CISO, Director

Why Join PayNet?

At PayNet, we don’t just power Malaysia’s digital payments ecosystem — we shape its future. As a national payments network, we are trusted to deliver secure, innovative, and inclusive financial infrastructure. Joining PayNet means becoming part of a purpose-driven organization that values integrity, collaboration, and forward-thinking leadership.

Role Summary

The Director, CISO Office will lead PayNet’s cybersecurity strategy, ensuring robust data protection, regulatory compliance, and enterprise-wide cyber risk management. This role is pivotal in safeguarding the integrity of Malaysia’s financial infrastructure and fostering a security-first culture across the organization.

You will serve as a strategic advisor to senior leadership, driving innovation in cyber resilience, incident response, and regulatory engagement, while embedding security into every layer of PayNet’s operations.

Key Responsibilities

Cybersecurity Strategy & Governance

• Design and execute a cybersecurity roadmap aligned with PayNet’s strategic goals.
• Establish governance frameworks and policies to meet regulatory and industry standards.
• Report on cybersecurity posture and performance to executive leadership.

Cyber Risk Management

• Identify, assess, and mitigate risks across digital assets and infrastructure.
• Maintain a dynamic cyber risk register and implement proactive controls.

Data Protection & Privacy Compliance

• Ensure compliance with GDPR, PDPA, and other relevant data protection laws.
• Lead organization-wide data privacy initiatives and awareness campaigns.

Incident Response & Crisis Management

• Develop and lead the incident response framework.
• Coordinate cross-functional crisis response and conduct regular simulations.

Security Awareness & Training

• Champion a security-first mindset through tailored awareness programs.
• Monitor effectiveness and continuously improve training initiatives.

Threat Intelligence & Monitoring

• Stay ahead of emerging threats and attack vectors.
• Collaborate with industry peers and regulators to share intelligence.

Technology & Security Architecture

• Integrate security principles into IT and digital transformation projects.
• Evaluate and recommend advanced security technologies.

Vendor & Third-Party Risk Management

• Conduct cybersecurity assessments for vendors and partners.
• Enforce compliance with PayNet’s security standards.

Audit & Regulatory Engagement

• Act as the primary liaison with regulators on cybersecurity matters.
• Lead internal and external audits, ensuring timely remediation of findings.

Qualifications & Experience

• Minimum 15 years of experience in cybersecurity, risk management, or information security.
• Professional certifications such as CISSP, CISM, CISA or equivalent are highly preferred.
• Deep understanding of frameworks like NIST, ISO 27001, CIS Controls.
• Proven leadership in strategic planning, stakeholder engagement, and regulatory compliance.

Technical & Functional Competencies

• Cybersecurity architecture and governance
• Risk assessment and mitigation strategies
• Cloud and infrastructure security
• Regulatory compliance (AML, CTF, PDPA, GDPR)
• GRC framework implementation
• Fraud detection and data protection

Ready to Make a National Impact?

Join PayNet and be part of a team that’s building trust in every transaction. If you’re a visionary cybersecurity leader ready to shape the future of digital payments in Malaysia, we’d love to hear from you.