We are seeking an experienced and forward-looking Data Security Lead to drive our enterprise-wide data protection strategy. In this role, you will lead the design, implementation, and governance of data security solutions, ensuring the confidentiality, integrity, and availability of sensitive information across on-premises, cloud, and hybrid environments.
Key Responsibilities
- Define and execute the organizations data security strategy and roadmap, aligning with business objectives and regulatory expectations.
- Lead the evaluation, design, deployment, and operationalization of data protection technologies across structured and unstructured data environments.
- Drive adoption of data discovery, classification, and labelling tools to enhance visibility of sensitive data.
- Oversee the implementation of data encryption, masking, tokenization, key management, and HSM integration.
- Provide leadership in the rollout and optimization of Data Loss Prevention (DLP) and Digital Rights Management (DRM/IRM) solutions.
- Establish and maintain data protection standards, policies, and operating models for scalability and sustainability.
- Act as a key escalation point for data-related security incidents, working with SOC and incident response teams.
- Partner with senior stakeholders to ensure data protection controls support compliance (e.g., GDPR, PDPA, PCI-DSS, MAS TRM).
- Research and recommend adoption of emerging technologies such as confidential computing and privacy-enhancing techniques.
- Mentor and guide junior engineers in implementing data security solutions and best practices.
Qualifications & Skills
- Bachelors degree in Computer Science, Information Security, or related field (or equivalent experience).
- 812+ years of experience in cybersecurity, with at least 5 years focused on data security and protection.
- Proven leadership in implementing and managing:
- Data discovery and classification platforms
- Encryption, masking, tokenization solutions
- DLP and DRM/IRM technologies
- Key and certificate management, HSMs
- Secure data storage and transfer, including SaaS and cloud-native solutions
- Strong knowledge of cloud security and data protection controls in AWS, Azure, and Google Cloud.
- Familiarity with scripting/coding (Python, PowerShell, Java) and REST APIs for automation and integration.
- Strong stakeholder management, communication, and influencing skills.
- Professional certifications such as CISSP, CISM, CCSP, or relevant cloud security credentials are highly advantageous.
Morgan Mckinley Pte Ltd
EA Licence No: 11C5502
EAP Registration No: R1106192