About Triple
Triple is building the intelligence platform for banking operations. We are the leading transaction enrichment engine, trusted by 60+ banks and fintechs across 30+ markets. We have raised $10M in funding, an experienced team, and a large network of investors behind our company.
We're now solving one of the most painful problems in payments: dispute and chargeback management. Our AI agents automate the dispute workflows for card issuers, from intake and classification through evidence evaluation and scheme submission to Mastercard and Visa. We value getting things done.
Role
The Director of Information Security is a leadership position that will be accountable and responsible for Triple’s security across all functional areas. He/she will be responsible for the design, implementation and execution of Triple’s security program. The successful candidate will be in charge of planning and development of the security strategy and best practices to ensure that information and assets are adequately protected. This position requires a visionary leader with strong skills in IT security, risk and business sense. A key element of the role is to determine acceptable levels of risk for the organization and coordinate with the rest of the tech team the implementation.
The Director of Information Security will partner with Triple’s CTO to ensure that the security program components are aligned with Triple’s strategy. The Director of Information Security will report directly to the CTO, and will work closely with Triple’s infrastructure and engineering teams.
Requirements
Key responsibilities
* Develop and implement a security program: design, promote and implement organization-wide security solutions which align to the business strategy focusing on application and platform service development, technology infrastructure, and overall Cyber Security.
* Engage with Sales and Customer Engineering team members and other business units in response to relevant inquiries and requests regarding risk and security requirements
* Be on top of communications with customer security teams
* Answer RFPs, Questionnaires and Forms from integrations, explaining Triple Security practices to customers
* Lead the promotion of security practices throughout the organization
* Collaboration with key business and IT leaders to ensure that security policies and standards are implemented, enforced, and enhanced where appropriate.
* Collaboration and coordination with leadership across all departments on risk and security related matters
* Develop and implement guidelines that cover: risk assessments, issues and event management, impact analysis, monitoring and reporting.
* Evaluate complex business problems to ensure risks and exposures are properly mitigated
* Identify potential areas of vulnerability and risk; develop/implement corrective action plans for resolution of issues, and provide general guidance on how to prevent or address similar situations in the future
* Lead certification processes and own the audit structure for ISO 27001, SOC 2, GDPR, CSA etc.
* Develops and implements security frameworks for agentic AI, and builds production-grade security tooling.
* Monitors AI systems to detect vulnerabilities and fraudulent activity
Our ideal candidate
* 5-10 years of Information Security experience with at least 5 years of managing complex, cross-functional teams and projects
* Ability to influence and to lead enterprise change
* Ability to deal effectively with ambiguity and complexity
* Outstanding oral/written communication, organization, and interpersonal skills and a demonstrated effectiveness in dealing with complex situations
* Experience with secure design principles, including broad knowledge of information security principles (e.g., architectural control, authorization, authentication, access control, confidentiality, integrity etc.)
* Experience performing both risk and impact assessments along with communicating issues in terms of both technical and business impact
* Experience in implementing an effective international security program to support the identification and implementation of controls to ensure that the program is seen as a business enabler
* Experience in designing, implementing, and managing cloud technologies
* Knowledge of AI/ML frameworks, data privacy techniques, cloud security, Python, Golang, JS, and container security.
* Deep understanding of cybersecurity principles combined with specialized knowledge in machine learning models