About Light

At Light, we’re on a mission to replace the ERP. Traditional systems are slow, painful to implement, and built for factories — not modern companies. Our Smart Financial Platform (SFP) is built for today’s global, service-based businesses, automating accounting, reporting, and financial flows with speed and simplicity.

In just a short time, we’ve gone from idea to powering operations for leading companies like Lovable, Legora, and Keyshot. We build with our customers, ship at high velocity, and obsess over making finance software that people actually love to use.

You’re joining an early-stage company defining a new software category, backed by top investors including Balderton, Atomico, Cherry Ventures, Seedcamp, and Entrée Capital. Our advisory board includes the former CTO of Workday Financials, the Chief Architect of SAP S/4HANA along with EY and Oracle SVPs. At Light, you’ll work with exceptional people, build category-defining products, and have the freedom to shape something truly transformative.

UK Visa sponsorship available for exceptional candidates

The InfoSec & Cybersecurity Lead role

As InfoSec & Cybersecurity Lead, you will help shape the strategy, architecture, and governance of security across Light’s platform, infrastructure, and internal systems. You will be a core voice in risk decisions, compliance, incident response, and security awareness across the team. In this high-growth environment you’ll balance strategic thinking with hands-on execution.

• Strategy & Governance: Develop the security strategy, maturity roadmap, and metrics.

• Risk & Compliance: Lead security compliance programs (SOC 2, ISO 27001, PCI DSS, GDPR / data privacy using Vanta) and audits, and assessments. Manage third-party and vendor risk.

• Secure Architecture & Engineering: Review system designs, threat-model new features, secure integrations, and embed security into CI/CD pipelines.

• Incident Response & Continuity: Establish and maintain incident response plans, run simulations, and lead real-world incident triage and remediation.

• People & Culture: Drive a security-first mindset through training, awareness, and role-based access controls.

• Vendor & Cloud Security: Evaluate and ensure the security of vendors, cloud infrastructure, access controls, and network segmentation.

How you fit into the team

You combine deep technical knowledge with strategic judgment, knowing how to balance real-world risks with business speed. You’re hands-on when needed, but equally capable of driving policy, awareness, and long-term maturity. You’ve led security in high-growth environments before — and you’re ready to do it again, with impact.

Your qualifications could be:

• 5-7 years’ experience in information security / cybersecurity roles, preferably in fintech, SaaS or payments

• Proven experience owning security in a fast-moving, high-growth environment

• Deep technical expertise: cloud (AWS, GCP, Azure), network, application security, identity & access, encryption, threat modelling

• Hands-on in vulnerability management, penetration test oversight, secure code review, incident response

• Familiarity with compliance on financial systems: SOC 2, ISO 27001, PCI, GDPR, etc.

• Excellent risk judgment and ability to balance security vs business velocity

• Strong communication skills — able to influence non-technical stakeholders and train engineers

• Experience leading or scaling a small security team or managing security partnerships
  
  

Bonus points:

• Prior experience in fintech / financial software / payments

• Certifications such as CISSP, CISM, OSCP, CRISC, or equivalent

• Experience with specific regulatory standards (e.g. PCI, PSD2, ISO 27001)

• Experience in embedding DevSecOps practices / platform security

Our hiring process

1. Short chat with Nick (Talent)

2. Take home challenge

3. Interview with two colleagues

   1. Discussing the take home challenge

   2. Getting to know each other

4. Leadership interview

5. Offer

A few tips to stand out

• Show how you’ve balanced speed and security in a high-growth environment

• Demonstrate how you’ve influenced culture — not just control

• Share how you’ve measured and communicated risk, coverage, and progress

• Walk us through your past playbooks or roadmaps — and how they evolved

• Bonus if you can articulate the “why” behind the trade-offs you’ve made
  
  

The good stuff

In addition to being part of a great team and working in a really fun and innovative environment, we offer:

💸 Competitive salary + stock options in our fast-growing startup
🍼 Paid parental leave
🏝 25 days of annual leave + public holidays (in your country)
🥳 Regular socials and company off-sites.
🚀 A huge opportunity to shape a market-defining product and engineering culture

The famous last words

At Light, we’re building the most trusted financial platform in the world — and trust starts with security. As our InfoSec & Cybersecurity Lead, you’ll help us earn that trust every day.

If you want to lead security at a company where speed and safety go hand in hand, we’d love to hear from you at careers@light.inc

Join the rocket ship while it’s taking off 🚀