Job Purpose

• The Chief Information Security Officer (CISO) is responsible for establishing, implementing, and overseeing the company’s enterprise-wide information security, cybersecurity, and data protection strategy.
• In a fintech environment, the CISO ensures the confidentiality, integrity, and availability of financial systems, customer data, digital platforms, and emerging technologies while supporting regulatory compliance and business growth.

Key Responsibilities

• Develop and implement a comprehensive information security and cybersecurity strategy aligned with business objectives.
• Establish and maintain security governance frameworks, policies, standards, and procedures.
• Advise executive management and the Board on cybersecurity risks, trends, and mitigation strategies.
• Lead the organization’s security roadmap, including cloud security, API security, mobile applications, and payment systems.
• Identify, assess, and manage information security risks across products, platforms, and third-party vendors.
• Ensure compliance with applicable regulations and standards (e.g., PCI-DSS, ISO 27001, GDPR, NDPR, SOC 2, AML/KYC data controls).
• Oversee internal and external security audits, penetration testing, and vulnerability assessments.
• Manage third-party and vendor security risk assessments.
• Oversee Security Operations Center (SOC) activities, incident detection, response, and recovery.
• Lead incident response planning, breach investigations, and post-incident reviews.
• Ensure robust identity and access management (IAM), encryption, and data loss prevention (DLP) controls.
• Monitor and improve security posture for cloud, on-premise, and hybrid environments.
• Collaborate with Engineering, IT, and Product teams to embed security-by-design and privacy-by-design principles.
• Review and approve security architecture for new fintech products, integrations, and platforms.
• Evaluate and deploy appropriate security tools and technologies.
• Build, lead, and mentor a high-performing information security team.
• Promote a strong security awareness culture across the organization through training and communication.
• Define security KPIs and report performance metrics to senior management.
• Balance security controls with customer experience, innovation, and speed to market.
• Support due diligence for partnerships, mergers, and acquisitions from a security perspective.
• Act as the primary security liaison with regulators, auditors, and strategic partners.

Key Requirements
Education

• Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or related field.
• Master’s degree or MBA is an added advantage.

Experience

• 10–15 years’ experience in information security or cybersecurity, with at least 5 years in a senior leadership role.
• Proven experience in fintech, banking, payments, or financial services environments.
• Hands-on experience with cloud platforms (AWS, Azure, GCP), payment systems, and digital banking platforms.

Certifications (Preferred)

• CISSP, CISM, CISA, CRISC, or equivalent.
• Cloud security certifications (e.g., CCSK, AWS/Azure Security).
• Strong knowledge of cybersecurity frameworks (NIST, ISO 27001, COBIT).
• Deep understanding of fintech risk landscape, fraud prevention, and transaction security.
• Excellent leadership, communication, and stakeholder management skills.
• Strong analytical, decision-making, and crisis management capabilities.
• High ethical standards and sound judgment.