Regional CISO

Job Description Regional Chief Information Security Officer (CISO) Reporting To: Global CISO About the Role We're looking for a bold, high-caliber cybersecurity leader ready to fast-track into a full CISO role within six months. This role is ideal for a dynamic security professional with deep technical expertise, strong customer presence, and the ambition to drive enterprise-wide security transformation. Key Responsibilities 1. Security Strategy & Governance - Shape and execute enterprise security strategy. - Develop and maintain security policies, standards, and frameworks. - Build the security roadmap and maturity model for continuous improvement. 2. Risk Management & Compliance - Run end-to-end risk assessments and drive mitigation plans. - Ensure compliance with ISO 27001, GDPR, HIPAA, RBI, and other regulatory standards. - Lead vendor/third-party risk assessments and due-diligence. 3. Security Operations & Incident Response - Oversee daily security operations, monitoring, and threat response. - Lead incident response, RCA, and post-incident improvements. - Collaborate with SOC teams and external threat intelligence partners. 4. Cloud & Infrastructure Security - Secure AWS, Azure, and GCP environments with strong architectural governance. - Embed security in infrastructure, DevOps, and CI/CD pipelines. 5. Identity & Access Management - Drive IAM strategy, least-privilege controls, MFA, SSO, and PAM initiatives. 6. Security Awareness & Training - Lead security awareness programs and phishing simulations. - Deliver training for technical and non-technical stakeholders. 7. Customer & Stakeholder Engagement - Represent security in customer meetings, audits, and RFPs. - Deliver impactful security presentations to clients and leadership. - Engage directly with customers to build trust and articulate security value. 8. Leadership & Mentorship - Mentor and upskill junior team members. - Lead cross-functional security initiatives. - Shadow executive decisions to prepare for transition into the CISO role. MUST HAVE TECHNICAL & LEADERSHIP CAPABILITIES : A. Cloud & SaaS Expertise (Non-Negotiable) - Deep AWS security (IAM, VPC, KMS, encryption, GuardDuty, WAF, multi-region security). - Multi-tenant SaaS security experience. - Strong AppSec, SAST/DAST, API/microservices security. - Solid DevSecOps and CI/CD integration skills. B. Customer-Facing Technical Leadership - Proven ability to defend SaaS architecture to enterprise CISOs. - Experience with RFPs, due diligence, audits, and regulatory discussions. - Strong communicator capable of translating deep technical concepts. C. Hands-On Operator in a Lean Team - Can independently build policies, decks, and security artefacts. - Able to make informed engineering decisions without heavy support. - End-to-end incident response expertise. D. SaaS / Product DNA - Experience in SaaS, product engineering, or cloud-native companies. - (Not a fit: candidates with only large IT services background lacking real technical ownership.) Qualifications - BE/B.Tech with 15+ years in IT/Cybersecurity. - 35 years in security leadership roles. - 35 years in customer-facing security engagements. Preferred Certifications - CISSP, CISM, CCSP - ISO 27001 Lead Implementer/Auditor - CEH (optional but valued) #CyberSecurity #CISO #Cyber #Leadership #InfoSecJobs #CloudSecurity #SaaSSecurity #AWSecurity #SecurityLeadership #CyberCareers #TechLeadership #DevSecOps #AppSec #SecurityOperations #RiskManagement #ComplianceJobs #CISORole #HiringNow #SecurityEngineering #ProductSecurity #SecurityTalent #CyberHiring