly as a place to work, nabbing a Top 100 Employer rating by Stonewall in 2020 and a Times Top 50 Employers for Women award in 2019. Apply today. (As ever, salary and flexible working options will benefit from some robust negotiation.)
The company is a leading wealth manager with strong global investment banking capabilities founded in 1856. Headquartered in Zurich, Switzerland, it has more than 45,000 employees from over 150 nations."
