Job Description

  Key Responsibilities​

Security Leadership

• Lead security audits, support our business in security related customer requests and interactions.
• Provide regular security updates to management
• Foster a culture of continuous security improvement throughout the organization
• Communicate effectively with business and customer stakeholders to ensure security compliance of measures that protect assets while enabling business efficiency

Compliance & Regulatory Management

• Navigate complex regulatory frameworks including frameworks such as PCI-DSS, ISO-27001, and regional Privacy and Banking regulations
• Coordinate regulatory and customer audits, ensuring identified risks are properly mitigated
• Partner with regional and global security officers to develop and maintain an Information Security Management System (ISMS) in line with local expectations
• Partner with the compliance, risk and business continuity office to interpret and implement regulatory and card scheme mandates, translating complex requirements into practical, executable procedures.

Security Management

• Ensure issues are translated into our overall risk management framework and implement effective risk management strategies
• Partner with Sales, Customer Service, Technical Operations and business units to align security requirements and processes.
• Engage with regional legal teams to ensure security policies reflect the latest payment security regulations
• Managing and responding to security incidents by co-ordinating with our Global SOC in assessing the situation, coordinating response efforts and implementing containment and recovery plans

Job Requirements

Experience & Education

• 5 - 10 years of cybersecurity experience, with significant expertise in financial services industry
• Minimum 3 years in an information security officer role
• Bachelor's or Master's degree in Cybersecurity, Information Systems, IT or related field
• Professional security certifications such as CISSP, CISM, QSA, or security vendor specific certifications.

Technical Expertise

• Relevant industry technical certifications such as AWS, Microsoft, Linux Foundation, Cisco, etc.
• Extensive hands on experience of security impacting local laws and regulations
• Strategic cybersecurity management experience in complex payment environments
• Strong business acumen balancing security requirements with customer experience

Leadership & Communication

• Leadership capability guiding diverse teams across multiple jurisdictions
• Excellent communication skills with ability to translate complex security concepts to leadership and customer executives
• Fluency in English, with additional regional languages (Mandarin, Malay and Thai) highly valued

Skills