Overview

Our client is seeking an experienced Cybersecurity leader to drive the organisation’s security strategy, operations, and governance across payments and transit technology platforms. The role will be responsible for safeguarding sensitive financial and customer data while ensuring compliance with national regulations and global security standards.

Key Responsibilities

• Cybersecurity Strategy & Governance
• Develop and execute the enterprise-wide cybersecurity strategy aligned with organisational goals, regulatory requirements, and industry best practices.
• Establish security governance frameworks, policies, and standards to protect critical infrastructure and sensitive data.
• Lead risk assessments, threat modelling, and security posture reviews across platforms.
• Operations & Incident Response
• Oversee Security Operations Centre (SOC), including threat monitoring, detection, and incident response.
• Drive root cause analysis and remediation of security incidents and vulnerabilities.
• Manage identity and access management, encryption, and endpoint protection.
• Cloud, Network & Application Security
• Ensure secure design, deployment, and operations of hybrid cloud infrastructure, APIs, and payment gateways.
• Partner with technology teams to embed DevSecOps practices, penetration testing, and secure coding.
• Oversee security of enterprise networks, data centres, and OT/IoT systems linked to transport operations.
• Compliance & Audit
• Ensure adherence to regulatory requirements (e.g., MAS TRM, PDPA, PCI-DSS, ISO 27001, NIST).
• Serve as the liaison with regulators, auditors, and external stakeholders on cybersecurity matters.
• Implement continuous monitoring, reporting, and improvements for compliance readiness.
• Leadership & Stakeholder Engagement
• Lead, mentor, and develop a cybersecurity team covering governance, engineering, and operations.
• Partner with business units, technology leaders, and external vendors to align security initiatives with strategic priorities.
• Provide regular updates to senior management and the Board on security risks and mitigation strategies.

Requirements

• Bachelor’s degree in Computer Science, Information Security, or related discipline; advanced degree preferred.
• 12+ years of progressive experience in cybersecurity, including at least 5 years in a senior leadership role.
• Strong knowledge of cloud security (Azure, AWS, or equivalent), payments infrastructure, and enterprise network defence.
• Proven experience in regulatory compliance and audit management within financial services, payments, or critical infrastructure sectors.
• Industry certifications such as CISSP, CISM, CISA, or equivalent required.
• Exceptional communication and stakeholder management skills, with ability to influence at C-suite and Board level.
• Track record in building high-performing security teams and driving transformation.