Job Description

This position oversees info/cybersecurity strategy and planning for GLP’s global business. The focus will be on:

• Global information security strategy and planning
• Threat intelligence and analysis
• Information security policies, instructions and procedures
• International information security community management
• Management reporting
• Vendor management

• Responsible for global information security strategy based on industry benchmarks, market development and business driven risk analysis
• Support CISO for planning and managing information security team’s development, strategic projects and operations improvement initiatives
• Use threat intelligence and other smart solutions to oversee the threat landscape changes in order to justify the relevancy to GLP business and plan preventive initiatives at early stage
• Define group level/global information security policies and collaborate with respective business functions for instructions and procedures
• Establish and manage an international information security community with GLP in order to make sure for a consistent level of information security maturity and practices at each key locations
• Responsible for reporting information security status to key internal stakeholders and, upon request, to external investors
• Manage information security vendors including selection, commercial processes, and performance.

• Bachelor Degree of Information Security or Other Related Major
• Professional insights of global information security development trends and threat intelligence
• Professional analysis and presentation skills
• Professional consultancy skills for communications with business stakeholders
• Knowledge of Internet of Things (IoT) and Operations Technology (OT) related info security is highly preferred.
• Knowledge of China local cybersecurity related laws, regulations and standard. And GDPR in Europe. Extended knowledge of relevant laws in US, Japan and Singapore is a plus.
• Proven leadership and project management skills
• Ability to work independently with or without direction and/or supervision;
• Ability to prioritize and multitask in a complex environment;
• Ability to influence and communicate effectively with both technical and non-technical audiences, including senior business executives and managers;