Cybersecurity Risk Management Lead-Regional

Location:**Malaysia**- Department: Security & Risk Management- Location: Malaysia- Team and Role Introduction:- We are seeking an experienced Cybersecurity Risk Management Lead to spearhead the development, implementation, and ongoing management of our organization's cybersecurity policies and risk management practices. This individual will play a crucial role in ensuring the company's digital assets and data remain secure while maintaining compliance with internal and external regulations.**Responsibilities**:- Design, develop & maintain comprehensive cybersecurity policies, standards, guidelines, and procedures.- Collaborate with IT and business units to align cybersecurity policies with business goals and objectives & train staff on new and updated policies and practices.- Conduct regular risk assessments and audits of the organization's information systems.- Identify potential risks and work with the IT department and other relevant teams to address and mitigate risks.- Develop and maintain a cybersecurity risk register, ensuring all risks are properly categorized, prioritised, and tracked.- Advise on risk tolerance and risk acceptance for the organization.**Job Requirements**- Requirements/Qualifications(must have):- Bachelor's or Master's degree in Information Technology, Cybersecurity, or a related field.- At least 10 years of experience experience in cybersecurity with a focus on policy development and risk management.- Strong understanding of IT & Cybersecurity principles controls and strategies.- Excellent communication skills, both written and verbal, with the ability to communicate complex compliance matters to non-technical stakeholders.- Fluent in English verbal and written- Relevant certifications such as CISSP, CISM, CRISC, or similarRequirements/Qualifications(good to have):- Previous experience in a similar role in a multinational organization.- Proven experience in risk management & policy management of cloud services.- Knowledge of cybersecurity risks and information security standards.