Janus Henderson Investors Deputy Chief Information Security Officer in London, United Kingdom

Janus Henderson Global Investors is a leading independent global asset manager, dedicated to delivering the best outcomes for clients through a broad range of actively managed funds.

We provide our institutional, retail and high net-worth individuals with access to skilled investment professionals representing a broad range of asset classes including, equities, fixed income, multi asset and alternatives.

We are a team of independent thinkers who work tirelessly to help our clients achieve their goals – and we do it by fostering an energetic and collaborative culture that ensures our people love the place they work.

Headquartered in London, Janus Henderson is a truly global asset manager with a diverse geographic footprint, managing assets from 27 offices globally and employing more than 2,000 staff.

Title: Deputy Chief Information Security Officer

The Company

Janus Henderson Investors is a leading independent global asset manager, dedicated to delivering the best outcomes for clients through a highly diversified range of actively-managed products.

We support our individual and institutional investors across a range of products, encompassing equities, fixed income, multi-asset and alternatives.

We are a team of independent and innovative thinkers who work tirelessly to help our clients achieve their goals – and we do it by fostering an energetic and collaborative culture that ensures our people love the place they work.

Janus Henderson is a truly global asset manager with US$371.9bn1 of assets under management. We have a diverse geographic footprint, employing over 2,000 staff in 27 office locations globally. Headquartered in London, we are dual-listed on the New York Stock Exchange and the Australian Securities Exchange.

1 Janus Henderson pro-forma AUM as at 31 March 2018

Overview of the Role

The Deputy CISO is responsible for managing Information Security operations within the European region and coordinating with other Information Security teams to support security operations within Janus Henderson Investors.

The Deputy CISO will support the Chief Information Security Officer who is based in Denver, to ensure controls are designed and operating effectively such that Information Risk is appropriately managed and is commensurate with organisation’s risk appetite.

The role must interact directly with boards and clients and will work with the Chief Information Security Officer to define Information Security strategy to support company goals.

Duties and Responsibilities

  • Leads Information Risk and Cyber Security organisation under the direction of the CISO, representing the organisation within the London headquarters.

  • Operating in a key advisory role for both IT and business functions. This will involve communicating with non-technical audiences on Information Security concepts and risks

  • Articulation of Information Security risks to senior stakeholders, committees, and Boards including proposed initiatives designed to mitigate these risks

  • Directly work with other Security Services teams to deliver a comprehensive global framework.

  • Acting as a key participant and influencer within all Information Security relevant committees, forums and groups

  • Assisting with budget management, planning and requirements submission

  • Oversight and governance of Information Security projects, initiatives and related activities

  • Liaising with Legal, Compliance and Data Privacy, Business Continuity and IT Risk functions to ensure that all relevant legislative and regulatory requirements are acknowledged and adhered to

  • Management and communication of Information Security Policies and Incident Response procedures

  • Production and delivery of Information Security focused management information (MI)

  • Design, delivery and development of Information Security awareness campaigns

  • Management of the Information Security Team in the delivery of:

  • Information Security as a strategic business enabler

  • Threat Intelligence to understand the current security landscape

  • Advice, oversight and governance for IT and business change

  • Information Security Awareness and Education

  • Vulnerability Management Programme

  • Management Information

  • Third Party Assurance

  • Project Requirements Definition

  • Audit Support (internal, external and client led)

Other Functions

Assumes additional duties as assigned

Supervisory Responsibilities

  • Manage an Information Security Analyst team of 2 individuals. This will involve giving feedback, facilitating reviews and performance management

Technical Skills and Qualifications

  • Bachelor’s Degree in Computer Science or related field

  • Significant previous Information Security experience required

  • Experience of communication protocols, a sound grasp of integrated, highly fault tolerant, business critical, complex server / network environments and architecture

  • Experience in securing software that has been built by in-house development teams

  • Broad and up-to-date knowledge of:

  • Global Security Frameworks (ISO, NIST)

  • Regulatory Frameworks including GDPR, Sarbanes-Oxley and Financial Conduct Authority recommendations

  • Vulnerability Management

  • Security Incident Management & Response

  • Threat Intelligence

  • Microsoft client and server operating environments

  • Active Directory and Group Policy

  • Cloud Security

  • Digital Rights Management / Information Rights Management

  • Data Classification/Data Loss Prevention technologies

  • Mobile Device Management (MDM) & Mobile Application Management (MAM)

  • Security Incident & Event Management (SIEM)

  • Traditional and sophisticated Malware Protection technologies

  • Secure web gateway and web proxy solutions

Ongoing competence in the role to be assessed by:

  • Annual Performance Appraisal

  • Completion of all assigned Compliance training

  • Peer Feedback

  • Outcome of Audits

  • Board, Client and Stakeholder Engagement

  • Control Frameworks and Standards compliance including ISO 27001

  • Integrating Risk Management into Information Security processes and change

  • IT control gap analysis and improvement

  • Operating in a key advisory role for both IT and business functions

Competencies Required

  • Excellent written and verbal communication skills

  • Ability to work effectively with senior stakeholders

  • Attention to detail and commitment to quality

  • Excellent interpersonal skills, with the ability to build and develop relationships

  • Ability to work effectively under pressure

  • Ability to clearly articulate risk

  • Ability to manage and lead a team 2 to 3 individuals

Compliance Requirements

At a minimum the role requires the individual to:

  • Place the interest of Janus Henderson’s Clients first and always act in accordance with TCF (Treating Customers Fairly) principles

  • Understand and comply with any federal, state, and foreign laws and regulations applicable for the role, and seeking the guidance of Compliance if this is unclear at any time

  • Understand and comply with all relevant Janus Henderson policies applicable for the role, and seeking the guidance of the relevant policy owner if this is unclear at any time.The individual in the role is ultimately accountable for his/her own actions and is responsible for seeking further information on any or all of the above as necessary.

Janus Henderson Investors (including its subsidiaries) will not maintain existing or sponsor new industry registrations or licenses where not supported by an employee’s job functions (as determined by Janus Henderson Investors at its sole discretion).

All applicants must be willing to comply with the provisions of Janus Henderson Investors' Investment Advisory Code of Ethics related to personal securities activities and other disclosure and certification requirements, including past political contributions and political activities. Applicants’ past political contributions or activity may impact applicants’ eligibility for this position. Janus Henderson Investors is an equal opportunity / Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status. All applications are subject to background checks.