Compare your current skills to what this opportunity needs—we'll show you what you already have and what could strengthen your application.
Job Description
Deputy Chief Information Security Officer The TCW Group, Inc. remote work United States, California, Los Angeles 865 South Figueroa Street (Show on map) Jun 18, 2026 Deputy Chief Information Security Officer
Job Location(s) US-CA-Los Angeles Job
ID 2026-2261
Category Information Technology Department Engineering Solutions Type Regular Full-Time Position Summary Overview The Deputy Chief Information Security Officer is the senior operational security leader within Engineering Solutions, reporting to the CISO, Head of Security Driven Infrastructure. The role is responsible for driving security strategy, frameworks, and tooling into sustained, repeatable BAU operations across cloud, on-premises, and hybrid environments. The Information Security Lead leads the security team, drives cross-functional execution, and serves as Incident Commander during security events. This is a hands-on leadership role requiring deep practitioner expertise, strong executive presence, and the ability to maintain a collaborative culture while driving accountability and follow-through. Purpose The Deputy Chief Information Security Officer ensures TCW's security program translates into measurable operational outcomes. This role is responsible for maturing security capabilities, improving process discipline, and driving strategic initiatives through strong execution, project and program management, documentation, automation, and meaningful metrics. The ideal candidate combines technical depth, leadership presence, and a collaborative, no-ego style with the discipline to drive ownership and follow-through. Essential Duties Security Program Leadership & Operational Execution Lead the information security team as a player-coach, maintaining a collaborative, high-accountability culture
Drive security strategies, frameworks, and tooling into repeatable BAU operations with clear ownership, metrics, and follow-through
Lead cross-functional initiatives with engineering, infrastructure, legal, compliance, and business stakeholders
Serve as Incident Commander during security events and lead escalations, post-incident review, and operational improvement
Develop and present KPIs, metrics, risk updates, and program status to leadership Cloud, Infrastructure & Identity Security Lead and evolve TCW's cloud and hybrid security architecture across Azure, identity platforms, and enterprise infrastructure
Oversee CSPM, CNAPP, hardening baselines, configuration security, and Infrastructure-as-Code security controls
Drive Zero Trust and identity security across human and non-human identities, including Conditional Access, federation, and least privilege
Ensure security controls evolve with cloud migration and broader infrastructure modernization Threat Detection, Incident Response & Vulnerability Management Lead threat detection, incident response, and threat operations, including hands-on investigation when needed
Own the vulnerability management lifecycle, including prioritization, remediation accountability, exceptions, and reporting
Build and mature playbooks, SOPs, automation, and continuous monitoring capabilities
Improve analyst efficiency and response quality through automation, telemetry, and operational tooling Application, Data & AI Security Lead and mature application security, secure development, and software supply chain risk management practices
Lead data protection, DLP, insider risk, and data governance controls in partnership with legal and compliance
Establish and enforce security governance for AI and Generative AI adoption across the firm
Govern the secure use of AI-assisted development and productivity tools through practical controls and clear risk guidance Governance, Risk & Partnership Manage security risk and support compliance with regulatory expectations applicable to financial services
Partner with cross-functional teams to assess risk, onboard solutions, and ensure security controls are in place before production deployment
Maintain strong relationships with vendors, industry peers, and the broader security community
Develop documentation, standards, playbooks, and governance artifacts that support durability and institutional knowledge Required Qualifications Collaborative, no-ego leadership style with the ability to maintain culture while driving accountability and execution
Strong executive presence and communication skills across technical, business, client, regulatory, and legal audiences
Strong cross-functional leadership and project/program management discipline
Strategic and data-driven problem-solving, with the ability to prioritize effectively in a fast-paced environment
Operational mindset with a bias toward execution, documentation, and measurable outcomes Professional Skills Qualifications Experience in financial services or asset management
Relevant industry certifications such as CISSP, CCSP, CISM, AZ-500, or SC-200
Familiarity with Infrastructure-as-Code and DevSecOps practices
Experience supporting enterprise cloud migration and secure adoption of AI-assisted tools
Estimated Compensation:
Base Salary:
For CA based position, the base salary range is $225k - $270k. This is an anticipated range only.
Other Compensation:
Eligible to be considered for an annual discretionary bonus
Benefits:
Eligible for TCW's comprehensive benefits package. See more information here. This role requires candidates to work from a TCW office a minimum of four days a week. Flexibility for remote work is offered on one day, depending on business needs. #LI-TG1
