Vice President - Information Security, Security Tool Management & Optimization

Job Summary

SGX is seeking Vice President/Senior Vice President (Information Security) lead to shape and deliver stability to our Security Platforms. The Security Tools Optimization & Engineering Specialist is responsible for ensuring that all deployed cybersecurity tools across the organization are fully operational, optimally configured, and continuously delivering security value. This role prevents tools from becoming underutilized “white elephants” by proactively tuning, enabling, and validating features to maintain a strong, modern, and effective security posture.

The candidate will possess strong technical expertise in security platforms, hands-on operational experience, and an engineering mindset focused on maximizing tool performance and return on investment. He/she must demonstrate ability to think strategically about SGX business and operations challenges and possess a keen eye for control improvement through innovative use of technology. The candidate also needs to manage both internal and external customers well, drive discussions with senior management, and have a sound process and technical background to engage the Technology teams.

Job Responsibilities

Security Tool Management & Optimization

• Continuously monitor, tune, and optimize all deployed security technologies (e.g., EDR, SIEM, SOAR, vulnerability scanners, IAM tools, cloud security platforms, email security gateways).
• Ensure that all relevant features, detection rules, integrations, and automation capabilities are properly enabled and functioning.
• Perform regular health checks on tools to ensure completeness of data ingestion, sensor coverage, and system performance.
• Identify gaps or inefficiencies in tool usage and drive enhancements or corrective actions.
• Direct, drive process and documentation improvement in platform operations, escalation procedures, and workflows.
• Act as an escalation point for key production or platform related issues.
• Support and drive all related governance and audits initiatives for Security Tools Operations.
• Vendors management – To review deliverables from managed service provide and performance measurement

Proactive Review & Feature Enablement

• Stay updated on product updates, new features, and best practices from vendors, applying them to strengthen defenses.
• Develop and execute tool enhancement roadmaps to ensure the organization is always operating at an optimized and modernized security level.
• Conduct periodic reviews to validate that tools continue to meet business, regulatory, and threat landscape requirements.

Integration & Engineering

• Integrate security tools with other systems (e.g., SIEM, ticketing platforms, CMDB, SOAR) to enable automation and improve operational synergy.
• Work closely with Engineering, Infrastructure, Cloud, and SOC teams to ensure smooth deployment and maintenance of sensors, agents, and connectors.

Vendor & Stakeholder Collaboration

• Act as the technical owner for assigned security tools, managing vendor relationships and coordinating feature implementations or troubleshooting efforts.
• Work with internal stakeholders to ensure tool outputs support detection use cases, incident response, audits, and compliance programs.
• Manage a team with members located at onshore and offshore locations.
• Act as an escalation point for key production or platform related issues.

Expectations:

• Sense of urgency for all urgent and important matters and accountable to decision made
• Clear vision in mind to innovate and streamline the operations to the future state
• Passion to deliver sustainable solutions and continued improvement in control and risk mitigation.
• Oversee the change management and business-as-usual processes for SGX security platforms, such as vulnerability, system health, patch status, and operations related tasks.
• Good discipline in timely submission and reporting key metrics and status.

Job Requirements

Role Requirements:

• At least 5 to 10 years of relevant experience, preferably in financial services or asset management industries, with a minimum of 3 years in cybersecurity platforms.
• In-depth knowledge and experience in information security policy and principles.
• Experience in MAS technology related guidelines such as Technology Risk Management Guidelines, Cyber Hygiene, Outsourcing guidelines etc.
• Strong technical knowledge of common security tools (e.g., EDR, SIEM, SOAR, XDR, email security, vulnerability management, cloud security).
• Experience tuning detection rules, configuring integrations, and conducting tool performance optimization.
• Demonstrate ability to operate in diverse environments and cultures and enjoys working in challenging and fast-paced environment.
• Self-initiated, meticulous, versatile, analytical and inquisitive.
• Strong communication and presentation skills to wide and diverse audiences.

Preferred Skills:

• Certifications such as CISSP, CISM, GIAC GCIA/GSEC, Microsoft Security certifications, or equivalent.
• Experience with cloud platforms (Azure, AWS, GCP) and cloud-native security tools.
• Hands-on scripting or automation skills (Python, PowerShell, APIs