Monex Europe
We offer bespoke FX services aimed at corporate clients, providing solutions to manage foreign exchange risk and international payments.
We are Monex, a specialist in commercial foreign exchange. We offer a range of FX services aimed at corporate and institutional clients to manage foreign exchange exposure and international payments. Our team of experts provides personalized and proactive service, helping clients execute thoughtful FX strategies tailored to their specific business needs.
As part of the Monex SAB de CV financial group, we support over 70,200 clients worldwide, offering local expertise in various regions including the UK, Luxembourg, Canada, and Singapore. Our goal is to empower clients to make better-informed business decisions in a fast-moving and volatile market.
Department Overview
The Information Technology (IT) department is responsible for all technology development and operations across the company.
Job Overview
As the Head of Information Security you will lead and oversee all aspects of the organization's information security strategy, ensuring the protection of sensitive data, transactions, and systems.
This role requires a strong leadership presence, a deep understanding of IT Security, regulatory compliance and expertise in both technical and strategic security measures.
Key Responsibilities & Accountabilities
* 8-10 years of experience in Information Security or Cybersecurity roles, with at least 5 years in a managerial or leadership position.
* Track record of leading security teams and managing cross-functional collaboration to mitigate security risks.
* Developing and implementing security policies and incident response plans at the enterprise level.
* Cloud security and managing security in cloud environments (e.g., AWS, Azure).
* In-depth knowledge of compliance standards and regulations like GDPR, PCI DSS, MiFID II, and FCA requirements.
Business Knowledge / Technical Skills
Cybersecurity Fundamentals
* Ability to assess, identify, and mitigate security risks to the organization.
* Knowledge of current cyber threats, attack vectors, and emerging trends.
* Familiarity with industry standards like NIST, ISO 27001/27002, CIS Controls, SOC 2, GDPR, and PCI-DSS.
* Experience with IDS/IPS solutions to monitor network traffic and prevent breaches.
* Understanding of secure VPN configurations (IPsec, SSL VPNs, etc.).
Application Security
* Knowledge of integrating security at every stage of software development.
* Familiarity with web application security risks and mitigation techniques.
Identity and Access Management (IAM)
* Experience in managing identity systems to control access to systems.
* Familiarity with tools to monitor and control access to sensitive systems.
* Implementing policies that define user permissions based on roles.
* Understanding of securing cloud environments.
* Experience with cloud IAM features to manage user access securely.
* Experience with SIEM tools for real-time analysis and incident response.
* Ability to lead and manage security incidents, including containment, eradication, and post-incident analysis.
* Understanding of methods for investigating and analysing cyberattacks and breaches.
Data Protection & Encryption
* Expertise in configuring DLP solutions to protect sensitive data.
* Knowledge of encryption standards/tools.
* Ensuring proper backup solutions are in place, and understanding disaster recovery plans.
Systems / Knowledge Skills
* IT Security (ISO 27001)
* Cloud Technology (Azure, AWS, GCP)
* Agile (Scrum)
* IT Infrastructure (Servers, Network, Desktop)
* ITSM tools and processes
* Database Technologies
* Remote access
* Banking and counterparty systems
* MS Office Suite
* HR System – Workday
* Internally developed Enterprise system
If you like wild growth and working with happy, enthusiastic over-achievers, you'll enjoy your career with us!
#J-18808-Ljbffr