Head of Information Security – APAC

This is a fully remote position, open to applicants in Asia.

📋 Description

• Reporting to the Global CISO, the Head of Information Security (APAC) will lead Alpaca's regional security, risk, and compliance efforts, with a particular focus on APAC regulations (APPI, FSA, MAS).

• Working in collaboration with global teams across Security, Engineering, Legal, Compliance, and Product to ensure that infrastructure, the trading platform, and internal systems meet both global standards and local regulatory requirements.

• Integrating security engineering, local compliance, risk management, and stakeholder engagement to convert regional regulatory demands into practical security measures.

• Acting as the primary liaison for regulators, auditors, and local stakeholders, facilitating assured operations within highly regulated financial markets.

⛳️ Requirements

• A minimum of 6 years of experience in information security, cybersecurity, or GRC, preferably within the fintech or financial services sector.

• Proficiency in both Japanese and English (written and verbal).

• A comprehensive understanding of cloud security, application and infrastructure security, and risk management frameworks.

• Experience with security and compliance frameworks such as ISO 27001, SOC 2, etc.

• Direct experience with or support of regulatory requirements in Japan (e.g., APPI / FSA) and/or the APAC region.

• Demonstrated experience managing audits, regulatory examinations, or compliance initiatives.

• Capability to collaborate across functions with engineering, product, and compliance teams.

• Strong communication abilities, with the skill to articulate technical risks in terms of business impact.

🏝️ Benefits

• Competitive Salary & Stock Options

• Health Benefits

• New Hire Home-Office Setup: One-time USD $500

• Monthly Stipend: USD $150 per month via a Brex Card