Job Description

Your role is to build and provide a holistic, best-in-class approach to shaping, guiding, and educating the team around the design and development of robust cyber security processes. You\xe2\x80\x99ll need to understand and manage the business\xe2\x80\x99 appetite for risk: driving a practical, intuitive approach to security that works for the whole business but doesn\xe2\x80\x99t constrain its flair and spirit.

You\xe2\x80\x99ll also be responsible for imparting the value and importance of good cyber security practices\xe2\x80\x94and yes, you\xe2\x80\x99ll have to do it in a way that excites people about what it affords them\xe2\x80\x94allowing the business to focus on commercial growth safe in the knowledge that all is secure.

The position: Chief Information and Security Officer The responsibilities:

• The Chief Information and Security Officer will serve as the company\'s senior cybersecurity advisor, leading a team of professionals to defend the company from cyber-criminals by applying standards and policies relevant to 21st century threats. The role also includes ensuring that staff at all levels are aware of their responsibilities.

• The Chief Information and Security Officer will be responsible for further developing the enterprise-wide information security strategy that underpins and enables the company\'s growth ambitions and drives increased commercial success along with keeping the company secure through the protection of the confidentiality, integrity and availability of its information and assets.

• Chief Information and Security Officer will lead and further build a cybersecurity team that provides governance, consultancy and operations for the full range of information security capabilities, including threat and vulnerability management, security design, security assurance and incident response. They will create a secure by design culture, ensuring that security is architected into all the company\'s technical and business solutions.

• In addition to managing the delivery of a cybersecurity framework including defining and delivering policies, standards and guidelines (including ensuring staff at all levels are aware of their responsibilities), they will also be responsible for managing the delivery of an enterprise-wide incident management program including ensuring that there is an appropriate response plan in place for any incident which may affect the company.

• Manage business cybersecurity risks by building relationships with senior stakeholders and agreeing risk management identification and mitigation activity, during operations and projects.

• Collaborate with the wider group responsible for security inside and outside the business, including Group Security, Risk, HR, Information Access and Internal Audit. This includes acting as an expert advisor for the business on compliance matters related to information security.
  

Qualities we are looking out for:

• Outstanding stakeholder management skills combined with the ability to challenge and influence in a constructive manner

• A strategic thinker with experience of innovation, strategy development, and delivery drive

• A highly collaborative individual with practical and demonstrable experience in getting things done \xe2\x80\x93 particularly in a matrix and global organisation

• Innovative and creative, can develop original solutions to problems and explore new ways of thinking whilst remaining business and customer focused

• A high EQ, low-ego individual who is also resilient, task-focused and pragmatic with a tenacious approach.
  

We regret only shorlisted candidates will be contacted.

SPEARING EXECUTIVE SEARCH PTE LTD (EA license: 22S1195) Muhammad Mundzir (EA Registration: R22110088)