Head of Cyber Security

Role Description

This role goes beyond traditional enterprise security leadership. The Head of Cybersecurity will build and lead a dual-function cybersecurity capability:

• Internal: Secure the company's AI platforms, cloud infrastructure, and data assets
• External: Develop and deliver cybersecurity services and products for industrial clients (e.g., manufacturing, energy, logistics)

The ideal candidate combines deep technical expertise, commercial thinking, and product mindset, with the ability to operate in Pakistan's evolving cybersecurity and industrial landscape.

Responsibilities

Internal Security Leadership

• Define and implement enterprise-wide cybersecurity strategy
• Secure AI/ML systems, data pipelines, APIs, and cloud environments
• Establish SOC capabilities, incident response, and threat detection
• Ensure compliance with standards such as ISO 27001 and relevant local regulations
• Implement IAM, endpoint security, and vulnerability management

Cybersecurity Services (External)

• Build and scale client-facing cybersecurity offerings, including:
• Vulnerability assessments & penetration testing
• Managed security services (SOC-as-a-service)
• Cloud and infrastructure security audits
• OT/ICS security assessments (critical for industrial clients)
• Develop delivery playbooks and standardize service offerings
• Engage directly with enterprise clients and support pre-sales efforts

Cybersecurity Product Development

• Define roadmap for cybersecurity products, particularly for:
• Industrial AI / IoT environments
• OT/IT convergence security
• AI system security (model integrity, adversarial risks)
• Collaborate with AI and engineering teams to build scalable solutions
• Drive productization of internal tools into commercial offerings
• Ensure solutions are tailored for low-bandwidth / emerging market environments

Team & Competency Building

• Build and lead a high-performing cyber security team
• Establish a Cyber security Services practice (similar to consulting firms)
• Mentor consultants and develop local talent pipelines
• Create a culture of security excellence and delivery discipline

Strategic & Commercial Contribution

• Support pre-sales and solution positioning for enterprise clients
• Contribute to faster deal closures through strong solution architecture
• Build a central architecture function serving all verticals and mentor architects and senior engineers across teams
• Promote a culture of engineering discipline and system thinking
• Act as the technical authority across the organization

Requirements

• 10 to 15+ years in cybersecurity with both enterprise and client-facing experience
• Proven experience in building or scaling cybersecurity services or products

Strong expertise in:

• Cloud security (AWS, Azure, GCP)
• Network and application security
• SIEM, SOC, and threat intelligence

• Exposure to OT/ICS security or industrial environments
• Strong business acumen and stakeholder management skills Preferred
• Certifications: CISSP, CISM, CEH, or equivalent
• Experience working with industrial sectors (energy, manufacturing, telecom)
• Prior startup or scale-up experience
• Understanding of AI security and adversarial ML