Chief Information Security Officer, Asia
2 weeks ago
General Description:
The Asia Chief Information Security Officer is a senior leadership role responsible for working closely with the Global Chief Information Security Officer & Asia Chief Information Officer to define, implement, and oversee the enterprise-wide cybersecurity strategy in Asia. This role bridges the gap between security operations and business objectives, ensuring that security controls are effectively integrated into the organization's processes while enabling innovation and growth. The Asia CISO will drive strategic security initiatives, enhance risk management, and foster a security-first culture across all business units and geographies in the Asia segment.
Position Responsibilities:
Strategy and Collaboration:
Collaborate with the Global CISO & Asia CIO to localize the organization's cybersecurity strategy, ensuring alignment with business objectives.
Provide executive leadership in the design and implementation of security frameworks, policies, and controls.
Advocate for cybersecurity initiatives at the executive level, translating technical risks into business-relevant discussions.
Establish and lead governance structures to ensure compliance with local regulatory, legal, and industry-specific security requirements.
Define and implement security strategies in collaboration with local IT teams and global cybersecurity partners to enhance the security and reliability of technical capabilities.
Security Maturity and Risk Management: Continuously improve the overall security posture of the organization, monitor risk levels, and ensure compliance with regulatory requirements and applicable internal standards.
Application Security: Work with Asia Delivery and Dev Sec Ops to strengthen application security and implement controls in alignment with the risk management framework and regularly assess their effectiveness.
Risk Assessment and Monitoring: Align with Business Unit and Functional Technology Delivery Teams to drive risk demand, perform risk assessments, monitor control performance, and manage corrective action plans and exceptions to address operational defects.
Business Engagement & Risk Management:
Partner with senior business leaders to integrate security into corporate strategy, ensuring security is a business enabler rather than a barrier.
Drive security risk management programs, working with risk, compliance, and legal teams to manage enterprise risk exposure.
Oversee security assessments for new business initiatives, mergers & acquisitions, and third-party engagements/Services.
Reporting and Compliance: Produce and deliver annual CISO reports to the Board of Directors and ensure annual regulatory compliance certifications.
Policy and Standards Review: Review and provide input on all policies and standards, facilitate impact analyses, and lead programs to align with new requirements as required.
Project Delivery: Deliver risk requirements for all projects resourced from segment and shared service teams, using a standard methodology and ensuring a smooth handover to operations upon completion.
Cyber Operations: Works with the Global CISO, central cyber security functions, Regional and market stakeholders on threat detection and monitoring, incident management including response, investigation, mitigation and prevention.
Collaboration and Communication: Collaborate with global and regional IT teams to integrate security into all aspects of IT Application Delivery and operations. Communicate effectively with stakeholders, including executives, employees, and external partners, regarding all security initiatives and issues.
Audit and Inquiry Management: Address audits and inquiries using a system of record for risk and controls management and drive continuous improvement for governance and controls practices.
Training and Development: Provide regular training to the technology community, covering topics such as annual penetration test lessons learned, emerging risks, new standard requirements, security best practices and refreshes etc.
Team Leadership: Oversee the Asia teams responsible for application security, risk assessments, vulnerability management, audits, controls testing, regulatory compliance, and other cybersecurity functions. Build and lead a high-performing information security team in the Asia segment.
Required Qualifications:
Experience: A minimum of 10+ years in security, risk, compliance, and technology leadership, with proven experience in developing and executing both strategic and tactical plans.
Proven track record of developing and executing security strategies that align with business objectives.
Experience in risk management, governance, and security operations within global organizations.
Strong analytical, problem-solving and decision-making skills.
Industry Leadership: Recognized as an industry leader with broad technical skills across all aspects of information security and risk management. Prior experience working within Asia markets would be an important advantage.
Technical Expertise: Deep experience in cybersecurity, cloud security, software engineering practices, and vulnerability management.
Qualifications: Bachelor's degree in computer science, Information Technology, or a related field; master's degree or MBA is preferred. Industry certifications such as CISSP, CISM, CISA, or equivalent would be an advantage.
Best Practices: Strong knowledge of industry information security frameworks, standards, and best practices would be important.
People Management: Proven experience in leading a team of 5-10 senior-level professionals. Proven ability to lead and manage cross-functional teams in a multicultural environment. Excellent communication and interpersonal skills.
Program Establishment: Demonstrated success in establishing and delivering programs to raise cybersecurity maturity while aligning with an agile delivery methodology.
Team Building: Proven ability to build and lead a risk management and security team capable of delivering with high impact.
Working Conditions:
This position will be based in either Hong Kong or Singapore and is considered to be a Hybrid role and the normal Working Better Guidelines will apply.
This role requires occasional travel to various locations within the Asia region and outside of it.
The CISO may be required to work outside of normal business hours to address security incidents or attend meetings in different time zones etc. in the normal course of the role.
-
Chief Information Security Officer, Asia
2 weeks ago
Hong Kong Island, Hong Kong SAR China Manulife Financial Full timeAbout This Role:">The Asia Chief Information Security Officer is a senior leadership position responsible for working closely with the Global Chief Information Security Officer & Asia Chief Information Officer to define, implement, and oversee the enterprise-wide cybersecurity strategy in Asia. This role bridges the gap between security operations and...
-
Chief Security Architect
1 week ago
Hong Kong, Central and Western District, Hong Kong SAR China Centurion Information Security Full timeJob OverviewCenturion Information Security seeks a skilled Chief Security Architect to lead our penetration testing efforts. As a critical member of our team, you will play a key role in identifying and assessing vulnerabilities in our clients' networks, systems, and applications.Key ResponsibilitiesDevelop and execute tailored scope of work (SOW) in...
-
Chief Cybersecurity Risk Officer
2 weeks ago
Hong Kong, Central and Western District, Hong Kong SAR China Aptitude Asia Full timeAbout Aptitude AsiaAptitude Asia is a forward-thinking organization committed to delivering exceptional results in the field of information security.We are seeking an accomplished Chief Cybersecurity Risk Officer to spearhead our efforts in safeguarding our assets and ensuring compliance with regulatory requirements.
-
Chief Information Security Officer
2 weeks ago
Hong Kong Island, Hong Kong SAR China Tek Systems Full timeWe're seeking a seasoned Chief Information Security Officer (CISO) to lead our information security efforts at Tek Systems. As a CISO, you will be responsible for developing and implementing comprehensive cybersecurity strategies and programs.The ideal candidate will have a minimum of 5 years of experience in senior-level information security roles,...
-
Chief Information Security Officer
1 week ago
Hong Kong Island, Hong Kong SAR China BitMart Full timeThe Chief Information Security Officer (CISO) will be accountable for formulating and executing the company's information security strategy, ensuring cybersecurity compliance with Hong Kong's regulations for Virtual Asset Service Providers.This role is crucial in safeguarding the company's digital assets, maintaining regulatory adherence, and strengthening...
-
Chief Information Security Officer
1 week ago
Hong Kong Island, Hong Kong SAR China BitMart Full timeJob Description:The Chief Information Security Officer will be responsible for formulating and executing BitMart's information security strategy, ensuring cybersecurity compliance with Hong Kong's regulations for Virtual Asset Service Providers.This role is crucial in safeguarding the company's digital assets, maintaining regulatory adherence, and...
-
Deputy Chief Information Security Officer
2 weeks ago
Hong Kong, Central and Western District, Hong Kong SAR China BIXIN Full timeDeputy Chief Information Security Officer - VASP2 days ago Be among the first 25 applicantsCompany Overview: NewBX is a deemed-to-be-licensed VASP regulated by the Securities and Futures Commission (SFC) of Hong Kong.Role Overview: The Deputy CISO will work closely with the CISO to develop and execute NewBX's security strategy. This role protects information...
-
Chief Information Technology Officer
2 weeks ago
Hong Kong, Central and Western District, Hong Kong SAR China Shangri-La Group Full timeWe are seeking a highly skilled and experienced Chief Information Technology Officer to join our team at Shangri-La Group. The successful candidate will be responsible for maintaining computer hardware peripherals and application software, ensuring data integrity and systems stability. Key responsibilities include studying and evaluating new products,...
-
Chief Information Security Strategist
2 weeks ago
Hong Kong, Central and Western District, Hong Kong SAR China BIXIN Full timeJob SummaryNewBX is a leading financial institution in Hong Kong, seeking an experienced Deputy Chief Information Security Officer to join its team. As a key member of the leadership team, you will be responsible for developing and implementing the company's security strategy, ensuring regulatory compliance, and mitigating risks.About NewBXNewBX is a...
-
Chief Information Officer
2 weeks ago
Hong Kong Island, Hong Kong SAR China Classy Wheeler Limited Full timeAbout Us:">Classy Wheeler Limited is a fintech startup aiming to revolutionize its market segment with a focus on clean UI/UX and reliability, with ambitions to expand across South East Asia.Location: Kuala Lumpur, MalaysiaNature: PermanentJob Description:">We are seeking an experienced Chief Technology Officer to lead our technology team and drive the...
-
Asia Cybersecurity Leader
2 weeks ago
Hong Kong Island, Hong Kong SAR China Manulife Financial Full timeJob Overview:">We are seeking an experienced information security executive to lead our cybersecurity efforts in Asia. As the Regional Chief Information Security Officer, you will be responsible for developing and executing a comprehensive cybersecurity strategy that aligns with business objectives and ensures the protection of our organization's assets.
-
Chief Information Security Architect
5 days ago
Hong Kong, Central and Western District, Hong Kong SAR China Crypto Full timeJob DescriptionWe are seeking a highly motivated and skilled Chief Information Security Architect to drive the integration of AI solutions within our IT operations, with a strong focus on enhancing security. As an integral member of our Crypto team, you will be instrumental in leveraging AI tools and technologies to improve efficiency, automate processes,...
-
Chief Information Security Strategist
1 week ago
Hong Kong, Central and Western District, Hong Kong SAR China MatchTalent Limited Full timeJob Description:MatchTalent Limited is seeking an experienced Chief Information Security Strategist to oversee the company's information security strategy across their APAC operations. The ideal candidate will have a strong background in information security, with experience in developing and implementing comprehensive security strategies aligned with...
-
IT Security Risk Consultant
1 week ago
Hong Kong, Central and Western District, Hong Kong SAR China Centurion Information Security Full timeSecurity Expertise:Penetration Testing:As a Penetration Tester at Centurion Information Security, you will be responsible for conducting independent penetration testing and vulnerability assessments to identify and exploit vulnerabilities in our clients' networks, systems, and applications.Key Skills:Experience in conducting penetration testing and...
-
Regional Chief Information Security Officer
2 weeks ago
Hong Kong Island, Hong Kong SAR China Manulife Financial Full timeCybersecurity Leadership:">We are looking for a seasoned cybersecurity leader to join our team in Asia. As the Asia Cybersecurity Leader, you will be responsible for designing and implementing security frameworks, policies, and controls that ensure the protection of our organization's assets. You will also collaborate with global and regional IT teams to...
-
Chief Security Officer
2 weeks ago
Hong Kong, Central and Western District, Hong Kong SAR China Bank of Communications Co., Ltd. London Branch Full timeJob Summary:The Chief Security Officer is responsible for overseeing the security services at the Bank of Communications Co., Ltd. London Branch. This includes leading and motivating an effective security operations team to ensure the protection of company assets and security management.Key Responsibilities:Develop strategies for security management...
-
Hong Kong, Central and Western District, Hong Kong SAR China BIXIN Full timeInformation Security in the Financial SectorThe Deputy Chief Information Security Officer will play a critical role in ensuring the security and integrity of NewBX's information systems and assets. This includes protecting against cyber threats, ensuring compliance with SFC regulations, and mitigating risks associated with blockchain technology.The ideal...
-
Hong Kong, Central and Western District, Hong Kong SAR China Shangri-La Group Full timeAbout the Role:We are currently looking for a Chief Information Security Strategist to assist the VP, Information Security in managing a team of specialists overseeing all matters related to information security and data protection for the Shangri-La Group.This is a key leadership role that requires a strong background in information security, with...
-
Chief Information Security Officer
2 weeks ago
Hong Kong, Central and Western District, Hong Kong SAR China BDx Data Centers Full timeRole Summary:Oversee and manage the 24x7 Security Operations Centre, ensuring prompt security incident response and readiness.Vulnerability Management:Support global vulnerability management processes, including OS and infrastructure patching, hardening, and testing efforts.Key Responsibilities:Investigate, analyze, and mitigate security threats using SIEM,...
-
Chief Information Security Officer
2 weeks ago
Hong Kong Island, Hong Kong SAR China Classy Wheeler Limited Full timeAbout Classy Wheeler LimitedLeading retailers and wholesalers of a number of top-selling sports, lifestyle and outdoors brands of apparel, footwear and accessories products.Job OverviewWe are seeking an experienced Cyber Security Manager to join our team. The successful candidate will be responsible for translating security concepts for developers, improving...
