Chief Information Security Officer (CISO)

2 Months ago • 10 Years + • $110,000 PA - $300,000 PA

Job Summary

Job Description

As Chief Information Security Officer (CISO) at Xsolla, you will lead and scale the global information security and compliance strategy. You will be responsible for safeguarding products, platforms, infrastructure, and customer data across all regions. This strategic leadership role involves maintaining partner and user trust while innovating in the gaming ecosystem. Reporting to the CTO, you'll collaborate with various teams to align security and compliance with business objectives, ensuring world-class protection and operational agility. Responsibilities include defining the security strategy, managing risks, building a security organization, and overseeing compliance programs such as PCI DSS, SOC 1/2, GDPR, and CCPA.
Must have:
  • 10+ years of leadership experience in cybersecurity and compliance.
  • Expertise in cloud-native security (AWS/GCP) and data protection.
  • Experience managing compliance programs across multiple frameworks.
  • Proven ability to scale security programs globally.
  • Strong communication and executive reporting skills.
  • Experience leading secure development and DevSecOps practices.
Good to have:
  • Experience in the gaming industry, fintech, or B2B platforms.
  • Familiarity with security tools like Palo Alto Networks.
  • Professional certifications like CISSP, CISM, CCSP, CISA.
  • Understanding of global data privacy regulations.

Job Details

ABOUT US


At Xsolla, we believe that great games begin as ideas, driven by the curiosity, dedication, and grit of creators around the world. Our mission is to empower these visionaries by providing the support and resources they need to bring their games to life. We are committed to leveling the playing field, ensuring that every creator has the opportunity to share their passion with the world. 


Headquartered in Los Angeles, with offices in Berlin, Seoul, and beyond, we partner with industry leaders like Valve, Twitch, and Ubisoft to clear the paths for innovation in gaming. Our global reach spans over 200 geographies, offering more than 700 payment methods in 130+ currencies.


Longevity Opportunity Vision Enjoy the game!


ABOUT YOU


Xsolla is seeking an experienced and visionary Chief Information Security Officer (CISO) to lead and scale our global information security and compliance strategy. As CISO, you will be responsible for safeguarding our products, platforms, infrastructure, and customer data across all regions. This is a strategic leadership role, essential to maintaining the trust of our partners and users as we grow and innovate in the global gaming ecosystem.


You will report directly to the CTO and work cross-functionally with executive leadership, engineering, legal, compliance, and product teams. Your mission is to align Xsolla’s security and compliance posture with its business objectives, ensuring world-class protection while enabling innovation and operational agility.


RESPONSIBILITES

    • Define, drive, and continuously evolve Xsolla’s enterprise-wide information security and compliance strategy.
    • Serve as the primary executive owner of cybersecurity risk management and cybersecurity incident response.
    • Advise the executive team on security risks, priorities, and investment decisions.
    • Align security initiatives with company objectives, regulatory requirements, and customer trust commitments.
    • Build, lead, and mentor a world-class security organization, including security operations, application security, and GRC (governance, risk & compliance).
    • Promote a culture of security-first thinking across all levels of the organization.
    • Oversee security for private and public cloud infrastructure (AWS/GCP), SaaS applications, corporate IT, and development environments.
    • Embed secure development practices into SDLC, CI/CD pipelines, DevSecOps, and infrastructure-as-code.
    • Lead proactive threat modeling, secure code reviews, vulnerability management, and threat detection initiatives.
    • Ensure a robust and tested incident response and disaster recovery framework.
    • Own Xsolla’s compliance programs, including PCI DSS, SOC 1, SOC 2, GDPR, CCPA, and other applicable frameworks and regulations.
    • Lead regular audits, risk assessments, and gap analyses to ensure ongoing compliance.
    • Collaborate with Legal, IT, and external auditors to ensure policies and procedures align with evolving regulatory and industry requirements.
    • Establish a company-wide risk management framework to identify, assess, mitigate, and monitor cybersecurity and compliance risks.
    • Evaluate, implement, and manage security and compliance tooling across infrastructure, endpoints, and applications.
    • Engage and manage third-party vendors for audits, penetration testing, threat intelligence, and managed services.
    • Standardize scalable processes for vulnerability remediation and compliance monitoring.
    • Translate security and compliance risks into business terms and effectively communicate them to executive leadership and stakeholders.
    • Deliver regular reports, metrics, and board-level updates on security posture, risk, and compliance.


REQUIREMENTS

    • 10+ years of progressive leadership experience in cybersecurity and compliance, ideally in SaaS or enterprise technology environments.
    • Deep expertise in cloud-native security (AWS/GCP), application security, data protection, and risk management.
    • Direct experience managing compliance programs across multiple frameworks (PCI DSS, SOC 1/2, GDPR, ISO 27001, etc.).
    • Proven ability to scale security programs globally while aligning with business and product objectives.
    • Strong communication and executive reporting skills.
    • Experience leading secure development and DevSecOps practices in high-growth environments.


NICE TO HAVE

    • Experience in the gaming industry, fintech, or B2B platform services.
    • Familiarity with tools such as Palo Alto Networks, Google Cloud Security Command Center (SCC), AWS Security Hub / AWS GuardDuty, or other cloud and code security platforms.
    • Professional certifications: CISSP, CISM, CCSP, CISA, or similar.
    • Deep understanding of global data privacy regulations and cross-border data handling.


Similar Jobs

Sonar Source - Product Operations Lead

Sonar Source

London, England, United Kingdom (On-Site)
1 Week ago
Sailpoint - Manager, Developer Relations

Sailpoint

United States (On-Site)
2 Months ago
Wolters Kluwer - Technical Support Analyst (German speaking) – (all genders)– Hybrid

Wolters Kluwer

London, England, United Kingdom (Hybrid)
1 Week ago
Imanage - Product Manager (Records Management)

Imanage

Chicago, Illinois, United States (On-Site)
4 Months ago
EvenUp - Senior Infrastructure Engineer

EvenUp

Toronto, Ontario, Canada (Hybrid)
3 Weeks ago

Get notifed when new similar jobs are uploaded

Similar Skill Jobs

zeta - Release Train Engineer (Analytics)

zeta

Bengaluru, Karnataka, India (On-Site)
3 Months ago
attentive - Principal Product Manager, Reporting

attentive

United States (Remote)
3 Months ago
Sumo logic - Global Payroll Analyst

Sumo logic

Bengaluru, Karnataka, India (On-Site)
2 Months ago
Highspot - Accounts Receivable Accountant

Highspot

Hyderabad, Telangana, India (Hybrid)
2 Weeks ago
GoMotive - Director of Product Management, AI

GoMotive

United States (Remote)
3 Months ago
deel. - Country Finance Manager

deel.

Türkiye (Remote)
1 Week ago
Airbyte - Solutions Engineer

Airbyte

San Francisco, California, United States (On-Site)
3 Months ago
NCR Voyix - Java Full Stack Developer

NCR Voyix

Hyderabad, Telangana, India (On-Site)
2 Months ago
Instrumental - Senior Product Manager

Instrumental

Oakland, California, United States (Remote)
8 Months ago
FlockSafety - DFR Solutions Specialist

FlockSafety

United States (Remote)
1 Week ago

Get notifed when new similar jobs are uploaded

Jobs in Canada

Cineplex - Hourly Amusement Technician

Cineplex

Toronto, Ontario, Canada (On-Site)
3 Weeks ago
gitlab - Engineering Manager, Pipeline Execution

gitlab

Canada (Remote)
4 Weeks ago
Mozilla - Senior Software Engineer

Mozilla

Canada (Remote)
2 Months ago
Survay Monkey - Senior Sales Enablement Program Manager

Survay Monkey

Ottawa, Ontario, Canada (Hybrid)
3 Months ago
Airlab Inc  - Game Artist (Mobile)

Airlab Inc

Quebec, Canada (On-Site)
4 Months ago
Turbulent - Artiste UI / UI Artist

Turbulent

Montreal, Quebec, Canada (On-Site)
2 Months ago
Thales - Senior Software Development Engineer

Thales

Vancouver, British Columbia, Canada (Hybrid)
2 Months ago
Side - Korean Localization Video Game QA Tester

Side

Montreal, Quebec, Canada (On-Site)
1 Month ago
Side - Dialogue Audio Editor (on-call)

Side

Montreal, Quebec, Canada (On-Site)
1 Week ago

Get notifed when new similar jobs are uploaded

Similar Category Jobs

Looks like we're out of matches

Set up an alert and we'll send you similar jobs the moment they appear!

About The Company

Los Angeles, California, United States (Remote)

Montreal, Quebec, Canada (Remote)

Montreal, Quebec, Canada (Remote)

Los Angeles, California, United States (Hybrid)

Baku, Azerbaijan (Hybrid)

Baku, Azerbaijan (Hybrid)

Los Angeles, California, United States (Remote)

State Of São Paulo, Brazil (Remote)

Georgia (Hybrid)

Mexico City, Mexico (Remote)

View All Jobs

Get notified when new jobs are added by Xsolla

Level Up Your Career in Game Development!

Transform Your Passion into Profession with Our Comprehensive Courses for Aspiring Game Developers.

Job Common Plug