Plus
Включить Plus
Назад
Company hidden
22 часа назад

Head of Information Security (CISO) (Fintech)

215 831 - 239 979$
Формат работы
remote (только USA)
Тип работы
fulltime
Грейд
c_level
Английский
c1
Страна
US
Вакансия из списка Hirify.GlobalВакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:
/

TL;DR

Head of Information Security (CISO) (Fintech): Defining and overseeing enterprise-wide information security and risk management strategy for a US-based fintech company with an accent on regulatory compliance and cloud-native security. Focus on aligning security roadmaps with business goals, managing cyber risk within a highly regulated environment, and embedding DevSecOps into the SDLC.

Location: Remote (United States)

Salary: $215,831 - $239,979 USD

Company

hirify.global is a purpose-driven fintech company providing accessible credit cards and financial progress tools to underserved consumers in the U.S.

What you will do

  • Develop and refine the comprehensive Information Security and Cyber Risk Management strategy and roadmap.
  • Establish risk management frameworks and ensure compliance with PCI DSS, SOC 2, ISO 27001, CCPA, and NIST CSF.
  • Govern security architecture for cloud-native environments (AWS/GCP) and manage security tooling including SIEM, EDR, and DLP.
  • Champion DevSecOps principles by embedding SAST, DAST, and SCA controls into the CI/CD pipeline.
  • Lead the Security Incident Response Plan (SIRP) and manage Disaster Recovery (DR) and Business Continuity (BCP) efforts.
  • Provide regular security posture reporting and metrics to the Executive Team and Board of Directors.

Requirements

  • Must be based in the United States.
  • 5-10 years of experience in Information Security, with 3-5 years in a senior leadership role (Director, VP, or CISO).
  • Required: Demonstrable experience working within Fintech or a closely regulated financial services industry.
  • Deep expertise in regulatory frameworks such as PCI DSS, ISO 27001, or SOC 2.
  • Hands-on experience securing modern cloud-native environments (AWS, GCP).
  • Bachelor's degree in Computer Science, Information Technology, or a related field.

Nice to have

  • Advanced degree (Master's or MBA).
  • Professional certifications including CISSP, CISM, CRISC, or CISA.
  • Experience with offensive security, penetration testing, and threat intelligence.
  • Familiarity with securing microservices architecture and high-velocity workflows.

Culture & Benefits

  • Remote-friendly work environment.
  • Unlimited paid time off.
  • 401(k) match and monthly wellness stipend.
  • Comprehensive health, dental, and vision insurance options.
  • Paid parental leave and flexible spending accounts (childcare and healthcare).
  • Life insurance and disability coverage.

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →