Senior Information Security Compliance Officer

eToro has created an intuitive Social Trading platform that gives traders and investors access to global stock markets, commodity trading, cryptocurrency trading, and more. We strive to make money management available and accessible to everyone (even to users with no prior experience or knowledge). We have over 33 million users worldwide, and our platform is available in over 140 countries around the world. With over 1500 employees worldwide, We have locations in the US, Cyprus, UK, Australia, Germany, and Israel, and we are constantly growing and expanding into new markets.

We are constantly growing and are excited to share that we are looking for a Information Security Compliance Officer to join our team

What will you be doing?

• Act as the primary local security contact / adviser for both Singapore and Australia offices.
• Work with Group IS and assist on the implementation and translation of information security policies and procedures for local offices.
• Develop and implement comprehensive security strategies to protect eToro's cryptocurrency assets and infrastructure, ensuring compliance with Singapore regulations.
• Govern local policies for wallets, trading platforms and crypto custodian services
• Collaborate with cross-functional teams in both Singapore and Europe to ensure security measures are integrated into all aspects of eToro's cryptocurrency operations.
• Provide an escalation path for security issues, incidents and inquiries to local offices.
• Provide regular and timely reporting on the status of cyber security to local management.
• Provide Cyber Security guidance to the local offices.
• Monitor IT/IS outsourcing arrangements and check that the KPIs/SLAs are met, else to find out the root cause and report it to local management.
• Proactively identify non compliance and areas of potential improvement to Group IS; and facilitate development and deployment of standard solutions.
• Collaborate with the Group Cyber Defense Operations and Cyber Security Engineering teams to develop a technical roadmap for local offices to meet local regulatory requirements.
• Work with Group Security Incident Response and Crisis Management teams to assist in driving incidents to acceptable resolution; and assist with investigations as needed.
• Participate in region/business unit related conferences, client facing engagement, industry forums to represent eToro's Cyber Security program.
• Responsible to self track (including mandatory in-house Compliance/AML training/ABC) all training hours.

Requirements:

• Must have Bachelor's degree, preferably in computer science or information systems
• Must have Cissp \ Cism \ Cisa certificates.
• 7+ years proven experience in information security (including audit experience), with a strong focus on cryptocurrency and blockchain technologies.
• Prior experience with engaging directly with regulators - a big plus
• In-depth understanding of security protocols, cryptography and blockchain technology.
• Well versed with industry regulations and compliance, such as: MAS TRMG and Cyber Hygiene, ISO27001, SOC2, NIST, PCI, PDPA/GDPR, etc.
• Ability to communicate clearly and effectively on both technology/development issues/concerns to any stakeholders.
• Good interpersonal skills, able to work independently and also a team player.
• Experience working in a matrix model, as the BISO supports operational and transformational efforts for a given region or organizational function.
• Knowledge and experience of Information Security Risk and Security governance.

This role will be based in our Singapore office. Candidates must have full working rights in Singapore.

Sub Department:

APAC BU

Role:

Compliance