Chief Information Security Officer

at Xsolla
  • $110k-$300k
  • Remote - Canada

Remote

Cybersecurity

Executive

Job description

ABOUT US

At Xsolla, we believe that great games begin as ideas, driven by the curiosity, dedication, and grit of creators around the world. Our mission is to empower these visionaries by providing the support and resources they need to bring their games to life. We are committed to leveling the playing field, ensuring that every creator has the opportunity to share their passion with the world.

Headquartered in Los Angeles, with offices in Berlin, Seoul, and beyond, we partner with industry leaders like Valve, Twitch, and Ubisoft to clear the paths for innovation in gaming. Our global reach spans over 200 geographies, offering more than 700 payment methods in 130+ currencies.

Longevity Opportunity Vision Enjoy the game!

ABOUT YOU

Xsolla is seeking an experienced and visionary Chief Information Security Officer (CISO) to lead and scale our global information security and compliance strategy. As CISO, you will be responsible for safeguarding our products, platforms, infrastructure, and customer data across all regions. This is a strategic leadership role, essential to maintaining the trust of our partners and users as we grow and innovate in the global gaming ecosystem.

You will report directly to the CTO and work cross-functionally with executive leadership, engineering, legal, compliance, and product teams. Your mission is to align Xsolla’s security and compliance posture with its business objectives, ensuring world-class protection while enabling innovation and operational agility.

RESPONSIBILITES

  • Define, drive, and continuously evolve Xsolla’s enterprise-wide information security and compliance strategy.
  • Serve as the primary executive owner of cybersecurity risk management and cybersecurity incident response.
  • Advise the executive team on security risks, priorities, and investment decisions.
  • Align security initiatives with company objectives, regulatory requirements, and customer trust commitments.
  • Build, lead, and mentor a world-class security organization, including security operations, application security, and GRC (governance, risk & compliance).
  • Promote a culture of security-first thinking across all levels of the organization.
  • Oversee security for private and public cloud infrastructure (AWS/GCP), SaaS applications, corporate IT, and development environments.
  • Embed secure development practices into SDLC, CI/CD pipelines, DevSecOps, and infrastructure-as-code.
  • Lead proactive threat modeling, secure code reviews, vulnerability management, and threat detection initiatives.
  • Ensure a robust and tested incident response and disaster recovery framework.
  • Own Xsolla’s compliance programs, including PCI DSS, SOC 1, SOC 2, GDPR, CCPA, and other applicable frameworks and regulations.
  • Lead regular audits, risk assessments, and gap analyses to ensure ongoing compliance.
  • Collaborate with Legal, IT, and external auditors to ensure policies and procedures align with evolving regulatory and industry requirements.
  • Establish a company-wide risk management framework to identify, assess, mitigate, and monitor cybersecurity and compliance risks.
  • Evaluate, implement, and manage security and compliance tooling across infrastructure, endpoints, and applications.
  • Engage and manage third-party vendors for audits, penetration testing, threat intelligence, and managed services.
  • Standardize scalable processes for vulnerability remediation and compliance monitoring.
  • Translate security and compliance risks into business terms and effectively communicate them to executive leadership and stakeholders.
  • Deliver regular reports, metrics, and board-level updates on security posture, risk, and compliance.

REQUIREMENTS

  • 10+ years of progressive leadership experience in cybersecurity and compliance, ideally in SaaS or enterprise technology environments.
  • Deep expertise in cloud-native security (AWS/GCP), application security, data protection, and risk management.
  • Direct experience managing compliance programs across multiple frameworks (PCI DSS, SOC 12, GDPR, ISO 27001, etc.).
  • Proven ability to scale security programs globally while aligning with business and product objectives.
  • Strong communication and executive reporting skills.
  • Experience leading secure development and DevSecOps practices in high-growth environments.

NICE TO HAVE

  • Experience in the gaming industry, fintech, or B2B platform services.
  • Familiarity with tools such as Palo Alto Networks, Google Cloud Security Command Center (SCC), AWS Security Hub / AWS GuardDuty, or other cloud and code security platforms.
  • Professional certifications: CISSP, CISM, CCSP, CISA, or similar.
  • Deep understanding of global data privacy regulations and cross-border data handling.

$110,000 - $300,000 a year

The listed range is specific to Los Angeles, CA, and varies based on factors such as location and experience.

Equal Employment Opportunity Statement:

Xsolla is an equal opportunity employer. We celebrate diversity and are committed to creating an inclusive environment for all employees. We do not discriminate based on race, color, religion, sex, national origin, age, disability, sexual orientation, gender identity, or any other characteristic protected by law.

We consider qualified applicants with criminal histories in accordance with the Fair Chance Act.

Criminal History Consideration:

For the Chief Information Security Officer (CISO), we will conduct a background check that may include the following:

Criminal history check

Employment verification

Education verification

Relevance to Job Responsibilities:

The background check is relevant to this position because of the following role responsibilities:

Accessing confidential company data

Ensuring compliance with regulatory requirements

Handling sensitive financial information/managing budgets/accessing funds

Rights Under the Fair Chance Act:

Applicants are encouraged to inquire about their rights under the Fair Chance Act. If you have questions regarding our hiring practices, please contact [email protected].

Benefits:

We are passionate about fostering a supportive environment for our team, so we prioritize the physical, mental, and emotional well-being of our employees and their families through a comprehensive Benefits Program. This includes 100% company-paid medical, dental, and vision plans, unlimited Flexible Time Off, and a personalized career roadmap for each employee. By investing in professional development through training and educational opportunities, we ensure that our team thrives both personally and professionally. Together, we’re not just building a business; we’re cultivating a community that values creativity, collaboration, and the transformative power of play.

By submitting the following job application form, you consent to Xsolla processing your data for career-related inquiries and potential employment opportunities. We process your data in accordance with this Xsolla Privacy Notice for Job Applicants. Please direct any inquiries regarding your data privacy to [email protected].

Share this job:
Please let Xsolla know you found this job on Remote First Jobs 🙏

Similar Remote Jobs

Latest Jobs at Xsolla

Benefits of using Remote First Jobs

Discover Hidden Jobs

Unique jobs you won't find on other job boards.

Advanced Filters

Filter by category, benefits, seniority, and more.

Priority Job Alerts

Get timely alerts for new job openings every day.

Manage Your Job Hunt

Save jobs you like and keep a simple list of your applications.

Search remote, work from home, 100% online jobs

We help you connect with top remote-first companies.

Search jobs

Hiring remote talent? Post a job

Frequently Asked Questions

What makes Remote First Jobs different from other job boards?

Unlike other job boards that only show jobs from companies that pay to post, we actively scan over 20,000 companies to find remote positions. This means you get access to thousands more jobs, including ones from companies that don't typically post on traditional job boards. Our platform is dedicated to fully remote positions, focusing on companies that have adopted remote work as their standard practice.

How often are new jobs added?

New jobs are constantly being added as our system checks company websites every day. We process thousands of jobs daily to ensure you have access to the most up-to-date remote job listings. Our algorithms scan over 20,000 different sources daily, adding jobs to the board the moment they appear.

Can I trust the job listings on Remote First Jobs?

Yes! We verify all job listings and companies to ensure they're legitimate. Our system automatically filters out spam, junk, and fake jobs to ensure you only see real remote opportunities.

Can I suggest companies to be added to your search?

Yes! We're always looking to expand our listings and appreciate suggestions from our community. If you know of companies offering remote positions that should be included in our search, please let us know. We actively work to increase our coverage of remote job opportunities.

How do I apply for jobs?

When you find a job you're interested in, simply click the 'Apply Now' button on the job listing. This will take you directly to the company's application page. We kindly ask you to mention that you found the position through Remote First Jobs when applying, as it helps us grow and improve our service 🙏

Apply