Role: AVP Cybersecurity

Overview

As the AVP of Cybersecurity Operations - you will lead the operational execution of our global cybersecurity strategy, ensuring service excellence, resilience, and client trust. This role demands a leader who combines operational rigor, technical depth, and strong business acumen. You will be accountable for the effective delivery of cybersecurity services, operational governance, and continuous improvement while building scalable processes that enable growth and protect critical assets.

You will partner with senior executives, business leaders, and technical teams to ensure that cybersecurity operations are efficient, resilient, compliant, and aligned with organizational priorities.

Key Responsibilities:

1. Cybersecurity Strategy and Planning:

- Develop and maintain the organization's cybersecurity strategy, roadmap, and long-term vision in alignment with business goals and risk tolerance.

- Provide strategic guidance and recommendations to senior management on cybersecurity investments, initiatives, and priorities.

2. Policy and Procedure Development:

- Develop, review, and update cybersecurity policies, standards, and procedures to establish a comprehensive security framework.

- Ensure compliance with regulatory requirements, industry standards, and best practices (e.g., NIST, ISO 27001, GDPR, HIPAA).

3. Risk Management:

- Conduct risk assessments and security reviews to identify vulnerabilities, threats, and risks to the organization's systems, networks, and data.

- Develop risk mitigation strategies and controls to minimize exposure to cyber threats and protect critical assets.

4. Security Architecture and Design:

- Design and implement secure architectures, network configurations, and infrastructure solutions to mitigate security risks and enhance resilience against cyber-attacks.

- Evaluate emerging technologies and trends to recommend innovative security solutions and enhancements.

5. Incident Response and Threat Management:

- Lead incident response activities, including detection, analysis, containment, eradication, and recovery from cybersecurity incidents and breaches.

- Develop incident response plans, playbooks, and procedures to ensure an effective and coordinated response to security incidents.

6. Security Awareness and Training:

- Develop and deliver cybersecurity awareness programs, training sessions, and workshops to educate employees on security best practices, policies, and procedures.

- Promote a culture of security awareness and accountability throughout the organization.

7. Security Testing and Assessment:

- Coordinate and conduct security assessments, penetration tests, and vulnerability scans to identify weaknesses and gaps in the organization's defences.

- Collaborate with internal teams and external partners to remediate identified vulnerabilities and improve security posture.

8. Compliance and Audit Support:

- Support compliance efforts by ensuring adherence to regulatory requirements and industry standards through ongoing monitoring, assessment, and reporting.

- Prepare for and participate in cybersecurity audits, assessments, and regulatory inspections.

Qualifications & Experience:

- Must have at least 12 - 15 years of experience in Security domain.

- Bachelor's degree in computer science, Information Security, or related field (or equivalent experience). Advanced degree or relevant certifications (e.g., CISSP, CISM, CEH, GIAC) preferred.

- Proven experience as a cybersecurity professional with in-depth knowledge of cybersecurity principles, practices, technologies, and methodologies.

- Strong understanding of regulatory requirements, compliance frameworks, and industry standards related to cybersecurity and data protection.

- Excellent analytical, problem-solving, and decision-making skills, with attention to detail and a proactive approach to identifying and mitigating risks.

- Effective communication and interpersonal skills, with the ability to convey complex technical concepts to non-technical stakeholders and influence decision-making at all levels of the organization.

- Experience leading and managing cybersecurity projects, teams, and initiatives in a dynamic and fast-paced environment.

- Experience of working in Third Party Cybersecurity services

- Abreast with latest tools & technologies (EDR, MDR, XDR, SIEM, SOAR etc)

- Existing experience with latest market products (SentinelOne, CrowdStrike, Microsoft Defender, Splunk, Microsoft Sentinel etc)

- Ability to stay abreast of emerging threats, vulnerabilities, and trends in cybersecurity and apply this knowledge to enhance security posture.

- Commitment to continuous learning and professional development to keep skills and knowledge current in a rapidly evolving cybersecurity landscape.

Leadership Competencies:

- Operational Excellence: Executes with discipline, metrics-driven, and customer-focused.

- Technical Credibility: Strong understanding of cybersecurity tools, practices, and emerging trends.

- People Leader: Builds teams that are engaged, skilled, and succession ready.

- Business Partner: Aligns cybersecurity operations with enterprise strategy and client expectations.

- Innovator: Embeds automation, analytics, and forward-looking practices into operations.