Overview
We are seeking an experienced Chief Information Security Officer (CISO) to lead the organization's First Line of Defence (1LOD) cybersecurity function within a regulated Financial Institution. The successful candidate will be responsible for defining and executing the enterprise cybersecurity strategy, strengthening cyber resilience, and ensuring the effectiveness of security governance, security engineering, and security operations.
This role requires a hands-on and strategic leader with extensive experience working within highly regulated financial services environments and engaging with senior executives, regulators, and Board-level stakeholders.
Key Responsibilities
Cybersecurity Governance (First Line of Defence)
Lead the enterprise cybersecurity function as the First Line of Defence (1LOD).
Develop and implement cybersecurity strategies, policies, standards, and governance frameworks aligned with business objectives and regulatory expectations.
Own cybersecurity risk management and control implementation across the organization.
Provide strategic cybersecurity advisory to executive management and Board Committees.
Ensure compliance with regulatory requirements and industry best practices.
Security Engineering
Lead the design, implementation, and continual enhancement of enterprise security architecture and security controls.
Oversee security technologies including Identity & Access Management (IAM/PAM), cloud security, endpoint protection, network security, data protection, email security, vulnerability management, and application security.
Embed security-by-design principles into technology and digital transformation initiatives.
Drive security engineering roadmaps to strengthen the organization's overall security posture.
Security Operations (SOC)
Provide executive oversight of the Security Operations Centre (SOC), including threat detection, incident response, threat intelligence, security monitoring, and cyber resilience.
Ensure effective cyber incident management, forensic investigations, and recovery processes.
Oversee vulnerability management, penetration testing, red team exercises, and continuous security monitoring.
Drive continuous improvement of SOC capabilities and operational effectiveness.
Risk, Regulatory & Audit
Lead engagements with regulators, internal audit, and external auditors on cybersecurity matters.
Ensure compliance with applicable financial industry regulations and security standards.
Manage regulatory inspections, audit reviews, and remediation programmes.
Establish cybersecurity metrics, reporting, and governance for executive management and Board reporting.
Leadership & Stakeholder Management
Lead and develop a high-performing cybersecurity organization.
Partner closely with Technology, Risk, Compliance, Legal, Operations, and business stakeholders to deliver secure business outcomes.
Present cybersecurity strategy, risk posture, and key initiatives to Executive Management and Board Committees.
Drive a strong cyber risk culture across the organization.
Mandatory Requirements
15+ years of cybersecurity experience within a Financial Institution (Banking, Insurance, Capital Markets, or other regulated financial services).
Proven experience leading a First Line of Defence (1LOD) Cybersecurity function.
Strong expertise across all three core cybersecurity pillars:
- Security Governance
- Security Engineering
- Security Operations Centre (SOC)
Demonstrated experience developing and implementing enterprise cybersecurity strategies and governance frameworks.
Strong understanding of cyber risk management, technology risk, and regulatory requirements within the financial services sector.
Experience engaging with regulators, Board Committees, Executive Management, and Internal Audit.
Proven leadership experience managing enterprise cybersecurity teams and large-scale security transformation initiatives.
Excellent stakeholder management, communication, and executive presentation skills.
Preferred Qualifications
Bachelor's degree in Computer Science, Information Security, Cybersecurity, or a related discipline.
Professional certifications such as CISSP, CISM, CISA, CRISC, CCSP, or equivalent.
Experience leading cloud security, cyber resilience, security transformation, and enterprise security modernization initiatives.
Strong knowledge of industry frameworks such as NIST, ISO 27001, CIS Controls, MITRE ATT&CK, and relevant financial regulatory requirements.
Interested applicants, please contact Angelica at [email protected] for a confidential discussion.
EA License no.: 16S8066 I Reg no.: R1110125
Only shortlisted applicants will be notified.
CHARTERHOUSE PTE. LTD.
CHARTERHOUSE PTE. LTD. Charterhouse is a boutique executive search firm with footprints in Asia, Australasia and the Middle East. We offer professional and bespoke contingency and retained search services across a variety of industrial sectors. Recruitment is a people-focused business – our su...
Read more about the companyCopyright © 2026 Grabjobs Pte.Ltd. All Rights Reserved.