VP, Cybersecurity & Governance

About the role

The Vice President of Cybersecurity & Governance will lead the organisation's security strategy, ensuring compliance with regulatory requirements and protecting critical information assets across both IT and OT environments. This senior leader will drive policy development, risk management, and continuous security awareness throughout the enterprise.

Key responsibilities

• Lead sector‑wide cybersecurity programmes and represent the organisation in external and internal forums.
• Develop, maintain and enforce security policies, procedures and standards (e.g., CCoP 2.0, CP8, ISO 27001).
• Oversee risk and regulatory reporting, security audits, vulnerability assessments and penetration testing.
• Manage cybersecurity tools, VAPT services and security operations, including incident handling and crisis management.
• Design and test Business Continuity and Disaster Recovery plans for IT and OT Critical Information Infrastructure.
• Coordinate with vendors, budgeted projects and internal stakeholders to enhance the security posture.
• Provide training and awareness programs for employees and contractors.

Required profile

• Degree in Computer Engineering or equivalent, with formal training in Cybersecurity, Information Security or Forensics.
• 15‑25 years of full‑time experience in cybersecurity policy, incident response, regulatory compliance and risk management.
• Professional certifications such as CISSP, CISM, CISA, CEH or CRISC.

Required skills

• Vulnerability assessment and penetration testing (red/purple teaming).
• Security audits and compliance management.
• Incident response and security operations centre (SOC) management.
• Risk management and governance frameworks.
• Business Continuity Planning (BCP) and Disaster Recovery Planning (DRP).
• Administration of cybersecurity tools and VAPT services.

What we offer

• Strategic leadership role influencing enterprise‑wide security posture.
• Opportunity to shape cybersecurity governance across IT and OT domains.
• Collaboration with senior stakeholders and regulatory bodies.