Senior Director, Global Resilience and Preparedness

Reports To Chief Information Security Officer (CISO)

Job Summary

GLG is seeking a strategic and proactive Director, Global Resilience and Preparedness to lead and mature our newly established Enterprise Resilience, Business Continuity, and Disaster Recovery (ER-BCDR) Program. This will be based on site in our London office.

This role is accountable for protecting GLG’s critical operations, proprietary technology platform, expert network, and reputation for compliance against disruptive incidents. The successful candidate will transition the organization from a reactive response posture to a state of prevention-first resilience, embedding robust planning, testing, and continuous improvement into the DNA of the company.

This role requires a unique blend of technical knowledge (IT Disaster Recovery), business acumen (Business Continuity), governance, and advanced risk analysis techniques (Red Team Thinking, Pre-mortem analysis).

Key Responsibilities

I. Program Governance and Strategy (Prevent)

· Program Leadership: Serve as the functional leader of the ER-BCDR Program, ensuring alignment with the goals set forth in the Program Charter and the Executive Steering Committee.

· Proactive Threat Modeling: Institutionalize and lead advanced preventive analysis techniques, including Pre-mortem workshops for major platform launches and Red Team exercises to challenge core security, compliance, and operational controls.

· Business Impact Analysis (BIA): Oversee the annual BIA process across all global business units to accurately define, document, and maintain criticality tiers, Recovery Time Objectives (RTOs), and Recovery Point Objectives (RPOs).

· Risk & Mitigation Tracking: Maintain a central register of resilience risks and track mitigation efforts by technology and business owners to completion.

II. Business Continuity and Disaster Recovery (Recover)

· BCP Management: Direct the development, review, and maintenance of comprehensive Business Continuity Plans (BCPs) for all critical operational and client-facing functions globally.

· DR Alignment: Partner closely with the Chief Technology Officer and IT Engineering teams to ensure that technical Disaster Recovery (DR) solutions are designed, deployed, and validated to meet defined business RTOs/RPOs.

· Supply Chain Resilience: Assess and mitigate risks posed by critical third-party vendors, particularly those supporting the core expert matching and compliance platforms.

III. Incident and Crisis Management (Respond)

· Crisis Playbook Ownership: Maintain and regularly test the overarching Incident and Crisis Management Plan (CMP), defining clear command, control, and communication protocols for executive leadership during a crisis.

· Simulation and Testing: Develop and manage a rigorous, multi-year testing schedule, including quarterly tabletop exercises with leadership and annual, full-scale functional failover tests of the core technology platform.

· Post-Incident Learning: Lead post-incident reviews (PIRs) for all major disruptions, ensuring lessons learned are documented, and corrective actions are assigned and tracked to improve future resilience.

IV. Culture and Reporting (Adapt)

· Stakeholder Engagement: Act as the primary interface for the Enterprise Resilience Steering Committee, presenting program health, risk summaries, and test results clearly and concisely to the CISO and C-suite.

· Training & Awareness: Develop and execute a global awareness program to embed resilience culture across the GLG employee base.

Required Qualifications & Experience

· Education: A background in Business Management, Computer Science, Risk Management, or a related field.

· Experience: 10+ years of progressive experience in IT, Business Operations, or Risk, with at least 5 years specifically leading or directing a global Enterprise Resilience, BCP, or DR program, preferably in a high-tech or financial services environment.

· Certifications (Preferred): Certified Business Continuity Professional (CBCP), Master Business Continuity Professional (MBCP), Red Team Coach, or similar certifications (e.g., ISO 22301 Lead Implementer).

· Technical Acumen: Strong understanding of cloud architectures, data redundancy techniques, cybersecurity principles, and how they relate to DR strategies (essential for partnering with the CTO).

· Expertise in Proactive Risk: Demonstrated experience implementing and utilizing advanced risk modeling or prevention techniques (e.g., Pre-mortems, Red Team simulations, FMEA).

Personal Attributes

· Strategic Thinker: Ability to translate complex technical risks into clear business impacts and strategic priorities for executive decision-making.

· Exceptional Communicator: Highly effective verbal and written communication skills, capable of presenting persuasive arguments to C-level executives and facilitating cross-functional workshops.

· Natural Leader: Proven ability to lead through influence, motivate cross-functional teams, and maintain composure and clarity in high-pressure, crisis situations.

· Detail-Oriented: Meticulous approach to documentation, testing, and regulatory compliance requirements.