About the Role
We are seeking an experienced Cybersecurity Manager to lead, govern, and continuously enhance the organization's cybersecurity posture across infrastructure, cloud, applications, endpoints, and digital platforms for a Singapore-based financial institution.
This role focuses on enterprise cybersecurity strategy, threat defense, security operations, governance, and technology risk management. The ideal candidate will combine hands-on technical cybersecurity expertise with leadership capabilities to drive cyber resilience, regulatory compliance, secure digital transformation, and proactive threat management in a highly regulated environment.
Key Responsibilities
Cybersecurity Strategy & Governance
· Develop and execute the enterprise cybersecurity strategy aligned with business objectives, MAS TRM requirements, and industry best practices.
· Establish and maintain a defense-in-depth and zero-trust security architecture across enterprise environments.
· Drive cybersecurity governance, standards, policies, and operational procedures across infrastructure, cloud, applications, and user environments.
· Lead cyber risk assessments, threat modeling, and security reviews for technology initiatives and digital transformation projects.
· Ensure cybersecurity considerations are embedded into system design, application development, and operational processes using Secure-by-Design principles.
Security Operations & Threat Management
· Oversee SOC functions, threat monitoring, incident detection, response coordination, and cyber resilience activities.
· Lead incident response activities including containment, eradication, recovery, forensic investigations, and post-incident reviews.
· Implement and enhance threat detection capabilities using SIEM, EDR/XDR, UEBA, threat intelligence, and security analytics platforms.
· Drive continuous improvement in security monitoring, automation, alert tuning, and operational efficiency.
· Manage vulnerability management lifecycle activities including assessments, penetration testing, remediation tracking, and reporting.
Infrastructure & Cloud Security
· Lead security architecture and operational security for enterprise infrastructure including networks, servers, endpoints, virtualization platforms, and cloud environments.
· Oversee cloud security governance and controls, particularly for AWS environments including IAM, GuardDuty, Security Hub, encryption, logging, and workload protection.
· Ensure effective implementation and management of EDR/XDR, WAF and API security, CASB/SASE/ZTNA, DLP, email and web security gateways, DNS and network security controls, FIM, next-generation firewalls, and IPS/IDS.
· Collaborate with Infrastructure, DevOps, and Application teams to integrate security into CI/CD pipelines and Infrastructure-as-Code processes.
Regulatory Compliance & Risk Management
· Ensure compliance with MAS Technology Risk Management Guidelines, MAS Cyber Hygiene Notices, PDPA requirements, and internal cybersecurity policies and standards.
· Act as the primary cybersecurity liaison for Internal Audit, External Audit, Risk, and Compliance functions.
· Coordinate cybersecurity assessments, audits, regulatory reviews, and remediation programs.
· Support business continuity planning, disaster recovery exercises, and cyber crisis simulations.
Vendor & Security Service Management
· Manage relationships with cybersecurity vendors, MSSPs, cloud providers, and technology partners.
· Evaluate and implement modern cybersecurity technologies and services aligned with organizational risk appetite.
· Manage cybersecurity contracts, renewals, service reviews, SLAs, and operational performance.
· Prepare and manage cybersecurity budgets, including CAPEX/OPEX planning, investment forecasting, and cost optimization.
Leadership & Stakeholder Management
· Lead and mentor cybersecurity engineers, analysts, and operational teams.
· Build cybersecurity awareness and promote strong cyber hygiene practices across the organization.
· Provide regular cybersecurity reporting and risk updates to senior management and governance committees.
· Translate technical cyber risks into clear business impacts and actionable recommendations.
· Drive continuous cybersecurity maturity improvements across people, processes, and technology.
Education & Experience
· Bachelor's degree in Cybersecurity, Computer Science, Information Systems, or related discipline.
· 8-12 years of progressive cybersecurity experience, including at least 3-5 years in a managerial or leadership role.
· Proven experience in financial services, banking, insurance, or other highly regulated industries within Singapore or APAC.
Technical Expertise
· Strong expertise across Security Operations, Incident Response, Threat Detection, Threat Intelligence, AWS Cloud Security, Infrastructure Security, Network Security, Endpoint Security, EDR/XDR, SIEM, IAM/PAM, DLP, Vulnerability Management, Application Security, DevSecOps, Security Architecture, and Zero Trust.
· Strong knowledge of Windows/Linux hardening, cloud-native security controls, and enterprise security tooling.
· Hands-on experience with SIEM, WAF, EDR, DLP, CASB, email security, and modern security monitoring platforms.
· Experience with automation, scripting, and security orchestration technologies is advantageous.
· Familiarity with AI/LLM security governance, data protection controls, and cloud-native AI security practices is an added advantage.
Regulatory & Governance Knowledge
· Strong understanding of MAS TRM Guidelines, Cyber Hygiene requirements, ISO 27001, NIST Cybersecurity Framework, CIS Controls, and PDPA.
· Experience managing audits, security assessments, and regulatory remediation programs.
Soft Skills
· Strong leadership and people management skills.
· Excellent stakeholder engagement and communication abilities.
· Strong analytical thinking and problem-solving capabilities.
· Ability to operate effectively under pressure during cybersecurity incidents and crisis situations.
· Structured, proactive, and process-driven mindset.
Preferred Qualifications
· Professional certifications such as CISSP, CISM, CCSP, GIAC, or AWS Certified Security - Specialty.
· Experience with DevSecOps, security automation and SOAR, Infrastructure-as-Code security, AI Security or GenAI Governance, threat hunting, and adversarial simulation.
· Familiarity with modern enterprise security frameworks and zero-trust architecture principle
Working hours:
Mon to Fri 9am – 6pm
