Job Description
We are seeking a strategic and hands-on Head of Security to lead our Information Security program, safeguard our systems and data, and strengthen our organization's cybersecurity posture. The ideal candidate will combine technical expertise with strong leadership, governance, and communication skills to drive enterprise-wide security initiatives.
Key Responsibilities
- Align and support group level information security policies owned by GOT CISO.
- Develop and implement the company's information security strategy, policies, procedures and frameworks aligned with global standards (e.g., ISO 27001, NIST).
- Lead the Security Team and oversee proactive monitoring, threat detection, and incident response.
- Manage risk assessment and mitigation programs for infrastructure, applications, networks, and cloud environments.
- Ensure regulatory compliance with data protection laws (PDPA, GDPR, etc.) and client security requirements.
- Conduct regular security audits, penetration tests, and vulnerability assessments, ensuring timely remediation.
- Collaborate with IT, Engineering, and Compliance teams to integrate security into product development and business processes.
- Oversee security awareness training to foster a strong security culture across the organization.
- Lead and mentor the security team, manage budgets, vendor relationships, and external security partners.
- Report regularly to leadership on security posture, risks, and security incidents.
- Collaborate with IT, Engineering and Project Management teams in formation of security incident reports.
Requirements
- Bachelor's or Master's degree in Computer Science, Information Security, or a related field.
- 6+ years of experience in information security, including at least 4 years in a leadership role.
- Deep knowledge of cybersecurity frameworks, cloud security (AWS, Azure), and network defense architecture.
- Proven experience managing incident response, risk governance, and compliance programs.
- Professional certifications such as CISSP, CISM and/or CCISO preferred.
- Strong analytical, communication, and crisis management skills.
