Job Description
You will be joining a fast-growing practice of security professionals with a well-established footprint in the APAC region, supporting clients who operate in region.
Responsibilities
- Develop and maintain a cybersecurity strategy that aligns to business strategy.
- Effectively communicate cybersecurity related activities to senior management.
- Work with stakeholders to develop cybersecurity policies and associated documentation in alignment with the organisation's cybersecurity strategy.
- Ensure that cybersecurity requirements for IT are aligned with the firms cybersecurity strategy.
- Develop and customise cyber threat landscapes.
- Promote and demonstrate the value of cybersecurity to stakeholders within an organisation.
- Review the effectiveness of the organisation's cybersecurity controls against its strategic goals.
- Brief senior management on cybersecurity controls required to protect the organisation.
- Ensure that protection and detection capabilities are aligned with the organisation's cybersecurity strategy, policies and other related documentation
- Obtain resources to develop and implement effective processes to meet strategic cybersecurity goals
- Ensure that cybersecurity architecture design is aligned with the organisation's cybersecurity strategy
- Review the effectiveness of the organisation's cybersecurity controls against its strategic goals
- Ensure that acquired or developed systems and architectures are consistent with organisation's cybersecurity architecture guidelines.
- Develop and address security architecture and systems security engineering requirements throughout the acquisition life cycle.
Qualifications
- 5+ years of experience in similar position
- Certified in CISSP, CISM, or similar certifications
- Expert knowledge of regional security regulations
- Consulting, stakeholder engagement and relationship management skills
- Flexibility to travel
- Ability to apply cybersecurity and privacy principles to organisational requirements.
- Knowledge of Enterprise Risk Management processes.
- Knowledge of developing cyber threat landscapes.
- Ability to understand and translate future cybersecurity considerations and industry trends into the cybersecurity strategy.
- Knowledge and understanding of risk assessment, mitigation, and management methods.
- Knowledge of cybersecurity related threats and vulnerabilities.
- Knowledge and understanding of new technologies and solutions from a cybersecurity perspective.
- Knowledge of key security management concepts.