Alpaca
201 - 500 employees
🔌 API
💳 Fintech
₿ Crypto
API • Fintech • Crypto
Alpaca is a fintech company that provides a comprehensive brokerage and trading platform through a suite of APIs. These APIs enable developers and businesses to integrate algorithmic trading, app development, and embedded investing into their services. Alpaca offers services like trading in US stocks, ETFs, and cryptocurrency with options for local currency transactions. The company is recognized for its cyber security practices and is a member of FINRA and SIPC. Alpaca is ideal for fintech startups, broker-dealers, hedge funds, and other financial services looking to build sophisticated trading applications and platforms with minimal friction through their well-documented Broker API.
Head of Information Security – APAC
🕒 April 8
🗣️🇯🇵 Japanese Required
📊 Check your resume score for this job
Improve your chances of getting an interview by checking your resume score before you apply.
Alpaca
201 - 500 employees
🔌 API
💳 Fintech
₿ Crypto
API • Fintech • Crypto
Alpaca is a fintech company that provides a comprehensive brokerage and trading platform through a suite of APIs. These APIs enable developers and businesses to integrate algorithmic trading, app development, and embedded investing into their services. Alpaca offers services like trading in US stocks, ETFs, and cryptocurrency with options for local currency transactions. The company is recognized for its cyber security practices and is a member of FINRA and SIPC. Alpaca is ideal for fintech startups, broker-dealers, hedge funds, and other financial services looking to build sophisticated trading applications and platforms with minimal friction through their well-documented Broker API.
📋 Description
• Reporting to the Global CISO, the Head of Information Security (APAC) drives Alpaca's regional security, risk, and compliance, focusing on APAC regulations (APPI, FSA, MAS). • Collaborating with global teams (Security, Engineering, Legal, Compliance, Product) to align infrastructure, the trading platform, and internal systems with both global standards and local regulatory needs. • Merging security engineering, local compliance, risk management, and stakeholder engagement. Translating regional regulatory requirements into actionable security controls. • Serving as the main contact for regulators, auditors, and local stakeholders, enabling confident operations in highly regulated financial markets.
🎯 Requirements
• 6+ years of experience in information security, cybersecurity, or GRC, preferably in fintech or financial services • Fluent in Japanese and English (written and verbal) • An excellent understanding of cloud security, application and infrastructure security, and risk management frameworks • Experience with security and compliance frameworks (ISO 27001, SOC 2, etc.) • Direct experience working with or supporting regulatory requirements in Japan (e.g. APPI / FSA) and/or APAC • Proven experience handling audits, regulatory exams, or compliance programs • Ability to work cross-functionally with engineering, product, and compliance teams • Strong communication skills, with the ability to translate technical risks into business impact.
🏖️ Benefits
• Competitive Salary & Stock Options • Health Benefits • New Hire Home-Office Setup: One-time USD $500 • Monthly Stipend: USD $150 per month via a Brex Card
Apply Now
