Business Information Security Officer (BISO)

at  Optiver

WHO WE ARE

Optiver is a global market maker founded in Amsterdam, with offices in London, Chicago, Austin, New York, Sydney, Shanghai, Hong Kong, Singapore, Taipei and Mumbai. Established in 1986, today we are a leading liquidity provider, with close to 2,000 employees in offices around the world, united in our commitment to improve the market through competitive pricing, execution and risk management. By providing liquidity on multiple exchanges across the world in various financial instruments we participate in the safeguarding of healthy and efficient markets. We provide liquidity to financial markets using our own capital, at our own risk, trading a wide range of products: listed derivatives, cash equities, ETFs, bonds and foreign currencies.
Optiver’s Sydney office is one of the primary players within Asian markets, trading a range of products. Established in 1996, we’re an active participant on the Hong Kong, Korea, Singapore, Taiwan and Japan exchanges, and act as Optiver’s APAC head office.

Optiver is looking for a Business Information Security Officer to join our continual effort to evolve and strengthen our security posture.
As a member of our InfoSec team, you will champion Cybersecurity awareness and best practices throughout the organization, and partner with your global team to contribute to Optiver’s information security vision, program, and control framework. You will collaborate with the business to drive a culture of mindfulness while supporting the ability to move and innovate rapidly.

You’ll be passionate about proactive threat prevention and continuously thinking of practical ways to make doing the right thing easier and the wrong thing harder. You’ll stay abreast of developments and opportunities to learn from the industry and apply those lessons to our own practice. You’ll work well in close partnership with a globally distributed team, and couple an appreciation of analysis with a bias for action. Other responsibilities:

• Help establish security policies, procedures, and guidelines on a variety of information security controls
• Analyse source system data, existing data models, and profiling data to uncover additional security insights not inherently visible
• Assess surface security risks and propose ideas, and recommendations to mitigate threats
• Prepare dashboards and technical reports by collecting, analysing and summarising information and trends.
• Provide support to the Global SecOps function in the planning, deployment, and execution of the security business plan
• Act as a liaison to the business and IT groups and assist them in the implementation of data security, compliance requirements, and information security technologies.
• Partner with the enterprise architecture team to create, publish, and continuously improve the information security architecture for the enterprise
• Identify regional information security issues and gaps with the enterprise information security policies, standards, and procedures among employees, contractors, alliances, and other third parties
• Coordinate, support, track, and challenge regional implementation of global requirements
• Map regional legal and regulatory requirements and developments onto global policies/procedures and make suggestions where needed
• Coordinate the execution of security governance and assessment control initiatives and Cybersecurity Awareness Programs, and assist with implementation where needed
• Perform administrative and reporting duties during crisis management response.
• Regionally track all legal requirements, regulatory requirements, and developments, and apply to global policies and procedures and suggest changes where needed
• Serve as the regional point of contact for information security.
• Execute a robust Cyber Security communications plan
• Develop and Maintain executive level presentations