CISO (Fintech/Payments)

## About the Role As a Chief Information Security Officer at Black Pen Recruitment's client, you will be the driving force behind the development and implementation of a comprehensive security strategy. Your expertise will be crucial in ensuring the company's security posture is aligned with its business objectives and that all regulatory requirements are met. You will work closely with the executive team and the board to develop and implement a robust security framework, fostering a culture of security awareness and compliance throughout the organization.

The role entails leading a team of security professionals, providing guidance and oversight to ensure that all security-related projects are completed on time and within budget. You will be responsible for staying abreast of emerging threats and technologies, assessing their potential impact on the organization, and developing strategies to mitigate these risks.

The company is committed to innovation and customer satisfaction, and as such, it is looking for a CISO who can balance the need for security with the need for business agility. You will be expected to think strategically, develop creative solutions to complex problems, and communicate effectively with both technical and non-technical stakeholders.

## What You Will Do - Develop and implement a scalable information security strategy that aligns with the company's business objectives - Ensure compliance with relevant laws, regulations, and industry standards, including PCI DSS, GDPR, and local data protection laws - Lead the development and implementation of a comprehensive security risk management framework - Identify, assess, and prioritize security risks across the organization - Develop and maintain relationships with key stakeholders, including senior management, customers, and suppliers - Oversee the design and implementation of secure systems and architectures - Develop and manage the security budget, ensuring that all security-related expenditures are aligned with business objectives - Recruit, mentor, and lead a high-performing, multi-disciplinary security team - Establish and maintain a robust threat intelligence program to proactively identify and mitigate emerging threats - Develop and test incident response, business continuity, and disaster recovery plans

## What We Are Looking For - Proven experience in information security governance, risk, and compliance - In-depth knowledge of cybersecurity principles, industry standards, and best practices - Experience with technical infrastructure, networks, databases, and systems in relation to IT security and IT risk - Excellent written and verbal communication skills - Ability to think strategically and articulate complex security concepts to non-technical stakeholders - Strong leadership and management skills, with the ability to inspire and motivate a team - Experience with security architecture and technology, including the design and implementation of secure systems and architectures - Knowledge of relevant laws, regulations, and industry standards, including PCI DSS, GDPR, and local data protection laws - Experience with risk management frameworks and methodologies

## Nice to Have - Experience in the fintech or payments industry - Knowledge of cloud security and cloud-based technologies - Experience with security information and event management (SIEM) systems - Certification in information security, such as CISSP or CISM - Experience with agile development methodologies and DevOps practices

## Benefits and Perks - Competitive salary and benefits package - Opportunity to work with a leading fintech company - Collaborative and dynamic work environment - Professional development and growth opportunities - Flexible working hours and remote work options - Access to cutting-edge technologies and tools - Recognition and reward for outstanding performance - Comprehensive health insurance and wellness programs

- Develop a strong understanding of the fintech industry and the company's specific security challenges - Highlight your experience with security governance, risk, and compliance in your application - Be prepared to provide examples of your ability to think strategically and communicate complex security concepts to non-technical stakeholders - Show a willingness to learn and adapt to new technologies and emerging threats - Demonstrate your ability to lead and manage a team, and to foster a culture of security awareness and compliance - Be prepared to discuss your experience with security architecture and technology, including the design and implementation of secure systems and architectures - Research the company's culture and values, and be prepared to discuss how your own values and approach to security align with those of the organization