Head of ICT and Operations, CISO

This is a fully remote position, open to applicants in Austria.

📋 Description

• Take charge of the ICT infrastructure for BingX EU, guaranteeing round-the-clock availability, scalability, and performance of the trading platform within the European jurisdiction.

• Oversee the "Physical Substance" of our local IT operations in Vienna, which includes managing local servers (where applicable), configuring cloud regions, and ensuring IT security within the local office.

• Lead the local Operations team to facilitate smooth integration between global engineering efforts and EU-specific requirements.

• Establish and execute the Information Security Strategy for BingX EU, ensuring alignment with global security standards as well as local FMA and EBA (European Banking Authority) guidelines.

• Serve as the primary custodian of the Information Security Management System (ISMS) according to ISO 27001 or NIST frameworks.

• Supervise data protection and privacy initiatives in adherence to GDPR, particularly with respect to the management of EU user data and cryptographic keys.

• Act as the main point of contact for DORA compliance, ensuring that the entity fulfills all obligations related to ICT Risk Management, Incident Reporting, Digital Operational Resilience Testing, and Third-Party Risk oversight.

• Partner with the Compliance team to prepare for FMA audits and regulatory inspections, supplying technical proof of "Operational Substance" in Austria.

• Establish and direct local security operations and incident response for the EU entity.

• Formulate and rigorously test Business Continuity Plans (BCP) and Disaster Recovery (DR) strategies to safeguard the exchange from systemic shocks or cyber-attacks.

• Conduct technical due diligence on key ICT third-party providers (including Custody solutions, Cloud providers, and KYC vendors) to ensure compliance with EU regulatory security standards.

⛳️ Requirements

• Over 10 years of experience in a senior IT leadership or security role (CISO, Head of IT, or Head of Infrastructure).

• Native or professional fluency in English (essential for compliance with local labor laws and authorities).

• High proficiency in German is an advantage.

• Extensive, hands-on knowledge of DORA, MiCA, and GDPR.

• Experience in direct engagement with national regulators (such as the FMA or BaFin) is highly beneficial.

• Strong expertise in blockchain architecture, cold/hot wallet security, cloud-native environments (AWS/GCP), and API security.

• Master's degree in Computer Science, Cyber Security, or a related discipline.

• Required professional certifications such as CISSP, CISM, or CGEIT.

• Demonstrated ability to lead cross-functional teams and effectively communicate complex security risks to a Management Board.

🏝️ Benefits

• Competitive market salary.

• Fully remote/work-from-home flexibility.

• Flexibility to observe your local holiday calendar.

• Additional benefits.