Group Chief Information Security Officer (CISO)

We are seeking a hands-on Group Chief Information Security Officer (CISO) to oversee the organization’s cybersecurity and technology governance functions. This role is ideal for a candidate with a strong technical background in cybersecurity, security architecture, and cloud environments, who can proactively address business needs while ensuring robust security practices.

As the CISO, you will manage day-to-day security operations, develop frameworks, and collaborate with teams to implement security solutions that enable business objectives.

Key Responsibilities

Technology Governance

• Establish and enforce security policies, standards, and procedures to ensure compliance with regulatory requirements.
• Conduct regular risk assessments and gap analyses, implementing corrective measures as needed.
• Provide input on technology decisions to ensure security and compliance are embedded from the start.

Security Architecture and Cloud

• Design and implement security solutions for on-premises, hybrid, and cloud environments (e.g., AWS, Azure, GCP).
• Ensure the organization’s cloud adoption aligns with security best practices and compliance standards.
• Work closely with IT teams to integrate security into system architectures and deployments.

Collaboration and Enablement

• Partner with business units to understand their needs and implement security solutions that support operations.
• Act as an enabler, balancing security controls with business efficiency.
• Collaborate with external vendors, consultants, and auditors to ensure alignment with industry standards.

Training and Awareness

• Conduct security awareness training for employees to foster a culture of security across the organization.
• Guide teams on secure coding, configuration, and operational practices.

Qualifications:

• Bachelor's or master's degree in cybersecurity, information technology, or a related field.
• Proven experience as a CISO or in a senior cybersecurity leadership role.
• Demonstrated success in building and leading information security functions from inception.
• Hands-on experience in cybersecurity operations, security architecture, and cloud environments.
• Strong knowledge of regulatory frameworks (e.g., ISO 27001, NIST, MAS TRM).
• Familiarity with tools and platforms for threat detection, vulnerability management, and cloud security.
• Strong understanding of global information security standards, regulations, and best practices.
• Excellent communication and stakeholder management abilities.

MORGAN MCKINLEY

EA Licence No: 11C5502

Registration No: R1106192