Regional Security Officer - EMEA

Regional Security Officer – EMEA at Ingenico

Ingenico is the global leader in payments acceptance solutions. With 40 years of experience, our world‑class terminals, solutions and services enable the entire ecosystem of payments acceptance. As the trusted technology partner for merchants, banks, acquirers, ISVs, payment aggregators and fintech customers, Ingenico’s culture is built on innovation, trust and sustainability.

Role Overview

The Regional Chief Security Officer (R‑CSO) is responsible for implementing, controlling and continuously improving the Group’s global security strategy within the designated region. Acting as the senior security leader locally, the R‑CSO aligns with global policies while addressing regional needs, regulatory requirements and customer expectations. Cybersecurity is the primary focus, but the role also encompasses operational and industrial security, physical protection of people and assets, business continuity and crisis management. The role is both operational and strategic, demanding strong leadership, communication and influence skills.

As part of the Group’s second line of defense, the R‑CSO provides independent oversight, control and challenge of security practices implemented by business and operations teams.

Key Responsibilities

• Governance, Risk & Compliance
• Apply, deploy, and monitor the Group’s security policies and standards within the region, ensuring alignment with global frameworks.
• Evangelise on cybersecurity, addressing executives, senior leaders and representing Ingenico in external information security communities.
• Organise and manage risk security committees for the region, providing regular risk reports and key metrics to the Group CSO and regional leadership team.
• Incident, Crisis Management and Business Continuity
• Own all security incidents in the region, ensuring effective response, escalation and communication.
• Act as the regional crisis leader, coordinating with the incident management organization, Group CSO, local management and authorities.
• Control the effectiveness of incident, crisis and business continuity response plans through testing, drills and independent reviews.
• Customer & Partner Engagement
• Act as the primary security point of contact for regional customer questionnaires, audits, RFPs and due diligence activities.
• Support business development by demonstrating the Group’s security posture.
• Build trusted relationships with partners and external stakeholders on security matters.
• Provide independent oversight of third‑party and supply chain security in the region.
• Coordinate with internal stakeholders for such matters.
• Communication, Awareness & Culture
  • Serve as a trusted advisor and business partner to regional executive management, translating technical risks into business impacts.
  • Lead cultural change and regional awareness campaigns across cybersecurity, industrial and physical domains.
  • Represent the Group at regional industry events, regulatory forums and standardisation bodies to influence and anticipate evolving requirements.
  • Liaise with local and regional authorities (e.g., regulators, law enforcement, CSIRTs) on security topics.
• Physical & People Security
  • Oversee the security of facilities, assets and employees in the region.
  • Control and monitor programmes for access control, surveillance, executive protection and insider risk management.

Key Requirements

• Education
  • Bachelor’s degree in Cybersecurity, Information Technology, Computer Science or a related field.
  • Advanced certifications such as CISSP, CISM, CISA or ISO 27001 Lead Implementer/Lead Auditor are highly preferred.
• Experience
  • Minimum of 10 years of experience in information security, with at least 5 years in senior leadership roles (e.g., CISO, Director of Information Security).
  • Proven experience in managing information security for regulated industries, particularly in the payment solutions or financial services sectors.
  • In‑depth knowledge of global security frameworks and standards such as PCI‑DSS, ISO 27001, NISv2 and DORA.
  • Strong experience in leading cross‑functional teams to design, develop and implement secure payment terminals and related systems.
  • Hands‑on experience with security certifications, audits and assessments related to ISO 27001, PCI‑DSS and other applicable regulatory frameworks.
• Skills
  • Expertise in information security management, including risk assessment, vulnerability management, security architecture and secure coding practices.
  • Strong leadership and team‑building abilities, with a proven track record of leading security teams and projects.
  • Exceptional communication skills, with the ability to communicate complex security concepts to both technical and non‑technical stakeholders.
  • Deep understanding of incident response and crisis management, particularly related to payment systems and customer data protection.
  • Proficiency in cybersecurity technologies such as firewalls, encryption, intrusion detection/prevention, SIEM and other tools relevant to securing payment terminals.

Desirable Skills

• Experience with cloud security, network security and endpoint security technologies in the context of payment systems.
• Familiarity with digital resilience, business continuity planning and disaster recovery processes in alignment with DORA.
• Good knowledge of cloud solutions and O365 security.
• Experience in third‑party risk management and ensuring compliance across the supply chain for third‑party vendors, particularly in the context of hardware and software used in payment terminals.

Equal Opportunity & Inclusive Hiring

As part of our values, we embrace diversity and inclusion at Ingenico. We are an equal‑opportunity employer and do not discriminate on the basis of an individual’s race, national origin, colour, gender, gender identity, gender expression, sexual orientation, religion, age, disability, marital status or any other protected characteristic under applicable law.

Ingenico welcomes and encourages applications from people with disabilities. Accommodations are available on request for candidates taking part in all aspects of the selection process.

We want to adapt our processes and create a safe work environment that welcomes everyone.