Head of Incident Response

Get to know our Team:

Grab is seeking a highly experienced security leader to lead our Incident Response team and collaborate with leadership within the organization and across all the countries we operate in, on the successful creation and execution of company-wide digital and product security programs.

Get to know the Role:

As a centralized function overseeing a team of full time employees and contractors, this role is responsible for a critical part of our security strategy to protect our business from security threats and cyber-attacks. There will be a need for both holistic and localized security strategies as we continually develop new services and solutions that will impact hundreds of millions of people in Southeast Asia.

This role will ideally be based in Singapore.

Our leadership team is driven, collaborative, proactive and humble, so we are looking for leaders that will excel and thrive in an environment where decisions are made as a group and with candid feedback. The right person is eager to support their peers in a fast-paced, highly dynamic environment while always thinking of creative ways to innovate how Grab operates as an organization.

The day-to-day activities:

• Implement a cohesive strategy for the development of incident response policies; proactively identify critical security issues and recommend risk-reduction solutions.

• Lead critical incident response efforts, putting threats and incidents into business context.

• Effectively communicate and educate various internal and external stakeholders.

• Assess the effectiveness of existing processes, procedures, controls, and safeguards to prevent cyber-security breaches across the customers infrastructure.

• Build out long term security strategies, initiatives and new capabilities

• Set in place clear processes, best practices and the means to measure success.

• Stay ahead of the global threat landscape and the technologies used to defend Grab’s corporate assets.

• Recruit, hire, and retain a top performing and diverse team of security professionals.

The must haves:

• 10+ years of experience in a combination of risk management, information security and information technology fields, with extensive exposure to: incident response,, offensive security threat intelligence, and fixing gaps in systems. Additional responsibilities may include internal investigations, digital forensics, and malware analysis)

• Track record of being part of and building inclusive and high quality security organizations.

• Experience working in a fast-paced, fluid dynamic technology company driving cyber security transformation and solid track record of delivery.

• Proven experience building effective working relationships with high-level internal and external stakeholders.

• Experience dealing with internal / external auditors.