Chief Information Security Officer (CISO) (Fintech)

TL;DR

Chief Information Security Officer (CISO) (Fintech): Leading enterprise cybersecurity strategy, security operations, and governance, risk, and compliance for a publicly traded insurance carrier with an accent on regulatory adherence and SOX audit cycles. Focus on building robust security engineering functions, managing third-party risk, and communicating cybersecurity posture to the Board of Directors.

Location: Must be based in or able to commute to Morristown, NJ or Austin, TX (Hybrid)

Salary: $237,500 - $390,000

Company

Hippo is a tech-native, diversified carrier platform dedicated to making homeownership effortless through data-driven insurance solutions.

What you will do

• Develop and execute enterprise cybersecurity strategy aligned with business risk and regulatory requirements.
• Build and lead security operations, including threat detection, incident response, and vulnerability management.
• Own the SOC 2 program end-to-end, including control design and auditor engagement.
• Lead GRC functions, maintaining risk registers, policy frameworks, and control libraries.
• Manage third-party and vendor cybersecurity risk programs.
• Report cybersecurity posture, risk trends, and incident activity to the Board of Directors and Audit Committee.

Requirements

• 10+ years of experience in cybersecurity, with 5+ years in a senior leadership role (CISO, VP, or Head of Security).
• Experience at a regulated, publicly traded company with direct involvement in SOX audit cycles.
• Proven track record of building and managing security operations and SOC 2 programs.
• Strong GRC background with experience in financial services, insurance, or healthcare regulations.
• Ability to present complex risk information to boards and regulators.
• Must be able to work in a hybrid capacity in Morristown, NJ or Austin, TX.

Nice to have

• Experience in the insurance, Insurtech, or fintech industry.
• Familiarity with privacy frameworks like CCPA/CPRA.
• Relevant certifications such as CISSP, CISM, CRISC, or CISA.
• Background in security engineering or application security.

Culture & Benefits

• Comprehensive medical, dental, and vision plans for employees and families.
• 401(k) retirement plan with employer contributions.
• Equity compensation eligibility.
• Flexible Time Off policy.
• 12 weeks of parental leave through the Little Hippos Program.
• Support for training and internal career growth.