Deputy General Manager - Cloud and Security Management

Job Description

Strategic Leadership:
Develop and execute a forward-thinking cyber security strategy aligned with business objectives.
Provide executive leadership in the design and implementation of enterprise-wide security programs.

Risk Management and Compliance:
Lead the assessment and management of cyber security risks, ensuring alignment with organizational risk tolerance.
Ensure compliance with relevant laws, regulations, and industry standards.

Security Architecture and Design:
Design, implement, and maintain secure Infrastructure and cloud security architectures, ensuring compliance with industry standards and regulatory requirements.
Provide expert guidance on security best practices and ensure the integration of security controls throughout the enterprise network.

Incident Response and Forensics:
Direct and coordinate the organization's incident response program, ensuring rapid and effective responses to security incidents.
Conduct and oversee digital forensics investigations to determine the root cause and impact of security incidents.

Security Policies and Governance:
Develop and enforce comprehensive cyber security policies, standards, and procedures.
Establish and maintain a strong security governance framework.

Security Awareness and Training:
Develop and implement ongoing cyber security awareness programs for employees at all levels.
Provide training sessions on the latest cyber security threats and best practices.

3rd Party and Vendor Risk Management:
Evaluate and manage the cyber security risks associated with third-party vendors and partners.
Establish and enforce security requirements for external partners and suppliers.

Budget Management:
Manage the cyber security budget, ensuring optimal utilization of resources and technology investments.

Offering Development and Management:
Evaluate the financial aspects of offering development, such as budgets, expenditures, research and development appropriations, return-on-investment, and profit-loss projections.
Create and manage winning partnerships with key stakeholders including Technology and service vendors, commercial partners.
Coordinate products marketing activities and policies to promote products and services.
Deliver Though leadership and lead the business development activities in the respective domain to increase the value and positioning of the portfolio and the organization.

CISO Office:
Implementing and overseeing organization’s cybersecurity program: Responsible for all aspects of information security across the enterprise, including Web and Mobile application security, Cloud, Infrastructure and device security, Security Awareness Training, Policy, and Compliance
Partner and align with Product and Engineering teams to reinforce product security to drive and automate secure development practices while maintaining business objectives.
Create quarterly, annual, and long-term cyber security and cyber risk management goals, articulate strategies, define metrics, and provide necessary updates to executive leadership and the Board of Directors
Collaborate with peer members of the Cyber Security Governance Committee (CSG), Audit Committee to establish appropriate security standards and provide an effective governance structure to ensure cyber compliance and accountability.
Assist in Security Incident Response, Third Party Information Security Assessment, Data Protection and Encryption, Identity & Access Management and Privileged User Access to protect customer and employee data. Initiative to foster the security culture cross functional partnership, service, and continuous improvement.