The Lead Information Security Officer for Asset Management is a key leadership role focused on establishing and managing the information security and cybersecurity risk posture within the Asset Management Private business. This position is essential for balancing commercial goals with security controls to protect client assets and data. The role involves overseeing teams responsible for Governance, Risk & Compliance, Application Security, and Product Security, while also guiding Technology Risk Officers embedded in various business verticals. The objective is to promote a proactive approach to risk management and ensure regulatory compliance across all initiatives.

• 3-5 years of progressive experience in Multi domain Information Security including vendor security and application security.
• Expert knowledge of global financial regulations such as SEC, FINRA, GDPR, and CCPA.
• Proven ability to build, mentor, and lead high-performing global teams of security professionals.
• Exceptional written and oral communication skills to articulate complex technical risks and solutions.
• Expertise in performing risk assessments and recommending effective mitigation strategies.
• Familiarity with leading security standards and frameworks such as NIST, OWASP, and PCI DSS.
• Expertise in Technology Risk data analytics and reviewing Software Development Lifecycle best practices.

• Work with internal application development teams to understand Information Security and Business Resiliency control requirements.
• Collaborate with global Technology Risk teams to develop and integrate security and resiliency controls.
• Communicate the impact of technology risks and provide risk assessment and advisory services.
• Assess existing applications for design-related security risks and assist in determining remediation steps.
• Provide guidance to engineering leadership on existing and emerging threats in web and mobile applications.
• Drive adoption of embedded application security controls as part of the Software Development Life Cycle.
• Contribute to the understanding and adoption of information security standards and tools.
• Develop customized security testing strategies to complement existing security testing programs.

• Employees at Goldman Sachs are often offered comprehensive benefits, including medical, dental, life and disability coverage, generous vacation and holidays, and robust wellness resources such as EAP counseling, medical advocacy, on-site/virtual health services, and fitness support. Financial perks typically include retirement savings programs, live financial education, education support, and wealth-creation opportunities through equity awards and select investment programs. Many locations also provide family benefits (childcare resources, parental and family leaves, adoption/surrogacy support) and flexible work options like part-time schedules, job sharing, telecommuting, and alternate hours.