Chief Information Security Officer

Company Overview

Role Overview

Key Responsibilities

• Define and execute the group-wide information security and cybersecurity strategy aligned with business growth and regulatory requirements
• Establish and oversee security governance frameworks, policies, and controls across all entities and jurisdictions
• Lead threat detection, incident response, and cyber risk management, particularly across trading systems and digital platforms
• Ensure security of trading infrastructure, including low-latency systems, APIs, and client-facing platforms
• Oversee cloud security, network security, and application security across distributed environments
• Collaborate closely with Technology, Product, Compliance, Risk, and Operations teams to embed security into all systems and processes
• Manage security operations (SOC), penetration testing, vulnerability management, and red teaming activities
• Ensure compliance with global regulatory frameworks (e.g., DFSA, FCA, ASIC, MiCA, GDPR) and cybersecurity standards (ISO 27001, NIST, etc.)
• Lead third-party/vendor risk assessments, particularly for liquidity providers, PSPs, and technology partners
• Provide regular executive-level reporting to senior leadership and the board on cybersecurity posture, risks, and incidents
• Build and lead a high-performing global security team

Requirements

• Proven experience as a CISO, Head of Information Security, or equivalent leadership role
• Strong background within financial services, brokerage (FX/CFDs), fintech, payments, or digital assets/crypto
• Deep understanding of trading platforms, financial systems, and real-time infrastructure risks
• Experience operating in multi-jurisdictional, regulated environments
• Strong knowledge of cybersecurity frameworks (ISO 27001, NIST, CIS, etc.)
• Hands-on experience with cloud environments (AWS, Azure, GCP) and modern security architectures
• Demonstrated experience managing security incidents, breaches, and crisis response
• Ability to operate at both strategic and technical levels
• Strong stakeholder management skills, with experience engaging C-level executives and regulators
• Relevant certifications preferred (CISSP, CISM, CISA, or similar)