Chief Information Security Officer (CISO)

Are you an experienced cybersecurity leader with a proven track record in cyber defense, incident response, security engineering and security architecture? We are seeking a visionary Chief Information Security Officer (CISO) who will be responsible for building and leading a world-class cybersecurity function for our client's organization. You will shape and strengthen the cybersecurity posture of the enterprise by building a regional technical team and establishing capabilities from the ground up. As the CISO, you will play a critical role in crafting and executing a comprehensive cybersecurity strategy that spans defense, operations, incident response, architecture, and engineering. This is a hands-on leadership position that will require both strategic oversight and tactical execution to ensure the resilience of our client's IT infrastructure.

Key Responsibilities:

• Build and Lead a Regional Cybersecurity Team

Establish and lead a regional team of cybersecurity professionals, developing the technical capabilities required to defend against emerging threats. You will hire, mentor, and empower security talent to ensure that the firm's cybersecurity operations are world-class and well-equipped to handle the challenges ahead.

• Cyber Defense and Strategy Development

Design and implement a comprehensive cyber defense strategy to protect critical systems and infrastructure. Ensure that the strategy evolves to meet emerging threats and business needs. You will be responsible for creating proactive defense measures, including threat intelligence, network security, and vulnerability management.

• Incident Response Leadership

Build and refine an incident response framework to swiftly detect, contain, and mitigate security breaches. Lead efforts to develop and manage a skilled incident response team, ensuring rapid resolution and post-incident analysis. You will oversee the identification of security incidents and ensure coordinated responses with key stakeholders, minimizing impact and reducing recovery time.

• Cybersecurity Architecture and Engineering

Spearhead the design and implementation of security architecture and engineering practices across the organization. Ensure that security principles are integrated at every layer of our IT and business systems. You will guide technical teams to build resilient systems, leveraging both on-premises and cloud-based security solutions to protect the enterprise.

• Security Operations and Monitoring

Oversee the security operations center (SOC), establishing capabilities to detect and respond to threats in real-time. You will be responsible for the continuous improvement of the security monitoring and detection systems, leveraging automation and AI tools to enhance threat visibility and response times.

• Develop Security Processes and Frameworks

Define and implement security processes, frameworks, and standards in alignment with industry best practices and regulatory requirements. Build out the necessary policies and procedures for risk management, compliance, and audit readiness. Ensure ongoing governance and adherence to established security standards across the organization.

• Collaboration with Cross-Functional Teams

Work closely with other business units, including engineering, IT, compliance, and operations, to ensure security is integrated into every aspect of the company's operations. Advocate for the importance of security in product development, system architecture, and day-to-day business functions.

• Continuous Improvement and Innovation

Stay ahead of the curve by researching new threats, technologies, and security practices. Lead continuous innovation to enhance cybersecurity defenses and response capabilities, ensuring the organization remains resilient against an ever-evolving threat landscape.

Requirements:

• Extensive experience in building and leading high-performance cybersecurity teams from the ground up, ideally on a regional or global scale.
• In-depth knowledge of cybersecurity architecture, incident response, and security operations, with experience in managing complex, multi-layered environments.
• Strong expertise in critical security technologies and practices, including firewalls, encryption, IDS/IPS, endpoint protection, SIEM, and cloud security.
• Proven track record in leading incident response teams, managing security breaches, and minimizing impact during security events.
• Familiarity with major cybersecurity frameworks and compliance standards, with hands-on experience implementing them at an enterprise level.
• Ability to develop and communicate a long-term cybersecurity vision while driving day-to-day execution of security programs.

To apply:

If you're interested to apply or find out more, please share across your CV or reach out to Chen Yi at [email protected] for a discussion. Due to anticipated high volume of applications, we regret to inform that only shortlisted candidates will be notified.

Reg: R1876389

Lic: 16S8060