Head of Cybersecurity

Our client is looking for an experienced cybersecurity leader to oversee the organisation’s enterprise security programme and drive the continued maturity of its cybersecurity capabilities.
Reporting to a senior executive, this role is responsible for developing the cybersecurity vision, strengthening governance and risk management practices, protecting critical technology environments, and ensuring security is embedded across business and technology initiatives.
This is a strategic leadership role requiring close collaboration with business leaders, technology teams and executive management.
Responsibilities:
Cybersecurity Leadership
- Develop and execute the organisation’s cybersecurity strategy and multi-year roadmap.
- Provide strategic direction on cybersecurity investments, priorities and emerging threats.
- Champion a security-first culture across the organisation.
Governance, Risk & Compliance
- Establish and maintain enterprise security policies, standards and governance frameworks.
- Drive cybersecurity risk assessments and ensure risks are appropriately identified, prioritised and managed.
- Ensure compliance with relevant regulatory obligations and recognised security standards.
- Lead security audits, certification programmes and assurance activities.
Security Architecture & Engineering
- Provide governance and oversight for security architecture across enterprise technology platforms.
- Promote secure-by-design principles throughout project delivery and technology implementation.
- Partner with technology teams to ensure appropriate security controls are embedded into new solutions.
Cyber Defence & Operational Resilience
- Oversee the organisation’s incident response and cyber crisis management capabilities.
- Strengthen business continuity, disaster recovery and cyber resilience programmes.
- Drive vulnerability management initiatives and continuous improvement across the security landscape.
Data Protection
- Provide strategic oversight of information protection, data governance and privacy programmes.
- Ensure appropriate controls are in place to safeguard sensitive business and customer information.
Third-Party Security
- Establish governance for supplier and third-party cybersecurity risk.
- Ensure security requirements are incorporated throughout the vendor lifecycle.
Leadership & Stakeholder Management
- Lead, mentor and develop a high-performing cybersecurity function.
- Build strong partnerships across business, technology, risk and audit teams.
- Present cybersecurity strategy, enterprise risks and key initiatives to executive management.
Requirements:
- Degree in Computer Science, Information Security, Information Technology or a related discipline.
- 15+ years of cybersecurity experience, with a proven track record leading enterprise security programmes within large and complex organisations.
- Strong expertise in cybersecurity strategy, governance, risk management, security architecture, incident response and operational resilience.
- Good understanding of industry frameworks and standards.
- Experience working across both IT and OT environments or other critical infrastructure sectors would be advantageous.
To apply:
If you’re interested to apply or find out more, please share across your CV or reach out to Chen Yi at cy@kerryconsulting.com for a discussion. Due to anticipated high volume of applications, we regret to inform that only shortlisted candidates will be notified.
Reg: R1876389
Lic: 16S8060
![]()
