Head of IT Security

Who are we?Here at ADDX, we believe in a future where everybody can access financial ecosystems easily, fairly, and safely. That is why we’ve built the world’s first fully regulated platform for digital securities, licensed by the Monetary Authority of Singapore.
In 2021, we raised USD 50 million in Series A funding led by Japan Investment Corporation and Development Bank of Japan. Among other esteemed investors, we are backed by Singapore Exchange and Heliconia, a subsidiary of Temasek.
We have gone through a total re-brand and promise this to be an exciting time. An integral part of a fast-growing team enabling investments in unicorns, pre-IPO companies, and hedge funds, your role is to innovate and discover new solutions.
If you believe in a future of fair financial markets, just like we do, we’ve been waiting for you at ADDX.
Who are we looking for?
Named the Most Innovative Fintech by Global Brands, we are redefining private market investing and are looking for a Head of IT Security to join our Technology team.You will report to the Head of Technology and will own the overall IT security strategy of the company.

Responsibilities

• Design and execute the overall IT security strategy, frameworks, policies, including governance, risk and compliance.
• Providing guidance to stakeholders and business units on areas of risk assessment across IT Projects and systems.
• Driving security risks gap analysis and formulating remediation plans, such as incident response and recovery.
• Be responsible for overall security of critical systems and services.
• Development of content and approval of policies within the data security and privacy program.
• Perform internal IT Security audits on business processes, infrastructure, data privacy and review IT Security Infrastructure.
• Work closely with internal and external stakeholders to understand and put in place robust IT security policies, processes and tools.
• Project management, coordination with internal stakeholders and external auditors, audit reports and remediation with management.
• Provide advisory on security threats and vulnerabilities and recommend resolutions to senior management.
• Work with partners and vendors to ensure compliance of security requirements in an FI environment.
• Oversee information security awareness, data privacy and related training for employees.

Requirements

• Degree in IT / Engineering or technology preferred.
• In-depth knowledge of IT Security and Governance, Risk Management and Compliance requirements and practices.
• 10+ years of experience in the various security disciplines (e.g., Data Security, Privacy program and policy, information security, information governance, incident response, information security, training and awareness, etc.).
• Knowledge of regulatory requirements related to Privacy, including but not limited to MAS TRM, GDPR, HIPAA, CCPA, ISO 27001, SOC and the NIST standards or equivalent.
• Hands-on experience and knowledge on cloud security a strong advantage.
• Relevant Industry Certifications such as CISSP, CISA, CISM, SANS , PCI QSA or equivalent are a must
• Effective communicator with strong influencing and stakeholders’ engagement skills.
• Pro-active with multi-tasking capacities, and comfortable to work hands-on as an individual contributor or member of a larger team.
• Good people management skills to drive team in meetings and achieving high performance result or project goals.

Due to our limited capacity, we regret that only shortlisted candidates will be notified.