Regional Delivery Leader

Role: Cybersecurity Programme Manager

Role Overview:

The Cybersecurity Programme Manager is responsible for end-to-end ownership of enterprise-wide cybersecurity programmes, ensuring strong alignment with business strategy, regulatory requirements, and organizational risk appetite.

This role leads multiple complex security initiatives, drives cross-functional execution, and provides executive-level governance, reporting, and risk management across regions.

The position requires senior programme leadership, deep cybersecurity domain expertise, and proven experience managing large-scale, multi-vendor, multi-region security programmes.

Key Responsibilities

Strategic Programme Leadership

Define, plan, and execute enterprise cybersecurity programmes and roadmaps aligned with business objectives and cyber risk strategy.

Translate CISO and board-level security objectives into actionable, measurable programme initiatives.

Manage interdependencies across multiple security domains, including SOC, IAM, GRC, Cloud Security, Application Security, and OT/ICS Security.

Programme & Portfolio Management

Lead multiple concurrent cybersecurity programmes, including:

SOC transformation and MDR rollouts

SIEM, SOAR, and UEBA implementations

Identity & Access Management (PAM, IGA)

Cloud security and Zero Trust initiatives

Regulatory and compliance programmes (ISO 27001, NIST, PCI DSS, GDPR, etc.)

Establish programme governance models, milestones, KPIs, and success metrics.

Drive programme prioritization, resource planning, and budget management across portfolios.

Governance, Risk & Compliance

Ensure cybersecurity programmes align with Enterprise Risk Management (ERM) frameworks and regulatory obligations.

Support audits, regulatory reviews, and executive risk reporting.

Track and manage cyber risks, issues, and remediation plans across programmes.

Stakeholder & Executive Management

Act as a trusted advisor to senior leadership including CISO, CIO, CTO, Risk, Legal, and Business stakeholders.

Lead executive steering committees and deliver clear, concise programme status updates.

Manage stakeholder expectations and resolve conflicts across business, IT, and security teams.

Vendor & Delivery Management

Oversee system integrators, MSSPs, and technology vendors to ensure delivery quality and adherence to timelines.

Manage vendor contracts, SLAs, and performance metrics.

Drive value realization from cybersecurity investments.

Financial & Resource Management

Own programme budgets, forecasts, and financial tracking.

Optimize cost efficiency, delivery performance, and Return on Security Investment (ROSI).

Build and lead high-performing programme and delivery teams across regions.

Incident & Crisis Programme Support

Support major cyber incident response programmes, post-incident remediation, and regulatory reporting.

Lead tabletop exercises, crisis simulations, and cyber resilience initiatives.

Required Experience & Skills

Experience

17+ years of experience in IT, Cybersecurity, or Technology programmes.

10+ years leading large-scale cybersecurity or enterprise technology transformation programmes.

Proven experience delivering complex, multi-year, multi-million-dollar cybersecurity initiatives.

Experience in regulated industries (banking, healthcare, aviation, energy, telecom, government, or critical infrastructure) is strongly preferred.

Technical & Domain Expertise

Strong understanding of:

SOC operations, SIEM, SOAR, and Threat Intelligence

Identity & Access Management (IAM, PAM, IGA)

Cloud Security (AWS, Azure, GCP)

Application Security and DevSecOps

OT / ICS Security (preferred)

Familiarity with security frameworks:

NIST CSF

ISO 27001

CIS Controls

COBIT

Programme & Leadership Skills:

Expert-level programme and portfolio management capabilities.

Strong risk, dependency, and stakeholder management skills.

Excellent executive communication, presentation, and reporting abilities.

Ability to operate effectively at both strategic and execution levels.