Job Purpose: 

The Head of Cyber Security Governance and Compliance serves as the process owner of all assurance activities related to the availability, integrity, and confidentiality of customer, business partner, employee, and business information in compliance with Dialog Group’s Security Policies. A key element of this role is working with executive management to determine acceptable levels of risk for the organization. This position is responsible for establishing and maintaining security across Dialog Group, while also ensuring that information assets are adequately protected and security incidents are appropriately responded to. The Head of Cyber Security serves as the key custodian of delivering Key Performance Indicators for Axiata and Dialog Board Risk and Compliance Committee.

The Job

• The position holder is responsible for directing and enforcing mitigation strategies to reduce Dialog Group’s attack surface and ultimately reduce and maintain the risk exposure of the organization within acceptable limits
• Responsible in assisting Axiata and Dialog senior management in formulating the cyber security strategy across Dialog and Axiata group and will be responsible to ensure that Dialog is adequately protected and resilient against cyber threats and attacks
• Responsible to architect proactive defense mechanisms to mitigate cyber-attacks and be the focal point for cyber defense and information risk related matters
• Accountable for planning, designing and improving information security across Dialog and its subsidiaries
• Provide senior expertise and thought leadership for other experts in the information/cyber security domain
• Ensure the design of Cyber Security detection and protection is always in operation
• Establish TVM functional processes and Group Security Operations Center interactions
• Coordinate with external stakeholders, consultants and Axiata group and OPCOs Cyber security teams to maintain an accurate cyber security platform
• Manage cyber security related incidents and overall status of cyber hygiene to Cyber Security Steering Committee
• Direct the enterprise security roadmap for Dialog Group in collaboration with Axiata
• Identify root cause analysis for outages that may have security implications and disrupt operations
• Coordinate with project stakeholders and advice on evaluating information security related risks
• Drive Privacy and Data Protection related controls/initiatives to be incorporated into the Cyber security program
• Address supplier security gaps and performance issues within the supply chain to increase security of Dialog’s information.
• Design information security processors for required areas of work to assure mechanisms are in place
• Communicate with end users on existing cyber security policies, new changers, new and emerging threats to the organization and educate them of the importance of adherence
• Responsible for electronic Information protection, to prevent internal information from being disclosed
• Performing activities as per Infosec Calendar, risk register and Infosec related activities
• Establish succession planning, and track the progress of employee’s carrier development goals
• Budgeting and capacity planning for deployed and proposed projects
• Interface to resolve issues between business requirements and security requirements

The Person:

• Bachelor’s degree in IT / Engineering
• Master’s degree in IT / Engineering will be an added advantage
• CISSP, CISM, CRISC, CDPSE, CCISO, CDPP, CLIP ISO 27000 ISO 22301, BS10012, MCSE, CCNA, ITIL (F) will be considered as an added advantage
• More than 10 Years work experience in the industry