Global Chief Information Security Officer (CISO)

Job description

​Global Chief Information Security Officer (CISO)

Role Overview

We are seeking a highly experienced and visionary Global Chief Information Security Officer (CISO).

Key Responsibilities

• Cybersecurity Strategy Development: Develop and implement a comprehensive global cybersecurity strategy aligned with business objectives and regulatory requirements.

• Advisory Role to Leadership: Provide expert guidance to executive leadership and the Board of Directors on cyber risks, security investments, and compliance frameworks.

• Governance & Compliance: Establish and manage a robust security governance model that ensures adherence to industry standards such as ISO 27001, NIST, GDPR, and other relevant regulations.

• Enterprise Security Architecture: Design and oversee the implementation of enterprise security infrastructure, including network security, cloud security, IAM, data encryption, and zero-trust architecture.

• Security Operations & Threat Management: Lead the Security Operations Center (SOC) to proactively monitor, detect, and respond to cybersecurity threats including APTs, ransomware, and data breaches.

• Incident Response & Crisis Management: Develop and maintain an incident response plan to ensure rapid mitigation, containment, and recovery from cybersecurity incidents.

• Risk Assessment & Penetration Testing: Oversee regular risk assessments, penetration testing, and vulnerability management across the global network and operation.

• Security Awareness & Training: Promote a security-first culture by establishing cybersecurity awareness and training programs to ensure all employees understand and adhere to security protocols.

• Collaboration with Business Units: Collaborate with various business units to integrate security practices into digital transformation efforts and new technology implementations, ensuring seamless and secure operations.

Qualifications & Experience

• Proven leadership in driving global cybersecurity programs
  Technical expertise in network security, cloud security (AWS, Azure, Google Cloud), threat intelligence, and risk management with a focus on critical infrastructure and sensitive data protection.

• Deep knowledge of security frameworks, including zero-trust, IAM, cloud security architectures, and web application firewalls (WAFs).

• Hands-on experience in designing and implementing robust security measures in highly regulated and risk-sensitive environments.

• Experience with regulatory compliance such as ISO 27001, NIST, SOC 2, GDPR, and other relevant industry standards for semiconductors, mining, or financial services.

• Strong leadership and communication skills, with the ability to influence and collaborate effectively with business, IT, and executive teams.

• High integrity in managing sensitive security data and risk management practices.

Please contact Sheralynn Tjioe at SheralynnT@charterhouse.com.sg for a confidential discussion.

EA License no:16S8066 | Reg no.:R1878306

Only successful candidates will be notified.