- Company Name
- Tokio Marine HCC International
- Job Title
- Head of Data Security
- Job Description
-
Job Title: Head of Data Security
Role Summary:
Provide strategic and technical leadership for data security across an international enterprise. Lead the development and execution of a comprehensive data leakage prevention (DLP) program, establish governance for data classification, encryption, and lifecycle management, and drive the organization’s quantum‑ready cryptographic strategy. Collaborate with technology, risk, legal, and compliance functions to embed security by design and ensure regulatory compliance.
Expectations:
- Deliver a clear, organization‑wide data security strategy with defined controls, ownership, and reporting.
- Achieve measurable reduction in data leakage risk through effective DLP implementation and enhanced visibility of data risk.
- Produce a credible quantum‑readiness or post‑quantum cryptography roadmap aligned with business risk and regulatory expectations.
- Translate complex technical risks into actionable business insights and communicate effectively with executive leadership.
Key Responsibilities:
1. Own and advance the organization’s data security strategy, focusing on DLP across systems, platforms, and endpoints.
2. Design, implement, and continuously improve DLP frameworks, controls, and monitoring capabilities.
3. Establish governance and controls for data classification, handling, encryption, and secure data lifecycle management.
4. Lead the organization’s approach to quantum cryptography and post‑quantum readiness, including risk assessment and roadmap development.
5. Evaluate, select, and oversee deployment of advanced cryptographic solutions aligned with current and emerging standards.
6. Partner with Technology, Architecture, Risk, Legal, and Compliance teams to embed data security by design.
7. Monitor emerging threats, regulatory developments, and industry best practices related to data security and cryptography.
8. Provide expert guidance on data security incidents, breaches, and investigations.
9. Manage relationships with specialist vendors and partners.
Required Skills:
- Senior leadership experience in data security, information security, or cybersecurity.
- Deep expertise in DLP, data classification, encryption, and data lifecycle controls.
- Strong understanding of cryptographic principles, key management, and secure data architectures.
- Proven experience designing and implementing enterprise‑scale DLP solutions across cloud, on‑prem, and endpoint environments.
- Ability to translate technical risks into clear business and executive‑level insights.
- Strong stakeholder management and cross‑functional collaboration skills.
- Knowledge of emerging standards (e.g., NIST post‑quantum cryptography) and regulatory requirements.
Required Education & Certifications:
- Bachelor’s degree in Computer Science, Information Security, Cybersecurity, or related field (MBA preferred).
- Professional certifications: CISSP, CISM, CCSP, or other cryptography‑focused qualifications.
---