Key Responsibilities:
- Define and execute the organization's cybersecurity and data protection strategy.
- Oversee all aspects of information security, including GRC, security operations, architecture, and incident response.
- Establish and drive a data privacy framework in compliance with PDPA, GDPR, and other global regulations.
- Serve as a trusted advisor to the Executive Leadership Team and Board on cyber risks and mitigation plans.
- Lead, grow, and mentor a high-performing security and privacy team.
- Develop strong relationships with regulators, auditors, technology partners, and internal stakeholders.
- Foster a culture of security awareness across the organization.
Requirements:
- 12+ years of progressive experience in cybersecurity, with at least 5 in a senior leadership or CISO role.
- Deep expertise in information security management, data privacy, and regulatory compliance (e.g., MAS TRM, ISO 27001, NIST).
- Proven experience working across enterprise IT environments, including cloud, on-premise, and hybrid models.
- Strong understanding of emerging threats and technologies, and the ability to translate risk into business impact.
- Exceptional leadership, communication, and stakeholder engagement skills.
- Relevant certifications (e.g., CISSP, CISM, CISA, CRISC) strongly preferred.
EA Licence No: 11C5502 | EAP Registration No: R1106192
