Agency Chief Information Security Officer

JJ Consulting Services is a recruitment firm and preferred partner for multinational companies expanding in Asia. Our consultants bring deep industry and functional expertise, delivering top professional and staffing solutions to clients and candidates.

Our client in Singapore seeks an Agency Chief Information Security Officer to lead cybersecurity efforts, ensuring digital resilience and aligning security strategies with business goals across multiple cybersecurity domains.

Responsibilities

• Lead cybersecurity initiatives supporting digital transformation to ensure system resilience
• Develop and implement cybersecurity strategies, policies, and work plans aligned with business objectives
• Conduct threat-based risk assessments and enhance risk management through mitigation, monitoring, and reporting
• Provide expert consultation and endorse risk management plans from project teams
• Oversee ICT asset security, security architectures, and cybersecurity operations to strengthen security posture
• Design, develop, and conduct incident response plans, workshops, simulations, and lead ICT security incident investigations
• Advise on cybersecurity technologies that meet business needs and align with industry best practices
• Ensure secure-by-design principles in ICT product development and enforce compliance with security policies and standards
• Develop and maintain cybersecurity awareness and training programs for organizational staff

Required competencies and certifications

• CISSP certification (minimum) demonstrating industry best practices knowledge
• Proven management experience (8-10 years) in information security with strong understanding of ICT operations, security policies, and business processes
• Ability to lead multi-disciplinary teams to establish real-time security posture awareness among end users
• Strong interpersonal and executive leadership skills
• Expertise in security-by-design implementations, system architecture review, DevSecOps practices, Infrastructure as Code (IaC), and securing CI/CD pipelines
• In-depth knowledge of cloud service models (IaaS, PaaS, SaaS) and cloud-native architectures including serverless, containers, and microservices
• Skills to identify and assess on-premises and cloud cybersecurity risks including insider threats, vendor risks, data leakage, malware, ransomware, account hijacking, and compliance risks
• Capability to evaluate existing controls and recommend mitigation strategies for cybersecurity and data security issues in on-premises and cloud environments
• Understanding of emerging threats and technologies with ability to translate risks into business impact
• Strong grasp of compliance requirements and ability to identify potential violations in on-premises or cloud environments
• Effective communication of cybersecurity topics to senior stakeholders

Preferred competencies and qualifications

• Additional certifications such as CISM, CCSP, GCIH demonstrating continuous learning and advanced industry knowledge

Other Information

Applicants are invited to send a MS Word resume to ***email_hidden*** stating position applied for, current and expected salaries, and earliest available date. JJ Consulting Services

• EA Licence No.: 12C6207
• JJ Consulting Services