Western Asset’s information security program employs a top down and bottom up process to manage the information security risks to the Firm. The information security program leverages industry accepted guidelines of the International Standards Organization (ISO/IEC) 27001/27002 as well as the National Institute of Standards and Technology (NIST) Cybersecurity Framework.
A successful candidate will be an evangelist for the security program able to translate requirements and security concepts into language meaningful to various audiences, including business and technical leaders. Working with various stakeholders to meet clear objectives and metrics, the candidate must be able to approach application security from the perspective of risk management, based on an in-depth understanding of the company’s application portfolio and their use in the business. They must possess strong leadership skills and be effective interacting with highly technical individuals while demonstrating the ability to influence decision-making processes at all levels of the organization.
As the owner of the application security program you will be responsible for:
Required skills for this position: