Director, Security Projects

Requirements

Description and Requirements

Role Summary

Director Security Projects, Asia is responsible for endtoend leadership, governance, and delivery of the Asia Information Security strategic project portfolio. This role provides regional oversight across complex, multicountry security initiatives, ensures alignment with Global Security strategy, and drives consistent execution across security operations, governance, risk, and technology programs.

The role acts as the single point of accountability for largescale and highrisk information security initiatives in Asia, partnering closely with regional and global security leaders, technology teams, risk functions, and external vendors.

Key Responsibilities

Strategic Program Leadership

• Own and direct the Asia Information Security project and program portfolio, ensuring alignment with Global Security strategy and regional regulatory expectations.
• Translate strategic security objectives into executable roadmaps, milestones, and measurable outcomes.
• Provide executivelevel visibility on program health, risks, dependencies, and value realization.
  
  

Program & Portfolio Governance

• Establish and enforce project management, governance, and reporting standards across Asia Information Security initiatives.
• Oversee prioritization, sequencing, and funding alignment of security initiatives across multiple domains (e.g., Security Operations, Governance & Risk, Application Security, Infrastructure Security).
• Chair or represent Information Security in regional project governance forums, Architecture Review Board, and steering committees.
  
  

Delivery Oversight & Execution

• Direct multiple concurrent, complex programs covering areas such as:
• Information security transformation initiatives
• Regulatory and auditdriven remediation programs
• Security tooling and capability rollouts
• Regional adoption of global security platforms and controls
• Ensure delivery to scope, schedule, budget, and quality commitments, proactively managing delivery risks and issues.
  
  

Stakeholder & Executive Management

• Act as a trusted advisor to Security Leadership Team, providing clear, concise, and actionable updates
• Partner with Technology, Risk, Compliance, Audit, and Business stakeholders across Asia markets.
• Manage communications with senior leadership for critical risks, regulatory issues, and delivery escalations.
  
  

Team & Vendor Leadership

• Lead and mentor a team of project managers and program leads supporting Asia Information Security initiatives.
• Provide direction to internal, offshore, and thirdparty delivery teams.
• Oversee vendor performance, commercial governance, and delivery outcomes for securityrelated engagements.
  
  

Risk, Compliance & Control Focus

• Ensure security programs support compliance with regional regulations, internal policies, and audit requirements.
• Embed risk management, control assurance, and documentation standards into program execution.
• Drive consistent tracking and closure of security findings, remediation actions, and regulatory commitments.
  
  

Experience


Required Qualifications

• 12+ years of progressive experience in project, program, or portfolio management, with significant exposure to Information Security, Technology Risk, or Cybersecurity initiatives.
• Proven experience leading large, multicountry or regional programs in a complex enterprise environment.
• Demonstrated success managing executive stakeholders and steering committees.
  
  

Technical & Domain Knowledge

• Strong understanding of information security domains such as:
• Security operations and incident response
• Vulnerability management and remediation
• Identity & access management
• Data protection and security governance
• Familiarity with regulatory, audit, and risk management drivers in Asia markets.
  
  

Leadership & Communication

• Executivelevel communication and presentation skills.
• Strong people leadership, coaching, and matrixmanagement capability.
• Ability to influence without authority across regional and global teams.
  
  

Education & Certifications

• Bachelor's degree in Information Technology, Computer Science, Engineering, or related field.
• Preferred certifications (one or more): PMP, PgMP, CISSP, CISM, CISA, ITIL, SAFe, or equivalent
  
  

Key Success Measures

• Ontime, onbudget delivery of Asia Information Security strategic initiatives
• Improved transparency and predictability of the regional security portfolio
• Reduction in deliveryrelated risks impacting regulatory, audit, or security outcomes
• Strong stakeholder satisfaction across Asia and Global Security leadership
  
  

About MetLife


Recognized on Fortune magazine's list of the World's Most Admired Companies and Fortune World's 25 Best Workplaces, MetLife, through its subsidiaries and affiliates, is one of the world's leading financial services companies; providing insurance, annuities, employee benefits and asset management to individual and institutional customers. With operations in more than 40 markets, we hold leading positions in the United States, Latin America, Asia, Europe, and the Middle East.

Our purpose is simple - to help our colleagues, customers, communities, and the world at large create a more confident future. United by purpose and guided by our core values - Win Together, Do the Right Thing, Deliver Impact Over Activity, and Think Ahead - we're inspired to transform the next century in financial services. At MetLife, it's #AllTogetherPossible .Join us!