Head of IT Security (80-100%)

Job description: Head of IT Security (80-100%)

About the role

Our mission is to be at the forefront of digital banking and security, promoting a safe and prosperous financial ecosystem for our stakeholders while setting new industry standards for security and trust in the digital age.

Main tasks:

• Owner and designer of the security strategy and standards for the digital asset banking platform and cloud infrastructure.
• Technical security authority that drives change throughout the organization.
• Lead the definition, implementation and monitoring of security governance frameworks for digital asset custody, trading and banking.
• Strategic input into our multi-custody and key management architecture.
• Build and lead a small but elite security team while staying deeply technical in a small, agile team where your expertise directly shapes product and business outcomes.
• Assessment of risks, vulnerabilities and potential attack vectors of solution designs, third-party solutions or technical processes.

Ideal candidate:

You are a hands-on security professional with deep technical skills who can influence and lead our cross-functional teams. You excel at personally solving complex security challenges in regulated environments while building the credibility needed to drive organizational change.

Requirements:

• Master's degree in Information Technology or equivalent.
• 10+ years of experience in IT with at least 5 years of experience in security architecture roles or equivalent.
• Proven ability to lead through influence and technical credibility.
• Track record of driving organizational change through technical excellence, stakeholder influence and strong leadership.
• Knowledge of financial regulations (e.g. FINMA) and bank security requirements.
• Excellent stakeholder management and communication skills in English.
• Deep technical understanding with practical experience in several security areas:
  • Cloud security architecture and controls (Azure, AWS) including Kubernetes and microservices security patterns.
  • Identity and Access Management (IAM) architecture and Zero Trust.
  • Secure Software Development Lifecycles (SSDL) frameworks.
  • Development of security standards in regulated environments.
  • Encryption architecture and key management systems.

Nice to Have:

• Hardware Security Module (HSM) architecture.
• Digital asset custody.
• Blockchain security patterns and smart contract security.
• Penetration testing / offensive security experience.
• Industry certifications (CISSP, CISAM, SABSA).
• German language skills.

We offer:

• Attractive combination of market salaries and entrepreneurial incentive scheme.
• Flexible working from home.