Janus Henderson Investors Deputy Chief Information Security Officer in London, United Kingdom
Janus Henderson Global Investors is a leading independent global asset manager, dedicated to delivering the best outcomes for clients through a broad range of actively managed funds.
We provide our institutional, retail and high net-worth individuals with access to skilled investment professionals representing a broad range of asset classes including, equities, fixed income, multi asset and alternatives.
We are a team of independent thinkers who work tirelessly to help our clients achieve their goals – and we do it by fostering an energetic and collaborative culture that ensures our people love the place they work.
Headquartered in London, Janus Henderson is a truly global asset manager with a diverse geographic footprint, managing assets from 27 offices globally and employing more than 2,000 staff.
Title: Deputy Chief Information Security Officer
Janus Henderson Investors is a leading independent global asset manager, dedicated to delivering the best outcomes for clients through a highly diversified range of actively-managed products.
We support our individual and institutional investors across a range of products, encompassing equities, fixed income, multi-asset and alternatives.
We are a team of independent and innovative thinkers who work tirelessly to help our clients achieve their goals – and we do it by fostering an energetic and collaborative culture that ensures our people love the place they work.
Janus Henderson is a truly global asset manager with US$371.9bn1 of assets under management. We have a diverse geographic footprint, employing over 2,000 staff in 27 office locations globally. Headquartered in London, we are dual-listed on the New York Stock Exchange and the Australian Securities Exchange.
1 Janus Henderson pro-forma AUM as at 31 March 2018
Overview of the Role
The Deputy CISO is responsible for managing Information Security operations within the European region and coordinating with other Information Security teams to support security operations within Janus Henderson Investors.
The Deputy CISO will support the Chief Information Security Officer who is based in Denver, to ensure controls are designed and operating effectively such that Information Risk is appropriately managed and is commensurate with organisation’s risk appetite.
The role must interact directly with boards and clients and will work with the Chief Information Security Officer to define Information Security strategy to support company goals.
Duties and Responsibilities
Leads Information Risk and Cyber Security organisation under the direction of the CISO, representing the organisation within the London headquarters.
Operating in a key advisory role for both IT and business functions. This will involve communicating with non-technical audiences on Information Security concepts and risks
Articulation of Information Security risks to senior stakeholders, committees, and Boards including proposed initiatives designed to mitigate these risks
Directly work with other Security Services teams to deliver a comprehensive global framework.
Acting as a key participant and influencer within all Information Security relevant committees, forums and groups
Assisting with budget management, planning and requirements submission
Oversight and governance of Information Security projects, initiatives and related activities
Liaising with Legal, Compliance and Data Privacy, Business Continuity and IT Risk functions to ensure that all relevant legislative and regulatory requirements are acknowledged and adhered to
Management and communication of Information Security Policies and Incident Response procedures
Production and delivery of Information Security focused management information (MI)
Design, delivery and development of Information Security awareness campaigns
Management of the Information Security Team in the delivery of:
Information Security as a strategic business enabler
Threat Intelligence to understand the current security landscape
Advice, oversight and governance for IT and business change
Information Security Awareness and Education
Vulnerability Management Programme
Third Party Assurance
Project Requirements Definition
Audit Support (internal, external and client led)
Assumes additional duties as assigned
- Manage an Information Security Analyst team of 2 individuals. This will involve giving feedback, facilitating reviews and performance management
Technical Skills and Qualifications
Bachelor’s Degree in Computer Science or related field
Significant previous Information Security experience required
Experience of communication protocols, a sound grasp of integrated, highly fault tolerant, business critical, complex server / network environments and architecture
Experience in securing software that has been built by in-house development teams
Broad and up-to-date knowledge of:
Global Security Frameworks (ISO, NIST)
Regulatory Frameworks including GDPR, Sarbanes-Oxley and Financial Conduct Authority recommendations
Security Incident Management & Response
Microsoft client and server operating environments
Active Directory and Group Policy
Digital Rights Management / Information Rights Management
Data Classification/Data Loss Prevention technologies
Mobile Device Management (MDM) & Mobile Application Management (MAM)
Security Incident & Event Management (SIEM)
Traditional and sophisticated Malware Protection technologies
Secure web gateway and web proxy solutions
Ongoing competence in the role to be assessed by:
Annual Performance Appraisal
Completion of all assigned Compliance training
Outcome of Audits
Board, Client and Stakeholder Engagement
Control Frameworks and Standards compliance including ISO 27001
Integrating Risk Management into Information Security processes and change
IT control gap analysis and improvement
Operating in a key advisory role for both IT and business functions
Excellent written and verbal communication skills
Ability to work effectively with senior stakeholders
Attention to detail and commitment to quality
Excellent interpersonal skills, with the ability to build and develop relationships
Ability to work effectively under pressure
Ability to clearly articulate risk
Ability to manage and lead a team 2 to 3 individuals
At a minimum the role requires the individual to:
Place the interest of Janus Henderson’s Clients first and always act in accordance with TCF (Treating Customers Fairly) principles
Understand and comply with any federal, state, and foreign laws and regulations applicable for the role, and seeking the guidance of Compliance if this is unclear at any time
Understand and comply with all relevant Janus Henderson policies applicable for the role, and seeking the guidance of the relevant policy owner if this is unclear at any time.The individual in the role is ultimately accountable for his/her own actions and is responsible for seeking further information on any or all of the above as necessary.
Janus Henderson Investors (including its subsidiaries) will not maintain existing or sponsor new industry registrations or licenses where not supported by an employee’s job functions (as determined by Janus Henderson Investors at its sole discretion).
All applicants must be willing to comply with the provisions of Janus Henderson Investors' Investment Advisory Code of Ethics related to personal securities activities and other disclosure and certification requirements, including past political contributions and political activities. Applicants’ past political contributions or activity may impact applicants’ eligibility for this position. Janus Henderson Investors is an equal opportunity / Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status. All applications are subject to background checks.