Senior Manager, Cyber Security & Resilience

At AIA we've started an exciting movement to create a healthier, more sustainable future for everyone.

If you believe in developing a better tomorrow, read on.

About the Role

This role leads the organization's cybersecurity strategy, ensuring the protection of systems, data, and operations. It oversees advanced threat detection, coordinated incident response, and comprehensive vulnerability management. The role also drives application security initiatives, including penetration testing and secure development practices. In addition, it ensures compliance with regulatory standards and manages the implementation of key security technologies. The manager fosters a strong security culture across teams and collaborates with stakeholders to align security initiatives with broader business objectives.

Roles and Responsibilities:

• Lead the development and execution of the organization's cybersecurity strategy to safeguard systems, data, and operations.

• Manage advanced threat detection, coordinated incident response, vulnerability management, and application security initiatives, including penetration testing and secure development practices.

• Ensure compliance with cybersecurity regulations and standards, with a strong understanding ofBank Negara Malaysia's Risk Management in Technology (RMiT)guidelines-particularly in areas such as access control, authentication, data protection, and third-party risk.

• Oversee the implementation and continuous optimization of key security technologies across infrastructure, cloud environments, and applications.

• Develop and maintain key performance indicators (KPIs) and control measures to monitor the effectiveness of cybersecurity programs and drive continuous improvement.

• Promote cybersecurity awareness and best practices across teams, fostering a culture of shared responsibility and vigilance.

• Collaborate with business and technology stakeholders to align security initiatives with organizational goals and overall risk appetite.

Minimum Job Requirements:

Education & Certification

• Bachelor's degree in Cybersecurity, Information Technology, or a related field.

• Professional certifications such as CISSP, CISM, or equivalent are strongly preferred.

Experience

• Minimum 4-8 years of relevant experience in cybersecurity, with at least 3 years in a leadership or managerial role.

• Proven track record in managing threat detection, incident response, vulnerability management, and application security.

Technical & Regulatory Knowledge

• Strong understanding of cybersecurity frameworks (e.g., NIST, ISO 27001) and technologies (e.g., SIEM, EDR, IAM).

• Solid grasp of regulatory requirements, especiallyBank Negara Malaysia's RMiTguidelines.

Leadership & Communication Skills

• Ability to lead cross-functional teams and influence stakeholders at all levels.

• Strong communication skills to convey technical risks and strategies to non-technical audiences.