Regional Cyber Security Specialist

The Cyber Security role is responsible for the Cyber Security posture in the region APAC. This role will have 3 primary functions which includes:
React, Drive and control cyber threats and vulnerabilitiesDesigning and deployment cyber security solutions based on regional needsTo manage Information Security to ensure that information security policies are reviewed, followed, documented and access to information is well protected accordingly. Scope will cover all APAC Countries (including China). Secure the organization, protect our customers.

Responsibilities:

Technical Operations Role:
Responsible for ensuring the security of our regional operations, implementing cybersecurity standards, and responding to security incidents.Securing our IT and Digital solutions, establishing security measures and technology as requiredMonitor the latest threats in cybersecurity to remain up to date on the best protective strategies.React to security advancements by mapping out plans and implementing upgrades.Review various security and authorization concepts to enable a zero-trust approachConduct regular audits to pinpoint weaknesses in the cybersecurity posture.Evaluate security problems as they arise and develop the best ways to resolve them.Respond to cyber security incidents and coordinate response with local IT service managers.Maintain and improve technical knowledge through continuing education opportunities.Keep the organization up to date on current cybersecurity posture, which helps team members contribute to the overall cybersecurity of a business.Ensure all documentation required for the benefit of cyber security are up to date.Information Security Manager Role:
Acts as a member of a global information security team to support the implementation and maintain the status of a corporate information security levelEnsures that corporate information security standards are implemented on department/country/company levelIf relevant, acts as the local owner of the Information Security Handbook (CG3600)Implements and maintains security concept for department/subsidiaryTakes part in the evaluation of Information Security risks and implementation of measures to improve Information Security for department/subsidiaryReports on Information Security incidents to the central Information Security organization at HQ and acts as a contact between department/subsidiary and Information Security organization in case of Information Security incidents and eventsParticipates in trainings and workshops to which the Information Security organization extends invitationsDistributes additional training material (such as whitepapers or guidelines) within the department/subsidiary, as assigned by the Information Security organizationRelationship-Management with local institutions where relevantRequirements:
Bachelor's degree or above in information technology, computer science or related disciplineAt least 8-10 years of experience in cybersecurityStrong knowledge of cybersecurity principles, practices, and technologiesRelevant certifications (e.g., CISSP, CISM, etc.) are a plusA strong work ethic with excellent attention to detail is essential.Experienced with security assessment tools and techniquesTechnical experience in designing, implementing and fixing vulnerabilitiesAbility to anticipate how cybercriminals would thinkExcellent analytical and problem-solving skillsStrong sense of ownership, organized and able to work and coordinate a multicultural and geographical teamsWell-versed in both endpoint, network security, cloud security (advantageous)Knowledge/experience in Cyber-Forensics (advantageous)Able to communicate in a global organizationStrong communication and interpersonal skillsAble to manage various stakeholders and conflicts

---