Xsolla

Chief Information Security Officer (CISO)

Remote

Not SpecifiedCompensation
Expert & Leadership (9+ years)Experience Level
Full TimeJob Type
UnknownVisa
Gaming, Information SecurityIndustries

Position Overview

  • Location Type:
  • Job Type:
  • Salary:

Xsolla is seeking an experienced and visionary Chief Information Security Officer (CISO) to lead and scale our global information security and compliance strategy. As CISO, you will be responsible for safeguarding our products, platforms, infrastructure, and customer data across all regions. This is a strategic leadership role, essential to maintaining the trust of our partners and users as we grow and innovate in the global gaming ecosystem. You will report directly to the CTO and work cross-functionally with executive leadership, engineering, legal, compliance, and product teams. Your mission is to align Xsolla’s security and compliance posture with its business objectives, ensuring world-class protection while enabling innovation and operational agility.

About Us

At Xsolla, we believe that great games begin as ideas, driven by the curiosity, dedication, and grit of creators around the world. Our mission is to empower these visionaries by providing the support and resources they need to bring their games to life. We are committed to leveling the playing field, ensuring that every creator has the opportunity to share their passion with the world. Headquartered in Los Angeles, with offices in Berlin, Seoul, and beyond, we partner with industry leaders like Valve, Twitch, and Ubisoft to clear the paths for innovation in gaming. Our global reach spans over 200 geographies, offering more than 700 payment methods in 130+ currencies.

Enjoy the game!

Responsibilities

  • Define, drive, and continuously evolve Xsolla’s enterprise-wide information security and compliance strategy.
  • Serve as the primary executive owner of cybersecurity risk management and cybersecurity incident response.
  • Advise the executive team on security risks, priorities, and investment decisions.
  • Align security initiatives with company objectives, regulatory requirements, and customer trust commitments.
  • Build, lead, and mentor a world-class security organization, including security operations, application security, and GRC (governance, risk & compliance).
  • Promote a culture of security-first thinking across all levels of the organization.
  • Oversee security for private and public cloud infrastructure (AWS/GCP), SaaS applications, corporate IT, and development environments.
  • Embed secure development practices into SDLC, CI/CD pipelines, DevSecOps, and infrastructure-as-code.
  • Lead proactive threat modeling, secure code reviews, vulnerability management, and threat detection initiatives.
  • Ensure a robust and tested incident response and disaster recovery framework.
  • Own Xsolla’s compliance programs, including PCI DSS, SOC 1, SOC 2, GDPR, CCPA, and other applicable frameworks and regulations.
  • Lead regular audits, risk assessments, and gap analyses to ensure ongoing compliance.
  • Collaborate with Legal, IT, and external auditors to ensure policies and procedures align with evolving regulatory and industry requirements.
  • Establish a company-wide risk management framework to identify, assess, mitigate, and monitor cybersecurity and compliance risks.
  • Evaluate, implement, and manage security and compliance tooling across infrastructure, endpoints, and applications.
  • Engage and manage third-party vendors for audits, penetration testing, threat intelligence, and managed services.
  • Standardize scalable processes for vulnerability remediation and compliance monitoring.
  • Translate security and compliance risks into business terms and effectively communicate them to executive leadership and stakeholders.
  • Deliver regular reports, metrics, and board-level updates on security posture, risk, and compliance.

Requirements

  • 10+ years of progressive leadership experience in cybersecurity and compliance, ideally in SaaS or enterprise technology environments.
  • Deep expertise in cloud-native security (AWS/GCP), application security, data protection, and risk management.
  • Direct experience managing compliance programs across multiple frameworks.

Skills

Cybersecurity strategy
Risk management
Incident response
Security compliance
Leadership
Cross-functional collaboration
Regulatory requirements
Security governance

Xsolla

Integrated payment solutions for video games

About Xsolla

Xsolla provides integrated payment solutions and tools specifically designed for video game publishers and developers. Their services include payment processing, fraud detection, and gamified experiences, which help clients monetize their games and engage players effectively. Xsolla operates in over 200 countries, supports more than 130 currencies, and offers services in over 20 languages, making it accessible to a wide range of clients from indie developers to large publishers. Unlike many competitors, Xsolla focuses exclusively on the video game industry, allowing them to tailor their offerings to meet the unique needs of game developers. The company's goal is to enhance the gaming experience for players while providing developers with the tools they need to succeed.

Los Angeles, CaliforniaHeadquarters
2005Year Founded
$73MTotal Funding
DEBT_PPCompany Stage
Fintech, Entertainment, GamingIndustries
501-1,000Employees

Benefits

Health Insurance
Dental Insurance
Vision Insurance
Unlimited Paid Time Off
Professional Development Budget

Risks

Web3 expansion with Xsolla ZK may face regulatory challenges in strict regions.
MENA market entry with iBLOXX could encounter geopolitical and market barriers.
Technical integration of 'Pay with Points' may struggle with user adoption issues.

Differentiation

Xsolla offers a comprehensive suite of tools for game monetization and distribution.
The company supports over 130 currencies and 20 languages, enhancing global reach.
Xsolla's partnerships with major gaming entities like Valve and Ubisoft boost credibility.

Upsides

Xsolla's launch of Xsolla ZK taps into the growing Web3 gaming market.
The Mastercard partnership introduces innovative payment solutions like 'Pay with Points'.
Collaboration with iBLOXX expands Xsolla's presence in the MENA gaming ecosystem.

Land your dream remote job 3x faster with AI