Chief Information Security Officer

We are looking for an experienced cybersecurity leader to oversee and strengthen enterprise security capabilities across a large-scale, complex technology environment undergoing significant digital transformation.

This role is suited for a senior security professional with strong technical depth across cybersecurity governance, security operations, cloud security, architecture review, and risk management. You will work closely with technology, engineering, infrastructure, and business stakeholders to drive secure-by-design practices and enhance organisational cyber resilience.

You will partner with cross-functional teams, leadership stakeholders, and external vendors to:

• Lead enterprise cybersecurity initiatives in support of digital transformation and technology modernisation efforts.
• Develop and implement cybersecurity strategies, policies, standards, and roadmaps aligned with organisational priorities.
• Drive threat-based risk assessments, risk mitigation planning, security monitoring, and reporting activities.
• Provide security advisory and governance support for technology projects and platform implementations.
• Enhance security posture through visibility and oversight of ICT assets, architectures, and cybersecurity operational practices.
• Develop and maintain incident response plans and playbooks, including conducting simulation exercises, workshops, and response drills.
• Lead and coordinate investigations and management of cybersecurity incidents.
• Provide recommendations on cybersecurity technologies, controls, and best practices aligned with enterprise and industry standards.
• Ensure secure-by-design principles are embedded across application development, infrastructure, and platform engineering practices.
• Support implementation and governance of DevSecOps practices, Infrastructure as Code (IaC), and secure CI/CD pipelines.
• Drive cybersecurity awareness and training initiatives across the organisation.

• Degree in Computer Science, Information Systems, Engineering, or a related technology discipline.
• At least 8-10 years of leadership experience in cybersecurity, information security, or related technology risk functions.
• Strong understanding of ICT operations, enterprise security governance, and the relationship between security, technology, and business operations.
• Experience working with cross-functional and multidisciplinary teams in complex enterprise environments.
• Hands-on experience with secure-by-design implementations, system architecture reviews, DevSecOps practices, IaC tools, and CI/CD security.
• Strong understanding of cloud service models (IaaS, PaaS, SaaS) and modern cloud-native architectures including containers, microservices, and serverless technologies.
• Familiarity with major cloud platforms such as AWS, Azure, and GCP, including native security services and identity/access management capabilities.
• Ability to identify and assess cybersecurity risks across both on-premises and cloud environments, including threats such as ransomware, insider threats, account compromise, vendor risks, and data leakage.
• Experience evaluating security controls and recommending appropriate mitigation strategies for cybersecurity and data protection risks.
• Strong awareness of emerging threats, technologies, and evolving cybersecurity trends.
• Good understanding of security compliance and governance requirements in enterprise environments.
• Strong communication and stakeholder management skills, including the ability to engage senior leadership on cybersecurity matters.
• CISSP certification is required; additional certifications such as CISM, CCSP, GCIH, or equivalent will be advantageous.
• Candidates should be proactive, collaborative, and comfortable operating in fast-paced transformation environments.

You will have the opportunity to play a key role in shaping and strengthening cybersecurity capabilities within a large-scale enterprise technology landscape.

For more information you can contact Norean Tan at [email protected]

We regret to inform you that only shortlisted candidates will be notified / contacted.

EA Registration No.: R1434118 - Tan Lee Ying, Norean

iKas International (Asia) Pte Ltd

ROC No.: 200914065E | EA License No.: 16S8086