Search by job, company or skills

D

Senior IT Security & Compliance Director

DCS CARD CENTRE PTE. LTD.
Singapore, Beach Road
10-12 Years
SGD 14,000 - 20,000 per month
new job description bg glownew job description bg glownew job description bg svg
  • Posted 17 hours ago
  • Be among the first 10 applicants
Early Applicant

Job Description

About Us

We are a high-growth Web3 payment infrastructure company redefining how users and businesses interact with stablecoins and digital assets.

Backed by licensed financial institutions, and trusted by leading Web3 partners, we provide crypto-fiat payment rails, card-issuing infrastructure, and CaaS (Cards-as-a-Service) solutions for exchanges, wallets, protocols, and global fintech innovators.

Our team comes from top global financial institutions, tier-one tech companies, and leading fintechs across APAC and Europe - bringing deep expertise, a builder mindset, and a shared passion for shaping the future of compliant, scalable financial infrastructure.

About The Role

We are seeking an experienced, hands-on CISO, Head / Senior Manager of Information Security & Compliance to lead the design, implementation, and continuous improvement of our enterprise-wide information security andtechnology compliance program.

This is a critical leadership role that will drive remediation of recent cyber and data incidents while building a robust, forward-looking security and compliance posture to support our Web3 payment operations, customer fund safeguarding, and global growth.

The successful candidate will act as the senior accountable owner for technology and cyber risk management (in line with MAS Technology Risk Management Guidelines), ensure full regulatory compliance across all jurisdictions, and foster a strong security-first and compliance culture across the organization.

Key Responsibilities

  • Develop, implement, and maintain the company's Information Security Management System (ISMS) in alignment with MAS TRM Guidelines, ISO 27001, PCI-DSS, PDPA, and other applicable global standards.
  • Lead all aspects of cyber risk management, including risk assessments, threat modelling, vulnerability management, penetration testing, and red-team exercises.
  • Own the end-to-end incident response program - lead investigation, containment, recovery, and post-incident reviews.
  • Ensure robust protection of customer personal data and segregated funds through technical controls, encryption, access management, and monitoring.
  • Conduct third-party / vendor security risk assessments and ongoing monitoring, with particular focus on Web3 partners, cloud providers, and payment processors.
  • Design and enforce security architecture for payment systems, APIs, cloud environments (AWS/Azure), and any blockchain/DPT-related components.
  • Prepare and submit all required regulatory security reporting to MAS,
  • PDPC, and other authorities support external audits and licensing requirements.
  • Conduct regular compliance checks, gap analyses, and control testing on all information security, technology, and data protection processes to identify any potential risks, non-compliant activities, or unregulated operations.
  • Proactively ensure full fulfillment of regulatory requirements from the Monetary Authority of Singapore (MAS), regulatory authorities in all other licensed jurisdictions, and relevant global standards (including PCI-DSS, ISO 27001, NIST, GDPR where applicable, and emerging Web3/DPT guidelines).
  • Develop and deliver enterprise-wide security awareness training and phishing simulations.
  • Establish and chair the Information Security Steering Committee provide monthly/quarterly reporting to the Board Risk Committee and senior leadership.
  • Lead the security team (build from current small base) and manage security tools budget and roadmap.
  • Stay ahead of emerging threats in fintech and Web3 (e.g., smart-contract risks, crypto wallet security, supply-chain attacks) and translate them into actionable controls.

Requirements & Qualifications

Experience

  • Minimum 10 years in information/cyber security and compliance, with at least 5 years in a senior leadership role (CISO, Head / Senior Manager of Information Security & Compliance, or equivalent) in a regulated financial institution.
  • Proven experience in MAS-regulated entities (payment institutions, banks, or fintechs) and direct working knowledge of MAS Technology Risk Management (TRM) Guidelines.
  • Strong track record in regulated payment or card businesses, including PCI-DSS compliance and customer data protection.
  • Hands-on experience managing major cyber incidents and data breach remediation.
  • Experience in fast-growing fintech/Web3 or digital asset environments is highly advantageous.

Technical & Regulatory Knowledge

  • Deep expertise in MAS TRM, PDPA, PCI-DSS, ISO 27001/27002, NIST Cybersecurity Framework, and relevant global regulations (GDPR, etc.).
  • Solid understanding of cloud security, network security, endpoint protection, SIEM, SOAR, zero-trust architecture, and secure DevOps.
  • Familiarity with Web3/blockchain security concepts (wallets, smart contracts, DPT safeguarding) is a strong plus.

Education & Certifications

  • Bachelor's degree (or higher) in Computer Science, Information Security, Cybersecurity, or related field.
  • Professional certifications: CISSP, CISM, CRISC, CISA, or equivalent (mandatory) CCSP, OSCP, or GIAC certifications are a plus.

Personal Attributes

  • Strategic thinker with strong execution skills able to operate at both board level and hands-on technical level.
  • Excellent leadership, stakeholder management, and communication skills.
  • High integrity and ability to drive cultural change in a fast-paced, post-investment environment.

Why Join Us & Our Culture

  • Impact: Drive meaningful BD strategy and influence the growth of the next-generation Web3 payments.
  • Innovation: Work on cutting-edge crypto-fiat card infrastructure used by leading Web3 companies.
  • Global Exposure: Collaborate across teams in APAC, Middle East, and Europe.
  • Growth: Learn fast, access strategic decision-making, and scale your career in a high-growth startup.
  • Culture: A flat, collaborative, high-ownership environment where your ideas directly influence product direction.

We value people who are:

  • Builders who thrive in 01 and 1100 environments
  • Owners who take initiative and move fast
  • Learners who grow through feedback and curiosity
  • Collaborators who elevate the team
  • Visionaries who care about shaping the future of stablecoin

DeCard - Product Highlight

DeCard is a next-gen card brand built for seamless stablecoin spending in the real world. DeCard enables users to pay effortlessly across a broad network of global merchants through both card payments and QR-based payment methods, making stablecoins practical for everyday use.

Powered by DCS and backed by over 50 years of card-issuing heritage, DeCard blends trust with Web3 innovation. Evolving from its roots as Diners Club Singapore, DCS is now a next-gen global payments provider, delivering secure, compliant, and innovative solutions.

We are an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees.

More Info

Job Type:
Permanent Job
Industry:
Other
Function:
Web3 Payment Infrastructure
Employment Type:
Full time

Job ID: 143883089

Jobs by Skill - IT
Jobs by Skill - Non IT
International Jobs
Last Updated: 04-03-2026 07:13:37 PM
Homejobs in SingaporeSenior IT Security & Compliance Director