About the Client
Our client is an international crypto payment processor headquartered in Tallinn, Estonia. The company provides secure and compliant digital asset infrastructure to B2B clients across high-risk verticals through processing, b2b crypto wallets, OTC services, and APIs. As part of its European expansion, the company is now establishing a legal entity in Lithuania and is looking for a local CISO to lead the company’s information security activities. 

Role Overview
We are looking for an experienced and strategic Chief Information Security Officer (CISO), who will be responsible for defining and executing the company’s information security strategy, ensuring compliance with EU regulatory requirements such as MiCA and DORA, and safeguarding critical infrastructure supporting crypto payment services.

This role combines regulatory engagement, risk oversight, and hands-on security leadership. The CISO will act as the primary point of contact for information security with regulators, auditors, and internal stakeholders, ensuring that the company’s infrastructure remains secure, resilient, and compliant.

Key Responsibilities

• Define and oversee the information security strategy for the Lithuanian entity, aligned with group-wide objectives and regulatory obligations.

• Ensure compliance with MiCA, DORA, GDPR, and other EU and Lithuanian ICT security frameworks.

• Establish and maintain robust cybersecurity policies, procedures, and incident response frameworks.

• Supervise ICT and operational risk management, business continuity planning, and disaster recovery testing.

• Act as the primary representative for security matters in communications with regulators, auditors, and supervisory bodies.

• Oversee secure infrastructure design, third-party vendor management, and the implementation of security-by-design principles.

• Ensure continuous monitoring, detection, and response mechanisms are in place for cyber threats.

• Collaborate closely with the Board, technology leadership, and compliance teams to balance innovation with security and regulatory requirements.

• Lead security awareness and training programs across the organization.

Key Requirements

• 5+ years in a senior cybersecurity or ITSEC leadership role within fintech, crypto, payments.

• Strong knowledge of EU regulatory frameworks, particularly MiCA, DORA, and ICT-related compliance standards.

• Proven track record of building and managing information security frameworks in regulated environments (e.g., PSP, EMI, CASP).

• Expertise in risk management, incident handling, and regulatory reporting.

• Familiarity with crypto payment infrastructure, secure key management, and blockchain-related security is a strong advantage.

• Professional certifications (e.g., CISM, CISSP, ISO 27001 Lead Auditor/Implementer) are highly desirable.

• Full professional fluency in English and Lithuanian. 

Soft Skills

• Integrity, independence, and strong ethical standards.

• Excellent communication skills with the ability to translate complex security topics into business language.

• Strategic mindset paired with hands-on problem-solving abilities.

• Ability to work effectively under regulatory scrutiny and within fast-paced environments.

What We Offer

• A high-impact executive role shaping the information security agenda of a regulated crypto business.

• Collaboration with global experts across compliance, risk, technology, and product.

• Competitive compensation and long-term career growth in a scaling international fintech.
  
  If you are an experienced information security professional with en expertise in regulated fintech, we invite you to apply and help shape the future of secure crypto payments in Lithuania.