VP, Security Operations (AI Transformation) Lead, Information Security Services, Group Technology

Business Function

Group Technology enables and empowers the bank with an efficient, nimble and resilient infrastructure through a strategic focus on productivity, quality & control, technology, people capability and innovation. In Group Technology, we manage the majority of the Bank's processes and inspire to delight our business partners through our multiple banking delivery channels.

Team Overview

At DBS Bank, cybersecurity is embedded into our culture as a core enabler of responsible digital banking and customer trust. The bank’s cyber defense strategy is guided by a risk-based, defense-in-depth approach aligned to international standards and regulatory expectations, underpinned by strong governance, automation, and data-driven decision-making.

Our Cybersecurity function works closely with Technology, Risk, and Business units to secure digital innovation at scale while maintaining operational resilience across the region. The Security Operations Centre (SOC) plays a pivotal role in this ecosystem, providing 24x7 monitoring, detection, and response capabilities that protect our customers, our platforms, and our brand.

Role Overview

The SOC Transformation Lead will own the strategic evolution of the bank’s Security Operations Centre, driving it towards a highly automated, intelligence-led, and resilient cyber defense capability. This executive role is accountable for setting the SOC vision, defining its multi-year transformation roadmap, and ensuring alignment with the bank’s business objectives and regulatory obligations.

You will lead SOC uplift across people, process, data, and technology, modernizing detection and response capabilities, leveraging modern data platforms and agentic capabilities, enhancing operational excellence, and embedding a proactive, data-driven security culture across the organization.

Key Responsibilities

• Define and lead the SOC transformation strategy and roadmap, aligning with enterprise security strategy, risk appetite, and regulatory requirements (e.g. MAS TRM, NIST, ISO 27001, MITRE ATT&CK).
• Oversee end-to-end Security Operations functions (monitoring, detection, incident response, threat intelligence integration, and SOC tooling) with a focus on capability uplift and scalability.
• Drive modernization initiatives including SOAR implementation, Agentic SOC, advanced analytics, and automation to increase efficiency, reduce mean time to detect/respond, and improve quality of investigations.
• Partner with data and platform teams to design and leverage modern data lake architecture for centralized security telemetry, advanced analytics, and long-term hunting and forensics.
• Introduce and govern agentic capabilities (e.g. autonomous or semi-autonomous analytic and response agents) to augment analysts, orchestrate complex workflows, and enable continuous threat detection and response at scale.
• Establish and govern SOC performance frameworks, including KPIs, KRIs, and maturity models, providing regular reporting and insight to senior management and risk committees.
• Lead change in operating models, processes, and playbooks to ensure consistent, repeatable, and auditable responses to security events and incidents.
• Build and define clear roles, competencies, and development pathways aligned to future-state SOC needs.
• Partner with Technology, Risk, Architecture, Data, and Business units to integrate new telemetry sources, close visibility gaps, and ensure security operations support key digital banking and data initiatives.
• Act as executive sponsor for key SOC-related programs and projects, including platform re-architecture, data platform integration, use case expansion, and resilience and continuity initiatives.
• Ensure SOC operations, processes, and documentation remain audit-ready and compliant with internal policies and external regulatory expectations for the banking sector.
• Represent Security Operations in senior forums, providing clear, business-aligned communication on threat landscape, operational risk, and transformation progress.
  
  

Requirements

• Degree in Information Security, Computer Science, Engineering, Data Science, or related field
• Strong cybersecurity experience, with significant tenure leading Security Operations or cyber defense functions, including prior experience at VP level or equivalent preferably within financial or large enterprise environments.
• Proven track record delivering large-scale SOC modernization or transformation programme covering tooling, operating model, and talent uplift in a complex or regulated environment,preferably banking or financial services.
• Demonstrated experience working with modern data platforms (e.g. security data lakes, big data pipelines, streaming architectures) to aggregate, analyze, and operationalize large volumes of security telemetry.
• Practical experience conceptualizing or deploying agentic or AI-driven capabilities in Security Operations, such as autonomous playbooks, investigative copilots, or AI-assisted detection and response.
• Deep expertise in SOC technologies (SIEM, EDR, IDS/IPS, SOAR, threat intelligence platforms) and their integration into an enterprise security stack.
• Strong understanding of frameworks and regulations relevant to financial institutions, such as MAS TRM, NIST CSF, ISO 27001, and MITRE ATT&CK.
• Experience establishing and tracking operational and strategic metrics using data and analytics to drive decision-making and continuous improvement.
• Demonstrated ability to influence and collaborate with senior executives, technology leaders, and risk stakeholders, with strong written and verbal communication skills.
• Professional certifications such as CISSP, CISM, CISA, or SANS leadership-focused credentials (e.g. GCCC, GSTRT) are highly advantageous.
  
  

What We’re Looking For

• Opportunity to lead complex transformation initiatives leveraging advanced detection, automation, modern data platforms, and agentic capabilities.
• A high-impact VP role shaping the future state of Security Operations for a leading digital bank.A high-impact VP role shaping the future state of Security Operations for a leading digital bank.
• A collaborative executive environment that values innovation, resilience, and continuous improvement in cybersecurity.
  
  

Location:

DBS Asia Hub

Job:

Technology

Schedule:

Regular

Employee Status:

Full time