Head of Information Security

This position is posted by Jobgether on behalf of a partner company. We are currently looking for a Head of Information Security in India.

This role offers the opportunity to lead regional information security, risk, and compliance operations across APAC, focusing on highly regulated financial markets. You will act as the regional security authority, aligning cloud infrastructure, trading platforms, and internal systems with both global standards and local regulatory requirements. The position requires collaboration with cross-functional teams including engineering, product, legal, and compliance to ensure secure and scalable systems. You will oversee audits, regulatory assessments, and risk management while translating complex regulatory mandates into actionable security controls. This is a high-impact role where your leadership directly enables safe, compliant, and efficient operations across the region. The environment is dynamic, fast-paced, and globally connected, providing opportunities to shape security strategy and influence critical business outcomes.

• Lead the APAC information security program, ensuring alignment with global standards and local regulatory requirements
• Translate regional regulations (APPI, FSA, MAS) into actionable security controls and compliance measures
• Manage risk identification, assessment, and mitigation for cloud infrastructure, APIs, and trading systems
• Partner with engineering teams to integrate security into architecture, SDLC, IAM, and monitoring practices
• Serve as the primary liaison for regulators, auditors, and compliance partners, ensuring timely reporting and mitigation
• Develop, maintain, and localize security policies, standards, and controls to meet regional regulatory needs
• Oversee audits, regulatory exams, and control testing, ensuring adherence to frameworks like ISO 27001, SOC 2, and CSA STAR

Requirements:

• 6+ years of experience in information security, cybersecurity, or governance, risk, and compliance (GRC), ideally in fintech or financial services
• Fluency in English and Japanese (written and verbal)
• Strong understanding of cloud, application, and infrastructure security practices
• Experience with security and compliance frameworks (ISO 27001, SOC 2, etc.)
• Demonstrated ability to work with or support regulatory requirements in Japan and/or APAC
• Proven experience handling audits, regulatory exams, and compliance programs
• Excellent cross-functional communication skills, translating technical risk into business impact
• Strong leadership skills with the ability to manage regional security initiatives and teams

Benefits:

• Competitive salary and stock options
• Comprehensive health benefits
• Home office setup allowance (one-time USD $500) and monthly stipend (USD $150)
• Opportunity to lead a high-impact, regionally strategic security function
• Exposure to global teams and regulatory frameworks
• Inclusive and diverse work environment supporting professional growth