I. Cybersecurity & Risk
• Own the bank's information security framework and ensure adherence to ISO 27001, PCI DSS, and local banking regulations (e.g., SBV, MAS, Bank Negara).
• Define and enforce policies for access control, endpoint security, and network segmentation.
• Oversee SOC operations, vulnerability management, and security incident response processes.
• Coordinate periodic penetration tests, audits, and DR drills.
II. Infrastructure Management
• Lead the design, deployment, and maintenance of secure and scalable IT infrastructure (on-prem & cloud).
• Oversee core systems (networking, storage, servers, virtualization, backups, DR).
• Collaborate with application and DevOps teams to ensure performance and availability of digital banking services.
• Manage vendor relationships, contracts, and SLAs for infrastructure and cloud services.
III. Governance & Reporting
• Develop and monitor KPIs for system uptime, incident response, patching cycles, and compliance posture.
• Prepare technical documentation, risk assessments, and reports for senior management and regulators.
• Contribute to IT strategy, annual planning, and budgeting.
IV. Team & Vendor Leadership
• Manage a team of network engineers, sysadmins,
IT Helpdesk and Cyber security analysts.
• Foster a culture of automation, accountability, and proactive monitoring.
• Train staff on security awareness and operational resilience.