This page was automatically translated and may contain errors. View in English.
H

Chief Information Security Officer (CISO)

Hoya

Singapore · 全职

抢先申请

经验
10-15岁
薪水
职位空缺
1
发布
1天前
工作模式
在办公室
学历
Bachelor's or master's degree
恢复
需要申请

你的工作地点

职位描述

About HOYA Group

Established in 1941 in Tokyo, HOYA Corporation is an international technology and medical technology firm recognized for supplying innovative products in healthcare and IT sectors. The company offers medical devices including eyeglasses, endoscopes, lenses, implants, surgical tools, and disinfection solutions. In IT, it develops optical lenses, photomasks, and components critical to semiconductor and cloud storage industries. With a global presence of over 150 offices and employing around 37,000 people, HOYA maintains a diverse multinational workforce.

Position Overview

The Chief Information Security Officer (CISO) is tasked with defining and guiding the enterprise-wide vision, strategy, and programs that protect information assets and technologies. This leadership role involves managing cybersecurity at the global scale, ensuring compliance with regulations, managing risk, and preparing for incident responses. The CISO is pivotal in embedding a security-aware culture throughout the organization.

Key Relationships

  • Internal Collaborations with division technology leaders, senior executives, and cross-functional teams driving transformation
  • External Engagements with regulatory agencies, industry groups, and external partners

Primary Responsibilities

  • Craft and implement a comprehensive cybersecurity strategy aligned with business objectives
  • Drive the creation and enforcement of global information security policies and standards
  • Advise executive leadership on cybersecurity issues and developments
  • Manage enterprise-wide information risk programs ensuring regulatory compliance (e.g., NIST CSF, ISO 27001, GDPR)
  • Lead audits, assessments, and regulatory reviews both internally and externally
  • Oversee daily operations of security monitoring, incident detection, and response activities
  • Guide the security operations center and establish incident response and crisis communication mechanisms
  • Define secure architecture principles integrating zero-trust, cloud security, and modern access controls such as SASE and IAM
  • Evaluate and select security technologies including SIEM, vulnerability management, and data loss prevention tools
  • Develop and lead a high-performing cybersecurity team fostering accountability and engagement
  • Promote a pervasive culture of security awareness and responsibility
  • Collaborate with leadership and stakeholders to integrate security priorities into business processes
  • Ensure accuracy and executive-level quality of security analysis and communications
  • Build foundational security capabilities and governance to establish a sustainable and scalable security function
  • Lead assessment and oversight of security postures of third-party vendors; enforce security requirements in contractual agreements

Key Performance Objectives

  • Reduce cybersecurity incident rates annually
  • Improve Mean Time to Detect (MTTD) and Mean Time to Respond (MTTR) to incidents
  • Achieve high completion rates for employee security training
  • Maintain audit success without major findings
  • Ensure compliance with patch management SLAs
  • Advance maturity levels per frameworks like NIST CSF
  • Build executive and board confidence in security posture
  • Enhance incident response readiness and conduct tabletop exercises
  • Ensure high stakeholder satisfaction and effective cross-functional collaboration
  • Strengthen leadership and create a cohesive, proficient security team
  • Deliver precise and polished security reports to senior leadership
  • Develop foundational processes and controls for a sustainable security organization

Qualifications

  • Bachelor's or master's degree in fields such as Business or Management
  • Strong preference for certifications including CISSP, CISM, CISA, or CCISO
  • 10 to 15 years of escalating responsibility in cybersecurity or IT risk management roles
  • Demonstrated leadership in managing global cybersecurity programs across complex environments
  • Proven expertise in crisis response and recovery from cyber incidents
  • In-depth knowledge of modern security architecture, cloud/hybrid environments, and compliance
  • Detail-oriented with an emphasis on quality and accuracy
  • Exceptional communication skills and ability to build trust and confidence among peers and stakeholders
  • Experienced leader capable of nurturing a motivated, collaborative cybersecurity team

如果您希望收到回复,请留下您的信息——我们不会将您的信息用于其他用途。

点击浏览拖放,或 粘贴 截图

PNG、JPG、GIF、MP4、WebM、MOV 格式 · 每个文件最大 20MB · 最多 5 个文件

🤖
在线·即时人工智能帮助