Information Security Program Manager

About TCS:

Join Tata Consultancy Services, Asia Pacific and be part of an organization committed to sustainable development for our future. TCS follows the Tata group philosophy of building sustainable businesses that are rooted in the community and demonstrate care for the environment. Our unique values position us to combine a purpose-driven worldview with digital innovation, collaborating with customers, communities and governments to lead and shape innovative solutions for a sustainable future. TCS has been carbon neutral in its operations across 11 countries, 12 delivery centres and 18 offices in Asia Pacific since 2022. This is only the initial stage in TCS' journey as we strive to achieve long-term net zero emissions by 2030.

Corporate sustainability is embedded in our triple-bottom-line, focusing on people, the planet, and our purpose. Our offices are designed with eco-friendly features that significantly reduce our carbon footprint and enhance energy efficiency. We actively champion green initiatives, such as promoting paperless operations, implementing energy-efficient practices, and fostering employee engagement in sustainability efforts. When you become part of the TCS family, you will play an essential role dedicated to innovation, excellence, and crafting a brighter, greener future together. Join us and be a part of our mission to drive sustainability through technology and talent at Tata Consultancy Services, APAC today.

Please find the job description below.

Job Title:
Information Security Program Manager

Location:
Cyberjaya or Penang, Malaysia

Key Responsibilities

• Leadership & Strategy: Partner with leaders to turn the strategic vision for the organization's information security program into successfully executed programs, initiatives, and projects that are aligned with business objectives and emerging threat landscapes. Serve as a thought leader and trusted advisor to InfoSec leadership, stakeholders across the organization, and technical teams.

• Program Management: Lead the planning, implementation, and ongoing optimization of complex, cross-functional projects, often with ambiguous scope and evolving requirements. Establish and maintain program governance, charters, milestones, and reporting frameworks.

• Stakeholder Engagement: Foster collaborative relationships with leaders, business stakeholders, IT teams, legal, compliance, audit, privacy, and external partners. Communicate program progress, risks, and benefits in clear, business-relevant language to both technical and non-technical audiences.

• Change & Incident Management: Support organizational change management for security initiatives, including stakeholder education, process redesign, and adoption tracking. Lead or support the response to major security incidents, providing program-level coordination and after-action reporting.

• Metrics & Continuous Improvement: Define, track, and report on key performance indicators (KPIs) and program metrics. Use analytics to assess program maturity, identify improvement opportunities, and inform strategic investment decisions.

Required Qualifications

• Bachelor's or advanced degree in Information Security, Computer Science, Engineering, Business, or a related field.

• Minimum of 15 years of progressive experience in information security, technology program management, or a related discipline, with a demonstrated track record of delivering complex, cross-functional projects.

• Exceptional communication, facilitation, and negotiation skills, with demonstrated success influencing at all organizational levels.

• In-depth knowledge of information security principles, frameworks (NIST, ISO 27001, CIS), and regulatory requirements.

• Proven ability to lead programs with ambiguous or rapidly evolving scope, requirements, and business drivers.

• Experience working in large, global enterprises or similarly complex environments.

• Demonstrated expertise in risk management, incident response, audit, and compliance initiatives.

Preferred Qualifications

• Project and program management certifications (e.g., PMP, PgMP, PRINCE2) and information security credentials (e.g., CISSP, CISM, CISA) are strongly preferred.

• Experience driving programs and initiatives involving cloud security, DevSecOps, or emerging technologies (e.g., AI/ML, IoT, OT).

• Multinational or multi-jurisdictional program management experience.

Key Competencies

• Strategic vision and the ability to translate high-level objectives into actionable security programs.

• Agility in navigating ambiguity, managing priorities, and adapting to changing circumstances.

• Influential leadership and the ability to build trust with diverse audiences.

• Analytical thinking, problem-solving, and effective decision-making under uncertainty.

• Commitment to ethical conduct, confidentiality, and the stewardship of sensitive information.

• Passion for continuous learning, innovation, and professional development.

Success Measures

• Effective delivery of strategic security programs that meet or exceed defined objectives.

• Sustained improvements in organizational risk posture and regulatory compliance.

• High satisfaction among stakeholders, partners, and executive sponsors.

• Continuous advancement of program maturity and adoption of industry best practices.

Thank you for your interest in applying for this position with TCS. We will review your application and will get back to you if we are considering your interest in this opportunity.