PbAbout Triple-A /b /ppTriple-A is a global payment institution licensed in the United States, Europe, and Singapore, enabling businesses worldwide to pay and get paid in both local and digital currencies. /ppbr/ppWe empower businesses to reach over 560M digital currency owners, boost revenue, and optimise costs through stablecoin and cryptocurrency payments, while eliminating volatility, custody, and compliance risks. Our commitment is to build a more efficient, inclusive global payment ecosystem by bridging the gap between local and digital currencies. /ppbr/ppRegistered with the United States Financial Crimes Enforcement Network (FinCEN), licensed by the Monetary Authority of Singapore (MAS), and Banque de France’s ACPR in Europe, Triple-A is trusted by over 20,000 businesses worldwide to make global crypto payments simple, secure, and cost-effective. For more information, visit /ppbr/ppbJoin the team /b /ppWe are a dynamic and passionate team building towards a more efficient global payment ecosystem. We actively bridge the gaps in cross-border payments, between traditional digital currencies, and Web2 and Web3. /ppbr/ppGuided by our CEO, Eric Barbier, who brings 20 years of experience and a proven track record in building and scaling payment companies worldwide, Triple-A is growing our team. If you’re bold, tenacious, and creative, we believe you’d be a perfect match for us! /ppbr/ppbThe Role /b /ppTriple-A is seeking a highly driven and ambitious information security leader to step into a pivotal role as our Regional Chief Information Security Officer (CISO) for France and the wider European Union. This is an exceptional opportunity for a seasoned security professional ready to take on a comprehensive leadership challenge, establishing and maturing our information security posture, ensuring robust compliance with critical local and EU regulations (particularly ACPR and GDPR), and safeguarding our innovative financial services in a dynamic and rapidly evolving fintech landscape. You will be instrumental in shaping our security future across the EU, with a primary focus on our French operations. /ppbr/ppbKey Responsibilities: /b /pullibStrategic Leadership: /b Develop, implement, and monitor a comprehensive information security and risk management strategy and program specifically tailored for Triple-A's French and EU operations, while ensuring alignment with the global cybersecurity framework. You will be empowered to drive significant security initiatives. /lilibRegulatory Compliance: /b Serve as the primary point of contact for all cybersecurity matters related to French and EU regulations. Ensure full compliance with ACPR requirements, GDPR, and other relevant data protection and cybersecurity directives (e.g., DORA, NIS2 if applicable). Proactively engage with regulatory bodies and auditors as required. /lilibRisk Management: /b Identify, evaluate, and mitigate information security risks across French/EU operations. Drive the execution of regular risk assessments, vulnerability assessments, penetration testing, and business impact analyses. /lilibSecurity Operations Incident Response: /b Oversee and enhance security operations for the region, including threat intelligence, incident detection, response, and recovery. Develop and maintain an effective incident response plan for French/EU operations. /lilibPolicy Governance: /b Develop, implement, and enforce information security policies, standards, procedures, and guidelines in accordance with French/EU regulations and global company policies, building a strong security governance framework. /lilibSecurity Architecture: /b Provide expert guidance on the security design and architecture of new and existing systems, applications, and infrastructure deployed or utilized within the French/EU context, particularly concerning payment gateways and crypto-asset security. /lilibAwareness Training: /b Champion a strong culture of security awareness within Triple-A through engaging training programs and ongoing communication. /lilibCollaboration Reporting: /b Work closely with the global cybersecurity team in Singapore, local IT, compliance, and business units in France. Provide clear and concise reports on the regional security posture, risks, and compliance status to local management and the Global Head of Cybersecurity. /lilibVendor Third-Party Risk Management: /b Assess and manage information security risks associated with third-party vendors and partners operating within the French/EU scope. /lilibBudget Management: /b Develop and manage the cybersecurity budget for French operations, ensuring optimal allocation of resources and demonstrating ROI. /li /ulpbr/ppbQualifications Experience: /b /ppbEducation: /b /pulliBachelor's or Master’s degree in Computer Science, Information Security, Cybersecurity, or a related field. /li /ulpbExperience: /b /pulliMinimum of 5+ years of progressive experience in information security, with at least 2 years in a senior leadership or management role (e.g., Senior Security Manager, Security Lead, Principal Security Analyst). We are looking for individuals ready for their next significant career step. /liliProven experience in the financial services, fintech, or payments industry is essential. Hands-on experience with cryptocurrency payment systems or similar innovative financial technologies is highly advantageous. /li /ulpbRegulatory Knowledge: /b /pulliIn-depth knowledge of French and EU cybersecurity and data protection regulations, including ACPR specific requirements for payment institutions, GDPR, and ideally familiarity with DORA, NIS2. /liliUnderstanding of international security standards and frameworks (e.g., ISO 27001, NIST, COBIT). /li /ulpbTechnical Expertise: /b /pulliStrong understanding of security domains including network security, application security, cloud security (AWS, Azure, GCP), cryptography, identity and access management, incident response, and disaster recovery. /liliExperience with security technologies such as SIEM, IDS/IPS, WAF, endpoint protection, DLP, and vulnerability scanning tools. /li /ulpbCertifications: /b /pulliProfessional security certifications such as CISSP, CISM, CISA, CRISC, or equivalent are highly desirable and demonstrate a commitment to the field. /li /ulpbLanguages: /b /pulliFluency in French and English (both written and spoken) is mandatory. /li /ulpbr/ppbSkills Attributes: /b /pulliExceptional leadership potential, strong communication, and interpersonal skills, with the ability to engage and influence stakeholders at all levels, including regulatory bodies. /liliStrong strategic thinking, analytical, and problem-solving capabilities, with a proactive approach to identifying and mitigating risks. /liliProven ability to operate effectively in a dynamic, fast-paced, and international environment. /liliHigh ethical standards and integrity, essential for a regulated financial institution. /liliAbility to translate complex technical concepts into understandable terms for non-technical audiences, fostering a security-aware culture. /liliProactive, results-oriented, self-motivated, and eager to drive significant impact. /li /ulpbr/ppbWhat We Offer: /b /pulliA unique opportunity to shape the cybersecurity landscape of a rapidly growing global leader in the cryptocurrency payments space. /liliA key strategic role with significant impact on our French and European operations, offering direct influence and ownership. /liliCollaboration with a dynamic, innovative, and international team that values your contributions. /liliCompetitive salary and a comprehensive benefits package designed to attract top talent, alongside excellent opportunities for professional growth and development (e.g., certifications, conferences, mentorship). /liliThe chance to work at the cutting edge of financial technology, solving complex and exciting security challenges. /li /ul