Country Cyber Security & Privacy Officer
Aloha Consulting GroupACG_3308_JOB
Our client is a leading technological company, seeking experienced professionals to join its organization.
1. Regulatory Insight & Strategic Planning
Monitor and analyze local cyber security and data protection laws, regulations, and enforcement trends.
Understand security and privacy expectations from governments, regulators, customers, and industry bodies.
Incorporate regulatory and industry requirements into local operational strategies, budgets, and action plans.
2. Localization of Policies & Processes
Deploy global security and privacy frameworks at the local level.
Adapt internal policies, directives, and operational processes to local legal and business environments.
Provide oversight, guidance, and coordination to ensure effective execution across teams.
3. Compliance Management & Risk Mitigation
Identify cyber security and privacy risks using structured risk assessment methodologies.
Design and implement compliance programs and risk mitigation measures.
Establish and maintain crisis management and incident response plans, and lead appropriate response actions when incidents occur.
4. External Engagement & Trust Development
Identify and manage relationships with key external stakeholders, including regulators, customers, industry associations, and standards bodies.
Collaborate with internal business teams to set up regular communication mechanisms with external parties.
Support and organize the execution of engagement and communication initiatives.
5. Organizational Development & Capability Enhancement
Establish and strengthen local cyber security and privacy governance structures.
Promote awareness and enhance professional competencies related to security and privacy compliance.
Evaluate and drive continuous improvement of security and privacy tools, platforms, and capabilities provided by headquarters.
Requirements
Bachelor’s degree or higher in Cyber Security, Information Security, Computer Science, Information Technology, or a related discipline.
Solid understanding of major cyber security and data privacy standards, frameworks, and certification systems.
Strong ability to interpret and assess laws, regulations, and policy requirements.
Industry-recognized certifications such as CISSP, IAPP, or equivalent are considered an advantage.
Ability to deeply understand local regulatory landscapes and organizational security/privacy expectations, and translate them into actionable business strategies.
Capable of representing the organization as a subject-matter spokesperson.
Skilled in delivering presentations and engaging effectively with regulators, customers, industry groups, and standards organizations.
Results-driven with strong cross-functional coordination and execution capabilities across multiple departments.
Proactive learner who can identify personal capability gaps and close them efficiently through self-study, training, and practical application.
Strong understanding of business operations and priorities, with the ability to balance security and privacy risk management against business objectives.
Experience Requirements:
Demonstrated success in cyber security and data privacy roles within large enterprises or regulatory bodies in the local ICT sector, with recognized industry impact;
or Extensive business management experience within large multinational ICT organizations (e.g., sales, delivery, services, public relations, or compliance functions).
Proven experience in external stakeholder communication, including engagement with government agencies, media, industry organizations, and customers.
Successful track record in team leadership and cross-cultural management is preferred.
Ability to influence, drive initiatives, and create momentum within regional or country-level organizations.
Contact: Nga Nguyen, Thao Phan
Due to the immense number of applications, only shortlisted candidates will be contacted.