Head, Regional IT Security IBG and International

About Our Client

Our client is a leading financial services provider in Malaysia catering to the needs of consumers, investors, entrepreneurs, non-profit organizations, and corporations. The Group, which has expanded internationally, has the largest network among Malaysian banks of over 2,400 branches and offices in 20 countries, employing over 44,000 and serving over 22 million customers. It is the only regional bank with a presence in all 10 ASEAN countries.

Job Description

• Offer guidance on IT Security issues, stepping in as the primary IT Security advisor in regions without a dedicated role, with support from Bank Group IT Security.
• Actively engage in IT Security affairs across Bank Securities and international branches, ensuring adherence to security protocols.
• Provide IT security consultations for IT projects, including monitoring and implementing enhancement measures.
• Implement and enforce Bank Group's IT Security policies and procedures across all regional entities.
• Drive the implementation of cyber security measures according to the IT roadmap in each country where Bank operates.
• Monitor compliance with Bank Group IT Security's target operating model, especially for support structures within Bank Securities.
• Serve as the main liaison for updates on security tools, ensuring that all Bank Securities and international branches address and rectify any non-compliance issues.
• Oversee the enforcement of security tool policies, including Data Loss Prevention, secure web gateways, and intrusion prevention systems, ensuring they meet local and Bank Group standards.
• Ensure that operational readiness review processes are in place and followed within Bank's security entities.
• Manage and oversee the remediation processes for security issues identified within Bank Securities and international branches by Bank Group IT Security.
• Collaborate closely with the infrastructure and application teams across Bank Securities and international entities to keep asset information current.
• Maintain and update security tool license information in alignment with Bank Group IT Security requirements.
• Act as the primary point of contact for addressing audit activities within Bank Securities and international entities, ensuring timely completion and closure of audit findings and remediation actions.

The Successful Applicant

Qualifications

Educational Requirements:

• A Bachelor's degree in Computer Science, Information Technology, or a closely related field is required. Possession of professional certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Systems Auditor (CISA), or Certified Information Security Manager (CISM) is highly beneficial.

Experience:

• A minimum of 8 years' experience in a relevant field is necessary for this role.

Field of Expertise:

• Specialization in Cybersecurity, Information Security, IT Auditing, and IT Risk Management is essential.

Skills and Abilities:

• Proven capability in formulating and executing information security policies, standards, guidelines, and procedures.
• Experience coordinating with external consultants for independent security audits.
• Proficient in communicating complex information security principles to both technical and non-technical personnel.
• Strong background in business continuity planning, auditing, risk assessment, and management, coupled with a comprehensive knowledge of information technology and security practices.

What's on Offer

• Attractive salary & benefits.
• Hybrid environment.
• Work-life balance.