Director Of Security (Fintech)

TL;DR

Director Of Security (Fintech): Defines and implements comprehensive information and cyber security strategy, ensuring the protection of sensitive data, systems, and client information across global markets. Focus on risk management, compliance with international regulations (GDPR, LGPD, NIST, ISO 27001), and managing security operations.

Location: Must be based out of São Paulo, Brazil and come into our office at complexo JK Iguatemi (2-3 days/week).

Company

hirify.global is a financial operating system built for global businesses that provides corporate cards, cross-border payments, and spend management software within one unified platform.

What you will do

• Develop and maintain a robust global information security strategy aligned with business objectives and regulatory requirements.
• Oversee the design, implementation, and continuous improvement of security policies, standards, procedures, and guidelines.
• Establish and maintain an enterprise-wide information security risk management framework.
• Oversee security operations, including vulnerability management, penetration testing, and incident detection and response.
• Collaborate with engineering and product teams to integrate security by design principles throughout the SDLC.
• Build, mentor, and lead a high-performing team of security professionals.

Requirements

• Bachelor's degree in Computer Science, Information Security, or a related field; Master's degree preferred.
• 10+ years of progressive experience in information security, with at least 5 years in a leadership or management role, preferably within a B2B SaaS or FinTech environment.
• Proven experience operating in a global organization with a strong understanding of diverse regulatory landscapes across North America, EMEA, and Latin America (Mexico, Colombia, Brazil).
• Strong understanding of financial industry security regulations and compliance frameworks (e.g., PCI DSS, SOC 2, ISO 27001, NIST Cybersecurity Framework, GDPR, LGPD).
• Deep technical expertise across a broad range of security domains, including network security, cloud security (AWS, Azure, GCP), application security, data security, identity and access management, and incident response.
• Fluency in English required; proficiency in Spanish and/or Portuguese is a significant advantage.

Culture & Benefits

• The company operates across 20+ countries.
• Backed by top world-class investors including Andreessen Horowitz, Y Combinator, CRV, Tencent, Stanford University, Clocktower Ventures, and founders of more than 15 unicorns.