I.T Security Head

Job Description : HEAD OF IT SECURITY MALAYSIA ( EXPATS) You will be responsible for driving the implementation of the cybersecurity strategy and framework as well as leading the company’s security efforts. Lead the company’s security efforts, expenditure and capital investment to achieve the company’s cyber-resilience vision and desired security posture Take charge of the implementation of the company’s cybersecurity strategy and framework, while working towards advancing the company’s cybersecurity posture proactively and report on cybersecurity performance Develop a cybersecurity threat model/landscape to help guide resiliency and response Oversee reporting pertaining to security management and review the thresholds to reflect the current in cyber threats Develop strategies to handle security incidents by establishing a comprehensive suite of incident response processes, reporting templates and rules, and overseeing the investigation of reported security breaches Perform IT security risk assessments, monitor security vulnerabilities and hacking threats in network and host systems To succeed in this role, you will need to be a high-potential and motivated individual who goes the extra mile to make a difference in insurance technologies and ensure that risks affecting the business are adequately covered. Minimum of 15 years’ experience in roles involving information security, IT governance, IT management and/or major programme management Degree or equivalent, in Information Technology, Computer Science or any related field OR professional certification such as CISM, CISA, CSXP, CISSP, CREST, GPEN or equivalent Familiarity of the regulatory frameworks and compliance requirements associated with financial services and thorough understanding of end-to-end IT operations and how IT interfaces with business, risk management and compliance processes and IT security Inform, persuade, and teach stakeholders, staffs and leadership to enable effective information security activities and processes in line with the cyber readiness programme Relevant experience in managing cyber risk in financial market infrastructures, critical national infrastructure, military, security intelligence or equivalent Extensive working experience on best practice standards for cyber resilience Strong technical aptitude, excellent control concept and ability to assess risks Good written and verbal communication skills and able to build relationship with senior management and stakeholders

---