10393 - Security Strategy and Planning Head of Department (HOD)

About The Position

Requirements

• 10-15 years of progressive experience in information security, risk management, customer/vendor management and/or strategic operations.
• Bachelor's degree in Cybersecurity, Information Technology, Risk Management, Business Administration or a related discipline.
• Excellent stakeholder management, communication, and leadership skills.
• Demonstrated experience working across multi-disciplinary teams to achieve common objectives.
• Proficient in English for effective communication and coordination.

Nice To Haves

• Masters degree in Cybersecurity, Risk Management or Business Administration is preferred.
• Industry-recognized credentials such as PMP, PRINCE2, CISM, or CISSP are highly desirable.
• Familiarity with ISO 27001, NIST CSF, SOC2 Type II or similar security and risk management frameworks is an advantage.
• Bi-lingual in English and Korean language proficiency is preferred to support global coordination and communication.
• Background in cybersecurity consulting or advisory services, particularly in risk management, is a plus.

Responsibilities

• Security Strategy and Planning: With input from executive leadership, customers and enterprise partners, maintain the long-term strategic roadmap for the Information Security Department, ensuring alignment with business objectives and the changing threat landscape.
• Conduct risk assessments, threat analyses, and capability evaluations to inform strategy and resource prioritization.
• Lead the annual planning cycle for information security initiatives, ensuring integration with enterprise-wide planning processes.
• Establish and monitor departmental performance targets and ensure continuous improvement across all security domains.
• Project Management and Coordination: Oversee the end-to-end management of information security-related projects, ensuring on-time, within-scope, and on-budget delivery.
• Coordinate cross-functional project teams and align stakeholders across enterprise and business units.
• Track and report project milestones, risks, dependencies, and deliverables.
• Resource Planning and Management: Lead workforce and resource planning for the Security Department, including staffing forecasts and succession planning.
• Optimize deployment of internal and external resources to meet operational and strategic needs.
• Partner with HR and procurement to ensure the right mix of talent, technology, and vendors.
• Monitor staff development, training, and performance metrics to maintain high operational standards.
• Ensure time team reporting mechanisms are followed.
• Prepare resource utilization reports and evaluate options to gain additional efficiencies.
• Monitor delivery of vendor provided resourcing to ensure KPIs are being met.
• Budget Management: Monitor, and manage the Security Department's annual budget, ensuring financial accountability.
• Prepare financial forecasts, cost-benefit analyses, and expenditure reports for executive review.
• Identify efficiency opportunities and cost-saving initiatives without compromising service quality.
• Ensure compliance with financial governance policies and reporting standards.
• KPI and Customer Service Delivery Tracking: Design and manage a robust performance measurement framework for information security operations and customer service delivery.
• Define key performance indicators (KPIs) aligned with business objectives and information security service standards.
• Produce regular performance dashboards and reports for senior leadership and key stakeholders.
• Drive service excellence and continuous improvement through proactive monitoring and stakeholder feedback.