Job Description

Some careers have more impact than others.
If you're looking for a role where you can continue to make an impression, take the next step at HSBC where your contributions will always be valued.
The County CISO is responsible for operating as part of a global/regional team within Cybersecurity to define and implement an industry-leading Cybersecurity Service that
supersedes our constantly changing information security threats. The role holder is expected to build and establish trust with Country/Regional senior stakeholders whilst
assisting with regional initiatives.
We are currently seeking a high calibre professional to join our team as Head of Cybersecurity Malaysia.
Responsibilities:
This role will carry out some or all of the following activities:

• Collaborate with the Global, Regional and Country representatives of Technology, plus other peer managers to implement the team's goals within entity policy, expense

and regulatory constraints. * Lead and support peers in Developing, implementing and monitoring a strategic, comprehensive enterprise cyber security management program.

• Assist Group/Region with the overall business technology planning, providing a current knowledge and future vision of technology and systems.
• Contribute to the Sub-function/Region Cybersecurity strategy to secure the bank's technology from the inside out, whilst maintaining, protecting and enhancing HSBC's

values, reputation and stakeholder value. * Provide/organize Cybersecurity related training sessions to improve awareness level of staff members, setting performance targets of direct reports and contributes to
employees' professional development. * Assist with business stakeholders across the company to raise awareness of risk management concerns and educate country management about country
cybersecurity risk level and actions required to mitigate/control existing risks. * Carefully considers the security requirements of an organization as well as the business requirements in order to address any security risks as well as satisfy the
organization's business goals. * Support business for in-country-specific initiatives via cybersecurity delivery, consultancy and country augmentation teams when required.

• Keeping abreast of developing security threats, and helping the country board understand potential security problems that might arise from acquisitions or other big

business moves. * Brief country management about ongoing Cybersecurity improvement projects benefits, status and challenges which require their attention and/or involvement to
make it success. * Provide guidance and ensure country regulatory requirements related to Cybersecurity are addressed in a timely fashion to implement relevant controls and to
develop/amend policies/standards to comply with the requirements. * Provide assistance in Governance related matters, ensuring consistency with Global /Regional key messaging and exercising formal governance through appropriate
governance forums.
Qualifications:

• Degree in business administration or a technology-related field required.
• Professional security management certification (e.g. CISSP,CISM,CISA,CRISC etc).
• Knowledge of common information security management frameworks and best practices (e.g. ISO/IEC 27001, GASSP, NIST etc).
• Minimum of 7-12 years of experience in a combination of risk management, cybersecurity and IT jobs.
• Excellent written and verbal communication skills and the ability to influence senior executives.
• Innovative thinking and leadership with an ability to lead and motivate crossfunctional, interdisciplinary teams.
• Proficiency in multiple technical disciplines and applicable security/risk concepts and methodologies.
• Previous experience in developing and implementing information security strategies and projects.
• Experience in Agile principles adoption or other best in class development practices.

Due to local laws and governance, candidates with immediate right to work locally and no relocation need will be prioritised.
Opening up a world of opportunity.
HSBC is committed to building a culture where all employees are valued, respected and opinions count. We take pride in providing a workplace that fosters continuous professional development, flexible working and opportunities to grow within an inclusive and diverse environment. Personal data held by the Bank relating to employment applications will be used in accordance with our Privacy Statement, which is available on our website.
Issued by HSBC Bank Malaysia Berhad
Video URL - External

Skills Required