Head of Group Cybersecurity & IT Risk Management

Assume a distinguished leadership position as Head of Group Cybersecurity and Risk Management with a highly esteemed financial institution in Kuala Lumpur.

Head of Group Cybersecurity and Risk Management

You’ll have a direct hand in steering strategic decisions alongside executive leaders, championing a culture of security awareness, and inspiring collaboration across all departments. With flexible working opportunities and a strong commitment to your ongoing professional growth, this is the perfect environment for you to shine, make a lasting impact, and accelerate your career journey.

• Take centre stage in crafting and executing group-wide cybersecurity strategies and risk management frameworks that elevate organisational resilience and build trust at every level.
• Work hand-in-hand with senior stakeholders from diverse business units, nurturing a supportive network focused on shared success and continuous learning.
• Enjoy flexible working options and access to outstanding training programmes designed to boost your expertise in cybersecurity, risk management, and people-focused leadership.

What you'll do:

As Head of Group Cybersecurity and Risk Management, you’ll be at the heart of protecting the organisation’s digital landscape while driving a holistic approach to risk governance. Your days will be filled with energising collaboration alongside senior leaders as you craft forward-thinking strategies that keep pace with ever-evolving cyber threats. You’ll empower teams by providing clear guidance on policy creation, orchestrating seamless incident responses, and building strong relationships with stakeholders. To thrive in this role, you’ll blend technical know-how with exceptional interpersonal skills—fostering an environment where everyone feels responsible for security. By staying ahead of industry shifts and regulatory updates, you’ll help ensure the group remains resilient now and well into the future. Your ability to communicate complex ideas in an engaging way will inspire confidence across all levels as you turn technical insights into practical action.

• Develop and oversee the implementation of comprehensive cybersecurity strategies that align with organisational objectives and regulatory requirements.
• Lead the design, execution, and continuous improvement of risk management frameworks across all business units within the group.
• Establish policies, standards, and procedures to ensure effective governance of information security practices throughout the organisation.
• Collaborate with executive leadership to integrate cybersecurity considerations into broader business planning and decision-making processes.
• Direct incident response efforts by coordinating cross-functional teams during security events, ensuring timely resolution and communication.
• Monitor emerging threats, vulnerabilities, and industry trends to proactively adapt security measures and maintain robust defences.
• Engage with internal stakeholders to promote a culture of security awareness through regular training sessions, workshops, and communications.
• Oversee third-party risk assessments to ensure external partners adhere to established security standards and contractual obligations.
• Report regularly on key risk indicators, compliance status, and incident metrics to senior management and relevant committees.
• Represent the organisation in interactions with regulators, auditors, and industry bodies regarding cybersecurity matters.

What you bring:

To truly excel as Head of Group Cybersecurity and Risk Management, you’ll bring a wealth of hands-on experience from complex environments where safeguarding information is paramount. Your background should showcase your ability to build robust frameworks that not only meet compliance but also drive business progress. You’re skilled at translating intricate technical needs into real-world solutions that resonate across all levels. Your warm interpersonal style helps you quickly earn trust—whether guiding teams through challenging moments or sharing insights with board members. A passion for sharing knowledge means your team stays informed about new risks while feeling empowered through targeted development opportunities. Your analytical mindset lets you spot potential vulnerabilities before they arise while your collaborative spirit ensures technology initiatives always align with wider organisational goals.

• Extensive experience in developing and managing enterprise-wide cybersecurity programmes within large organisations or financial institutions.
• Proven track record in designing risk management frameworks that meet both regulatory requirements and business needs.
• Strong understanding of information security principles, including governance, compliance, threat intelligence, vulnerability management, and incident response.
• Demonstrated ability to collaborate effectively with executive leadership teams as well as technical specialists across diverse functions.
• Excellent communication skills with the capacity to present complex issues clearly to both technical experts and non-technical stakeholders.
• Experience leading multidisciplinary teams through high-pressure situations such as cyber incidents or regulatory audits.
• Familiarity with international standards such as ISO 27001/2, NIST Cybersecurity Frameworks, or similar best practices relevant to financial services.
• Ability to foster a culture of shared responsibility for security through training initiatives and ongoing stakeholder engagement.
• A degree in Information Security, Computer Science, Risk Management or related field; relevant certifications (e.g., CISSP, CISM) are highly desirable.
• Commitment to continuous learning in order to stay abreast of emerging technologies, threats, regulations, and industry trends.

What sets this company apart:

This company is celebrated for its inclusive culture where every perspective is welcomed. Employees enjoy flexible working arrangements that support work-life balance alongside generous investment in professional development through tailored training programmes. The leadership team is known for being approachable—encouraging open conversations so fresh ideas can flourish. As part of one of Malaysia’s most respected financial institutions—with a reputation built on integrity—you’ll have access to top-tier resources needed for success. Teamwork here goes beyond boundaries: colleagues freely share knowledge while supporting each other’s growth journeys. This spirit of togetherness creates an uplifting environment where passionate professionals can thrive while making meaningful contributions toward shared achievements.

What's next:

If you’re excited about taking your cybersecurity career further within a welcoming environment that values expertise and teamwork—this is your moment!

Apply today by clicking on the link below – seize this opportunity to join an organisation where your talents will truly shine.

Robert Walters SEA is acting as an Employment Business in relation to this vacancy.