Head of Information Security (APAC)

Your Role:

Reporting to the Global CISO, the Head of Information Security (APAC) drives Alpaca's regional security, risk, and compliance, focusing on APAC regulations (APPI, FSA, MAS). You will be the regional security authority, collaborating with global teams (Security, Engineering, Legal, Compliance, Product) to align infrastructure, the trading platform, and internal systems with both global standards and local regulatory needs. This role merges security engineering, local compliance, risk management, and stakeholder engagement. You translate regional regulatory requirements into actionable security controls, ensuring a secure, scalable, and compliant platform. You will also be the main contact for regulators, auditors, and local stakeholders, enabling confident operations in highly regulated financial markets.

Things You Get To Do:

Regional Security & Compliance Leadership

• Manage Alpaca’s APAC information security program
• Interpret and implement local regulatory requirements into security controls
• Serve as the APAC security compliance and regulatory expert
• Ensure alignment with Global Security, Legal, and Compliance on financial services and data protection regulations

Security Risk Management

• Lead risk identification, assessment, and mitigation for cloud infrastructure, APIs, and trading systems