Listing Description

GLG’s Information Security team defines the cybersecurity strategy, develops the roadmap and implements technology tools, process and policy that preserve the confidentiality and integrity of our data and systems.  We are hiring a Chief Information Security Officer (CISO) who has a strong passion for cybersecurity excellence to lead a team that drives the Cybersecurity roadmap that protects the enterprise and meets our client’s requirements.

Reporting to the CIO, the CISO will be an evangelist and change agent to drive GLG’s Information Security modernization and transformation.  The CISO will lead an agile team of engineers and administrators that is laser focused on protecting our border networks, authentication services, risk management, and governance. The CISO will partner with cross functional stakeholders to set a strategy and bring the vision to life through implementing enterprise wide, best in class tools and governance policies. 

Specific responsibilities include (but are not limited to):

Strategic Leadership

• Develop and implement GLG’s information security strategy and vision.


• Collaborate with executive leadership to align security initiatives with business objectives.

Risk Management

• Identify, assess, and prioritize information security risks.


• Implement effective risk management strategies and controls to mitigate potential threats.

Security Audits and Assessments

• Conduct routine security assessments and audits to identify vulnerabilities.


• Implement corrective actions to address identified weaknesses.

Security Framework and Architecture

• Design, implement, and maintain a robust and scalable information security architecture, including policies, tools, and governance.


• Ensure that security measures are integrated into all aspects of the IT infrastructure.


• Drive the firm’s mission to achieve ISO27001 certification

Incident Response

• Develop and maintain an incident response plan to address security incidents promptly and efficiently.


• Lead investigations into security breaches and take appropriate corrective actions.

Compliance and Governance

• Stay abreast of relevant laws, regulations, and industry standards.


• Ensure compliance with applicable security standards and frameworks.

Security Awareness and Training

• Foster a culture of security awareness throughout the organization.


• Provide training and education to employees on security best practices.

Vendor Management

• Evaluate and manage relationships with third-party security vendors.


• Ensure that vendors adhere to security standards and contractual obligations.

Collaboration and Communication

• Communicate effectively with internal stakeholders, fostering a collaborative and secure environment.


• Build great partnerships with internal stakeholders and clients.

An ideal candidate will have the following:

• 15+ years of experience operating in an Information Security Leadership and/or CISO role


• Experience with developing, socializing and executing a security roadmap for the business


• Preferred experience with leading enterprise wide adoption and certification of a Security standard (NIST, ISO27001)


• Bachelor's or Master's degree in Information Security, Computer Science


• In-depth knowledge of information security principles and best practices


• Strong understanding of information security, data privacy laws, regulations, and standards


• Excellent leadership and communication skills.


• Industry certifications such as CISSP, CISM, or CISA are highly desirable.


• Clear vision of what “excellent” looks like for Information Security at GLG