Cyber Security Manager (DFIR, Security Architecture and GRC)

Cyber Security Manager (DFIR, Security Architecture and GRC)

A leading multinational organization is seeking an experienced cybersecurity leader to join its expanding cybersecurity risk and assurance team. With a robust background in cybersecurity governance, incident management (Digital Forensics, Incident Response) and Security Architecture, this is a prime opportunity for someone eager to take on a leadership role and drive global security initiatives.

Responsibilities:

Cybersecurity Governance & Assurance:

• Lead the development of comprehensive cybersecurity governance strategies in line with global best practices and industry benchmarks.
• Plan, manage, and execute detailed cybersecurity risk assessments and audits, including facilitating security drills and tabletop exercises to identify vulnerabilities and define corrective actions.
• Drive improvements to cybersecurity processes, ensuring they align with the organization’s broader risk management framework and regulatory requirements.

OT/IT:

• Oversee the cybersecurity management of critical systems spanning IT, OT, IoT, and IIoT, ensuring a robust and resilient security infrastructure.
• Design and implement security processes and protocols, ensuring alignment with organizational security goals and objectives.
• Lead threat modeling efforts, conducting risk assessments to address emerging threats and evolving attack techniques.
• Manage vulnerability identification and remediation efforts, working closely with business units to ensure mitigation strategies are timely and effective.

Incident Management & Response Leadership:

• Develop and refine organizational incident response plans, ensuring readiness for a broad range of potential cybersecurity threats.
• Take a lead role in incident investigations, managing response efforts with a clear focus on minimizing business impact and restoring operations.
• Coordinate and run regular response drills, including red and purple teaming exercises, to ensure the organization is equipped to handle real-world cyber incidents.
• Act as an escalation point for critical incidents, providing expert guidance and ensuring a rapid, coordinated response.

Required Experience & Expertise:

• Minimum of 10 years of experience in cybersecurity, with at least 6 years focused on governance, risk management, and assurance.
• Strong background in implementing and managing cybersecurity frameworks such as NIST, ISO, and other industry standards.
• Proven ability to conduct comprehensive threat assessments, vulnerability analyses, and risk evaluations.
• Expertise in managing complex cybersecurity infrastructures across IT, OT, and IIoT environments.
• Demonstrated ability to manage cybersecurity incidents, including leading investigations and response efforts.
• A solid understanding of threat intelligence, monitoring, and incident forensics.

Essential Skills & Certifications:

• A degree in Computer Science, Information Security, or related discipline.
• Certifications such as CISSP, CRISC, ISO 27001 Lead Auditor, CISA, or equivalent.
• Strong proficiency in cybersecurity frameworks, risk management, and assurance processes.
• Experience with cybersecurity architectures in complex, multi-system environments.
• Advanced knowledge of incident response and forensics methodologies, with certifications like GCIH, GCIA, or similar.

Please contact Sheralynn Tjioe at SheralynnT@charterhouse.com.sg for a confidential discussion.

EA License no: 16S8066 | Reg no.: R1878306

Only successful candidates will be notified.