Position: Fulltime

We welcome applications from candidates in the markets we operate in, including Papua New Guinea, Fiji, Solomon Islands, Vanuatu, and Tonga.

Only Shortlisted Candidates will be contacted

Capital Insurance Group is proudly serving more than 500,000 customers across 5 Pacific markets in Papua New Guinea, Fiji, Tonga, Vanuatu and the Solomon Islands. We are committed to providing our customers with the highest standard of service.

We are also committed to sustainability. We believe that sustainable communities are essential for businesses to succeed, and we are working to promote sustainability in our own operations and in the communities, we serve, and we are excited to be a part of the future of insurance in the countries we operate in.

About the role:

We are seeking a highly experienced Cybersecurity Manager to lead the Group’s efforts in safeguarding digital assets and ensuring data integrity, confidentiality, and availability across all offices and jurisdictions. Reporting directly to the Group Chief Financial Officer and the Board Audit & Risk Committee, this critical role involves developing and implementing comprehensive cybersecurity strategies, policies, and frameworks to mitigate cyber risks effectively. The successful candidate will possess proven leadership in cyber security management, risk assessment, incident response, and regulatory compliance, with the ability to communicate technical concepts clearly to executive stakeholders.

Key responsibilities:

• Develop, implement, and maintain a robust Cybersecurity & Risk Management Framework (CSRMF) aligned with industry standards such as NIST.
• Lead enterprise-wide cyber risk assessments, prioritize threats, and formulate mitigation strategies to reduce risk to acceptable levels.
• Oversee Security Operations Centre (SOC) activities, including threat monitoring, vulnerability management, and incident response coordination.
• Serve as Incident Commander during major security incidents, leading response, recovery, and post-incident reviews to enhance resilience.
• Provide strategic direction for security of core infrastructure, cloud environments, applications, and end-user devices, integrating security into technology lifecycle and vendor management.
• Champion security awareness programs, fostering a culture of shared responsibility and continuous learning across the Group.
• Prepare and deliver clear, actionable reports on cyber risk posture, threat landscape, and program effectiveness to executive leadership and the Board.
• Manage the cybersecurity budget, justify investments, and demonstrate ROI to stakeholders.
• Ensure organizational compliance with all relevant legal, regulatory, and contractual cybersecurity requirements, acting as primary liaison with regulators and auditors.
• Lead the development, testing, and maintenance of Business Continuity and Disaster Recovery plans related to cybersecurity.

About you:

• Strong understanding of cybersecurity principles, frameworks, risk assessment, incident response, and compliance standards.
• Proven ability to develop and present cybersecurity strategies and risks to executive audiences.
• Excellent communication, interpersonal, and influencing skills, with the capacity to build consensus and lead change.
• Ability to collaborate effectively with internal teams and external stakeholders.
• A proactive, continuous learner committed to staying ahead of evolving cyber threats and technologies.

Qualifications & Experience:

• Bachelor’s degree in computer science, Information Technology, or a related field.
• Certified Information Systems Security Professional (CISSP) or equivalent qualification.
• 10+ years of progressive experience in cybersecurity management, with at least 5 years in a leadership role managing security programs.

To apply:

Send your resume and a cover letter by email to: cighr@capgrp.com   

Deadline:

Applications close on 13th February 2026, 5.00pm.