Information Security Officer

What’s holding global brands back in South Africa isn’t demand. It’s friction. We’re changing that. If you're excited by complex challenges, care about doing things properly, and thrive in a fast-moving environment, this is a rare opportunity to do your best work.

The problem Precium is solving:

Global businesses want to grow across the continent but broken payment experiences, regulatory minefields, and infrastructure gaps get in the way. Precium helps global brands reduce payment failures, navigate local regulations, and get paid, reliably and at scale.

We build payment infrastructure that reduces friction, increases revenue, and ensures compliance without compromising performance. From reconciliation to payouts, we handle the complexity so our clients can operate with confidence.

Our clients include South Africa’s biggest enterprises and some of the world’s most recognisable consumer brands. We're backed by global investors like QED Investors, Partech, and SpeedInvest, and we’re building for scale, for depth, and for the long term.

We’re a team of builders who care about craft, rigour, and impact. We value the effort it takes to do hard things well and we’re excited by the opportunity to shape how the world does business in South Africa.

We give global brands the infrastructure, insight, and control they need to grow in South Africa.

The role:
We’re seeking an Information Security Officer to lead and mature Precium’s security posture as we scale across markets and deepen our enterprise and global footprint. You’ll be responsible for building fit-for-purpose security practices that enable innovation, safeguard customer trust, and meet compliance obligations in regulated and enterprise-driven environments.

Reporting into the VP of Engineering, this role will sit at the intersection of engineering, operations, compliance, and leadership, helping us embed security into the DNA of how we build and deliver payment infrastructure. If you’re a proactive problem-solver with a strong technical foundation and a pragmatic approach to risk, we’d love to meet you.

Why this role matters:

Precium operates in one of the most sensitive and scrutinised spaces: financial services and payments. Our ability to protect customer data, uphold regulatory expectations, and earn trust is core to our business success. With a growing portfolio of enterprise and global clients, our security capabilities must scale ahead of risk, not behind it.

This role is critical in helping us achieve our mission to build world-class payment infrastructure that makes doing business in Africa effortless.

Key responsibilities:

• Develop, own, and maintain Precium’s information security roadmap and risk register in alignment with business and compliance needs.
• Implement and enforce best practice security policies across infrastructure, applications, endpoints, and data management.
• Support product, engineering, and compliance teams in embedding security-by-design into the SDLC and platform operations.
• Lead internal risk assessments and external security audits (e.g. PCIDSS, ISO 27001, SOC 2) with relevant stakeholders.
• Conduct regular vulnerability assessments, penetration tests, and risk modelling in collaboration with external providers.
• Establish incident response procedures and act as a point of contact in the event of a breach or suspected threat.
• Champion security education and awareness across the company—fostering a culture of accountability and care.
• Work with clients and partners to complete security reviews and questionnaires as part of enterprise procurement processes.
• Stay up to date with emerging threats, regulatory updates, and security technologies relevant to fintech and payments.
• Responsible for Internal IT security requirements that include amongst others, cloud security, mobile device management, management of Google Workspace, Password changes etc.

Challenges you will need to solve:

• Scaling security in a high-growth, startup environment without slowing down delivery.
• Navigating a complex stakeholder landscape where security intersects with engineering velocity, client trust, and compliance.
• Building clarity and confidence in security practices while working with legacy and new systems.
• Meeting (and staying ahead of) regulatory and enterprise requirements across multiple jurisdictions.

Who you are:

We are looking for someone who thrives in complexity, takes ownership, and is motivated by impact over title.

The ideal candidate will bring:

• 4+ years of experience in information security in a Fintech.
• Solid understanding, implementation and day to day running of Information Security with a major emphasis on maintaining PCI-DSS compliance.
• Strong knowledge of security governance, risk management, and compliance (GRC).
• Additional experience in cloud infrastructure (preferably AWS), secure coding practices, and data protection frameworks.
• Relevant supplier and partner management experience.
• Experience leading and implementing certifications like ISO 27001, SOC 2.
• Excellent communication skills and the ability to engage both technical and non-technical stakeholders.
• A hands-on, pragmatic approach with the ability to design scalable solutions.
• Passion for continuous learning and an interest in shaping systems from the ground up.

Why Precium:

• The opportunity to help lead Precium’s next growth chapter, shaping the future of payments in South Africa and beyond.
• A chance to work with some of the world’s leading global payment orchestrators and merchants.
• Exposure to South Africa, Latam, Asia, the US and Europe’s top fintech ecosystems and investors.
• A collaborative, fast-paced team environment that values curiosity, integrity, and ambition.
• Competitive salary, ESOP, and benefits.

How we work:

At Precium we follow 5 guiding values. These values underpin our day-to-day, guide our decision making both externally and internally and describe who we are.

• We spell Client with a capital C
• We speak and seek truth and transparency
• We are here to win the match together
• We continuously level up
• We take action

Job details:

• Remote-flexible work arrangement. (CPT = 2 days in office)
• Preferred start date: 25th May 2025
• Role budget: TBC
• Permanent role.

If you're ready to take on a diverse and challenging role where you can make a meaningful impact, we encourage you to apply and join our team