Lead Information Security Officer - Financial Service

About the company
A well‑established international financial institution is seeking an Lead Information Security Officer to support and strengthen its regional cybersecurity and governance framework across Asia.
Working within the CIO organization, this role plays a key part in ensuring that information security standards, controls, and processes are effectively implemented and maintained across the region. The position works closely with both regional IT teams and global security leadership, and reports directly to the Head of Information Systems Security (CISO) based in Europe.
This role will also provide backup support to the regional IT Officer based in Singapore, contributing to broader IT governance and operational coordination when required.

About the role

• Support the rollout and ongoing oversight of the organization’s information security framework across the Asia region.
• Ensure the confidentiality, integrity, and availability of systems and data through appropriate security controls and monitoring.
• Partner with global security teams to implement group-level security policies, standards, and initiatives in regional offices.
• Maintain and update documentation relating to information security policies, data governance, and operational procedures.
• Lead or coordinate the investigation and reporting of security incidents, ensuring proper escalation and remediation.
• Work with internal stakeholders to identify and assess information security risks, particularly for technology projects and system changes.
• Perform oversight of third‑party service providers, including periodic reviews of vendor security controls and business continuity capabilities.
• Monitor and track security remediation plans across entities as part of second-line-of-defense governance activities.
• Provide regular reporting and status updates on security posture to regional leadership and global security management.
• Support internal audits, regulatory reviews, and compliance assessments related to cybersecurity and information security.
• Contribute to the design, testing, and maintenance of business continuity and disaster recovery plans in line with regulatory and global standards.
• Promote security awareness and best practices by advising employees, project teams, and operational stakeholders.
• Collaborate with the regional IT team, and act as backup to the other country when necessary.

Requirments:

• 8+ years of professional experience in information security, ideally within banking or financial services environments.
• Strong knowledge of information security frameworks, governance practices, and regulatory expectations.
• Professional security certifications such as CISSP, CISA, CSX, or similar are highly preferred.
• Experience in security risk assessments, internal controls, and audit coordination.
• Good understanding of general IT infrastructure and security technologies.
• Strong analytical mindset with the ability to identify risks and implement practical solutions.
• Able to manage multiple initiatives and stakeholders simultaneously.
• Excellent collaboration and communication skills.
• Self-driven, adaptable, and comfortable working in an international and cross‑regional environment.

If you believe you have the right skills, attitude and experience please click 'apply now' below and upload your resume. Alternatively, for a confidential chat, please contact Kevin Ng by applying directly to email [email protected] or reach out at +852 3901 8736.

We apologies that only shortlisted candidates will be contacted.