Up to £2,500 per 40 hours / month
Permanent, Part Time: c 40 hours per month
Remote working available
CANDIDATES MUST HAVE AT LEAST 5 YEARS EXPERIENCE IN FINTECH, EMIs, OR A REGULATED PAYMENT INSTITUTION
Due to exciting business growth, a fantastic opportunity has arisen for a Chief Information Security Officer to join a leading Fintech Payments company in London. We seek candidates with strong cybersecurity experience to support managing service providers, conducting cybersecurity audits, and overseeing the IT roadmap. You will drive security, efficiency, and regulatory compliance of our payment platform and IT infrastructure, working closely with the CEO, COO, and technology teams to ensure systems meet industry standards. This is a permanent role with part-time hours of approximately 40 hours per month, with potential for increased hours as the business expands.
Responsibilities include:
Fintech & Payments Infrastructure
* Provide strategic direction for the core payments platform, aligning architecture with business goals.
* Oversee secure transaction processing systems.
* Ensure compliance with payment security standards (PCI DSS, PSD2, SCA).
IT Infrastructure & Vendor Management
* Lead cloud infrastructure and security strategies.
* Manage relationships with third-party IT providers.
* Develop security protocols, disaster recovery, and business continuity plans.
* Manage internal IT operations, including system maintenance and endpoint security.
Cybersecurity & Risk Management
* Establish cybersecurity governance frameworks (ISO 27001, NIST, Cyber Essentials).
* Manage security audits, penetration testing, and vulnerability assessments.
* Develop security roadmaps compliant with FCA, PRA, and industry regulations.
* Oversee identity and access management systems.
* Lead incident response and threat mitigation.
* Review and approve security policies.
Regulatory & Compliance Support
* Ensure compliance with FCA and PRA regulations for EMIs.
* Prepare financial compliance reports and IT governance documentation.
* Ensure data protection compliance (GDPR, UK Data Protection Act).
* Coordinate with auditors and vendors.
* Implement operational resilience measures.
Strategic IT & Security Leadership
* Align technology strategy with business growth.
* Advise on technology investments and automation.
* Optimize IT budgets while maintaining security and performance.
* Engage with stakeholders and participate in company meetings.
Requirements
* Strong expertise in cloud security, API security, DevSecOps.
* 10+ years in senior technology roles, with 5+ years in fintech, EMIs, or regulated payment institutions.
* Knowledge of payment technologies, transaction processing, and financial messaging.
* Experience with FCA & PRA regulatory compliance.
* Certifications: CISSP, CISM, CISA, or equivalent cybersecurity certifications.
* IT governance frameworks certifications (COBIT, ITIL).
* Cloud security certifications.
This vacancy is advertised by Montpellier Resourcing Associates Limited, an employment agency.
#J-18808-Ljbffr