Global Chief Information Security Officer (CISO)

Global Chief Information Security Officer (CISO)

Role Overview

We are seeking a highly experienced and visionary Global Chief Information Security Officer (CISO).

Key Responsibilities

1. Cybersecurity Strategy Development: Develop and implement a comprehensive global cybersecurity strategy aligned with business objectives and regulatory requirements.
2. Advisory Role to Leadership: Provide expert guidance to executive leadership and the Board of Directors on cyber risks, security investments, and compliance frameworks.
3. Governance & Compliance: Establish and manage a robust security governance model that ensures adherence to industry standards such as ISO 27001, NIST, GDPR, and other relevant regulations.
4. Enterprise Security Architecture: Design and oversee the implementation of enterprise security infrastructure, including network security, cloud security, IAM, data encryption, and zero-trust architecture.
5. Security Operations & Threat Management: Lead the Security Operations Center (SOC) to proactively monitor, detect, and respond to cybersecurity threats including APTs, ransomware, and data breaches.
6. Incident Response & Crisis Management: Develop and maintain an incident response plan to ensure rapid mitigation, containment, and recovery from cybersecurity incidents.
7. Risk Assessment & Penetration Testing: Oversee regular risk assessments, penetration testing, and vulnerability management across the global network and operation.
8. Security Awareness & Training: Promote a security-first culture by establishing cybersecurity awareness and training programs to ensure all employees understand and adhere to security protocols.
9. Collaboration with Business Units: Collaborate with various business units to integrate security practices into digital transformation efforts and new technology implementations, ensuring seamless and secure operations.

Qualifications & Experience

1. Proven leadership in driving global cybersecurity programs.
2. Technical expertise in network security, cloud security (AWS, Azure, Google Cloud), threat intelligence, and risk management with a focus on critical infrastructure and sensitive data protection.
3. Deep knowledge of security frameworks, including zero-trust, IAM, cloud security architectures, and web application firewalls (WAFs).
4. Hands-on experience in designing and implementing robust security measures in highly regulated and risk-sensitive environments.
5. Experience with regulatory compliance such as ISO 27001, NIST, SOC 2, GDPR, and other relevant industry standards for semiconductors, mining, or financial services.
6. Strong leadership and communication skills, with the ability to influence and collaborate effectively with business, IT, and executive teams.
7. High integrity in managing sensitive security data and risk management practices.

Please contact Sheralynn Tjioe at [HIDDEN TEXT] for a confidential discussion.

EA License no:16S8066 |Reg no.:R1878306

Only successful candidates will be notified.