Director - Information Security

Bengaluru, Karnataka, India

Department

Information Security

Job posted on

Nov 20, 2025

Employment type

Full Time

About Us:

MatchMove is a profitable Singapore-based fintech company and one of Asia's leading Banking-as-a-Service (BaaS) providers, enabling businesses to embed financial services directly into their digital ecosystems. Operating its proprietary, secure, and regulated Banking Wallet OS platform across Asia and beyond, MatchMove empowers enterprises to issue accounts, cards, payments, loans, and other financial products seamlessly within their own platforms.

The company is experiencing double-digit year-on-year growth and processes billions of dollars in transactions each year, underscoring its scale, resilience, and trust among partners and users. Recognized with multiple industry awards — including the Frost & Sullivan's 2025 Singapore Enabling Technology Leadership Recognition for Excellence in Embedded Finance Innovation — MatchMove has been celebrated for driving innovation across a wide range of embedded finance use cases.

By partnering with leading local banks and ecosystem players, MatchMove bridges the gap between traditional banking and modern digital commerce. Its mission is to deliver innovative, secure, and inclusive financial technology solutions that drive digital transformation for businesses while empowering millions of end users across the region.

With a strong commitment to innovation, regulatory excellence, and sustainable growth, MatchMove continues to pioneer new approaches to embedded finance, redefining how businesses and consumers access and interact with financial services in Asia and beyond.

Are You The One?

We are seeking an experienced and strategic Head of Security to lead our information security program. This senior leadership role will be responsible for establishing and maintaining a comprehensive, risk-based security posture across all aspects of our operations - from cloud infrastructure and applications to networks, endpoints, and data protection.

As a regulated fintech operating in the payments and banking space, security is paramount to our business. The Head of Security will work closely with executive leadership, engineering, product, compliance, and operations teams to ensure robust security controls, regulatory compliance, and continuous improvement of our security capabilities.

Responsibilities:

Strategic Security Leadership

• Develop and execute information security strategy aligned with business objectives and regulatory requirements (PCI DSS, MAS compliance etc)
• Establish security governance frameworks, policies, and standards across the organization
• Lead risk assessments, threat modeling, vulnerability management, and present security metrics to executive leadership
• Build relationships with regulators, auditors, partners, and security communities

Infrastructure & Application Security

• Design and implement comprehensive security controls across cloud infrastructure (AWS), including IAM, encryption, network segmentation, and container/Kubernetes security
• Lead application security program with secure SDLC practices, threat modelling, code reviews, and security testing (SAST, DAST, IAST)
• Establish DevSecOps practices with Infrastructure-as-Code security and automated security testing in CI/CD pipelines
• Ensure API security, authentication frameworks, and zero-trust architecture implementation
• Manage endpoint security including EDR/XDR, PAM, patch management, and endpoint encryption

Network Security & Threat Management

• Design secure network architecture with firewalls, IDS/IPS, VPN, zero-trust network access (ZTNA), DDoS protection, and WAF
• Establish threat intelligence capabilities and dark web monitoring to detect leaked credentials, compromised data, and emerging threats
• Conduct threat hunting exercises and maintain awareness of fintech-specific threats including fraud patterns and account takeover attempts
• Build and lead SOC capabilities with 24/7 monitoring, incident response plans, and crisis management procedures

AI Security & Emerging Technologies

• Establish security frameworks for AI/ML use cases including data privacy and adversarial attack prevention
• Implement guardrails for generative AI usage, including data leakage prevention and prompt injection protection

Compliance, Audit & Team Leadership

• Coordinate security audits, assessments, certifications, and manage remediation of findings
• Liaise with regulators including MAS, card networks, and banking partners
• Build, mentor, and lead a high-performing security team across multiple disciplines
• Develop security awareness training programs and establish security champions program across business units

Requirements:

• 10+ years of progressive experience in Information Security, with 5+ years in leadership roles
• Strong background in fintech, financial services, payments, or regulated industries
• Proven experience building and scaling security programs from scratch

• Hands-on expertise across:

• Cloud Security (AWS/Azure/GCP, IAM, CSPM)

• Application Security (OWASP Top 10, secure coding, APIs, DevSecOps)
• Network Security (firewalls, IDS/IPS, VPN, segmentation, zero trust)

• Endpoint Security (EDR/XDR, MDM, PAM)

• Experience with security tools: SIEM, SOAR, vulnerability scanners, penetration testing tools

• Strong knowledge of compliance frameworks: ISO 27001, PCI DSS, SOC 2, GDPR, PDPA
• Proven track record in security audits, certifications, regulatory compliance
• Experience managing security incidents, breaches, and crisis situations
• Familiar with threat intelligence, dark web monitoring, OSINT
• Skilled in automation/scripting (Python, Bash, PowerShell)
• Strong communication skills with ability to translate technical risks for business leaders
• Ability to influence senior leadership and board members
• Experience building and mentoring high-performing teams
• Strong strategic thinking and decision-making under pressure
• Collaborative mindset; able to work across diverse teams
• Preferred:
• • Experience in startups or scale-ups
• Background in security architecture/engineering
• Experience with MAS, card networks, or banking regulators
• Participation in security research, bug bounties, or open-source projects

MatchMove Culture:

• We cultivate a dynamic, innovative culture that fuels growth, creativity, and collaboration. Our fast-paced fintech environment thrives on adaptability, agility, and open communication.
• We are AI-first in our approach. We embrace AI as a strategic tool that enhances decision-making, creativity, and productivity. Every team member is equipped and encouraged to integrate AI into their workflow, experiment with new tools, and contribute to our collective AI literacy.
• We focus on employee development, supporting continuous learning and growth through training programs, on-the-job learning, and mentorship.
• We encourage speaking up, sharing ideas, and taking ownership. Our team spans Asia, embracing diversity and fostering a rich exchange of perspectives and experiences.
• Together, we harness the power of fintech and e-commerce to impact people's lives meaningfully.
• Grow with us and shape the future of fintech. Join us and be part of something bigger

Personal Data Protection Act:

By submitting your application for this job, you are authorizing MatchMove to:

• collect and use your personal data, and disclose such data to any third party with whom MatchMove or any of its related corporations has service arrangements, in each case for all purposes in connection with your job application and employment with MatchMove; and
• retain your personal data for one year to consider future job opportunities (where applicable).