Key skills
Cyber SecurityBlockchainLeadershipRisk ManagementCommunicationPenetration TestingNetwork Security
About this role
Role Overview
- As the top security leader of the company, the CSO is fully responsible for formulating and implementing the company's overall security strategy, building a comprehensive, systematic, and compliant security system covering digital currency exchange, payment business, and global operations.
- This role will lead the security team to identify, assess, and mitigate all types of security risks (cyber security, physical security, data security, operational security, compliance security), ensure the company's business complies with global security-related regulatory requirements, respond to security incidents efficiently, and maintain the company's security reputation and user trust.
- Develop the company's long-term and short-term security strategy, security roadmap, and risk appetite, aligning with business development goals and global regulatory requirements.
- Lead the formulation of security assessment indicators, conduct regular security risk assessments, security audits, and compliance reviews, and issue security reports to the CEO and board of directors.
- Coordinate cross-departmental security work, promote the integration of security into product design, technology development, business operations, and other full business links (Shift-Left Security).
Requirements
- Experience: 10+ years of information security and risk management experience, 5+ years of CSO or equivalent senior security management experience in compliant digital currency exchanges, payment institutions, or financial technology companies; deep understanding of the digital currency trading and payment business model, full business links, and security pain points.
- Professional Expertise: Proficient in cyber security, network security, application security, data security, blockchain security, and digital asset security management; Familiar with global digital currency and payment security regulatory frameworks (FATF, MiCA, SFC, etc.) and compliance requirements, with experience in handling security compliance audits and regulatory inspections; Rich experience in security incident response, crisis management, and security system construction, able to handle complex security incidents independently; Understand security technologies and tools (such as SOC, SIEM, vulnerability scanning, penetration testing, encryption technology, and wallet security technology), and have the ability to guide technical team implementation.
- Regulatory & Compliance Awareness: Strong sense of compliance and risk control, able to accurately grasp global security regulatory trends, and ensure that the company's security work meets regulatory requirements.
- Leadership & Management: Excellent leadership and team management capabilities, able to build and lead a high-performance security team; strong cross-departmental coordination and resource integration capabilities.
- Communication Skills: Excellent oral and written communication skills in both Chinese and English, able to effectively communicate with regulatory authorities, partners, and internal teams.
- Education: Bachelor's degree or above in Computer Science, Information Security, Cybersecurity, Finance, Law, or related fields; professional certifications such as CISSP, CISM, CISA, CRISC, or ACAMS are preferred.
Tech Stack
- Cyber Security
Benefits
- Meaningful Collaborations
- The successful candidate will work cross-functionally with other relevant teams to carry out implementations that will improve and create an impact on customer experience.
- Scalable Growth
- Be part of a fast-growing organization with the vision to expand its territories outside APAC which will provide opportunities for career advancement.
- A Space For Bright Ideas
- Let your bright ideas be converted into meaningful changes! Coins culture welcomes new ideas backed up by data to create an impact.