Director, Cybersecurity Policy, Risk & Compliance

Key Highlights:

• Permanent Position
• Opportunity to work with a dynamic, industry-leading company
• Up to $19,000 + Bonus + comprehensive Benefits package

We are hiring a strategic cybersecurity and risk leader to shape and implement enterprise-wide policies and governance frameworks for a critical public sector environment in Singapore.

This is a leadership opportunity that involves designing and operationalizing cybersecurity and technology risk standards across a large-scale regulated ecosystem. You'll lead a team in delivering control design, policy adherence, and stakeholder engagement to elevate sector-wide cybersecurity maturity.

The ideal candidate brings deep experience in cybersecurity governance, policy implementation, and regulatory engagement, particularly within complex or regulated environments.

Responsibilities:

• Lead the development and lifecycle management of cybersecurity and technology risk policies, standards, and control libraries across a multi-entity public sector ecosystem.
• Engage with senior-level stakeholders to contextualize and align policies with operational realities.
• Oversee control design and attestation processes, ensuring robust compliance tracking and deviation management.
• Drive policy awareness and risk culture initiatives through education campaigns, self-assessment programs, and governance innovation.
• Analyze evolving risks and proactively update frameworks to reflect new technologies, threats, and regulatory shifts.
• Build strong relationships across CIO, CISO, and governance functions in both central and decentralized environments.
• Lead and manage a high-performing team of governance professionals.

Requirements:

• Min 15 years of experience in cybersecurity, risk and compliance within large enterprises or public sector environments.
• Deep familiarity with IM8, NIST CSF, COBIT, ISO27001, or equivalent frameworks.
• Proven ability to translate policy into actionable control programs across diverse stakeholder groups.
• Strong domain knowledge in cybersecurity governance, technology risk, and regulatory alignment.
• Recognized certifications such as CISSP, CISA, CRISC, CGEIT, or equivalent.
• Exceptional leadership and stakeholder management skills, comfortable with influencing across matrixed, senior-level environments.

Interested applicants, please submit updated resume in MS format via the Apply button.

Position and remuneration will be commensurate with skills and experience.
We regret that only short-listed candidates will be contacted.

Careerally Pte Ltd | EA Licence: 24C2215
EA Registration No: R1874897