Regional Information Security Officer (APAC)

MAIN PURPOSE

• Ensuring effective threat detection, incident response, and compliance across the enterprise, while maintaining strong governance and operational alignment with external security service providers.

• Oversee the organization’s cybersecurity posture and manage the performance of the Global Security Operations Centre (GSOC) vendor.

KEY RESPONSIBILITIES

Security Operations Oversight

• Lead and coordinate daily security operations in partnership with the GSOC vendor.

• Monitor and validate threat intelligence, alerts, and incident reports generated by the GSOC.

• Ensure timely escalation, investigation, and resolution of security incidents.

GSOC Vendor Management

• Serve as the primary point of contact for GSOC vendor relationship and performance.

• Define and enforce SLAs, KPIs, and incident response protocols.

• Conduct regular service reviews, performance audits, and continuous improvement initiatives.

• Ensure GSOC services align with organizational security policies and business requirements.

Threat Detection & Response

• Oversee the configuration and tuning of SIEM platforms (e.g., Microsoft Sentinel, Splunk).

• Validate use cases, correlation rules, and threat hunting activities.

• Coordinate incident response efforts, including containment, eradication, and recovery.

Security Governance & Compliance

• Develop and maintain security policies, standards, and procedures.

• Ensure compliance with regulatory frameworks such as Shiseido Security Framework, ISO 27001, NIST, GDPR, and PDPA.

• Support internal and external audits and manage remediation of findings.

Vulnerability & Risk Management

• Oversee vulnerability scanning, patch management, and risk assessments.

• Collaborate with IT and application teams to remediate identified risks.

• Maintain a risk register and report on risk posture to senior leadership.

Security Awareness & Training

• Promote a culture of security awareness through training programs and phishing simulations.

• Provide guidance to business units on secure practices and data protection.

Reporting & Documentation

• Prepare regular reports on security metrics, incident trends, and GSOC performance.

• Maintain documentation for incident response plans, playbooks, and escalation procedures.

Security Innovation & Trends

• Monitor emerging threats and technologies.

• Recommend strategic investments in security innovation.

Ad hoc Support

• Additional information security-related tasks given by the supervisor or management team.

• Bachelor’s degree in Information Security, Computer Science, or related field.

• 5+ years of experience in cybersecurity operations, with at least 2 years in vendor management.

• Strong understanding of SOC operations, SIEM platforms, and threat intelligence.

• Experience with Microsoft security stack (Defender, Sentinel, Purview) is a plus.

• English: excellent communication

• Certifications such as CISSP, CISM, GIAC, or ISO 27001 Lead Implementer preferred.

• Ability to travel within the APAC region as needed.