Chief Information Security Officer, CISO

Posted 2026-05-06
Remote, USA Full-time Immediate Start
    Job Description:
  • Own and continuously mature the enterprise Information Security Program.
  • Align controls and architecture with NIST CSF, NIST 800-53, FFIEC guidance, PCI DSS, and SOC requirements.
  • Conduct proactive program assessments and identify security gaps before they become issues, working cross-functionally to execute upon risk mitigation objectives.
  • Develop and execute a multi-year security roadmap aligned to business growth and regulatory expectations.
  • Present clear, risk-based recommendations to executive leadership and the Board.
  • Translate strategy into measurable execution plans with defined milestones.
  • Drive remediation of audit, regulatory, and penetration testing findings.
  • Ensure strong incident response, vulnerability management, and change management and development programs.
  • Implement metrics that demonstrate real risk reduction and program effectiveness.
  • Lead and develop a high-performing Information Security team.
  • Provide clear direction, prioritization, and performance accountability across detection engineering, vulnerability management, application security, and security architecture functions.
  • Oversee operation and optimization of core security tooling, budget, and contract renewal management, including SIEM/XDR platforms (e.g., Wazuh), vulnerability management (e.g., Tenable), application security testing (e.g., Veracode), and related monitoring and detection systems.
  • Ensure security diagrams, architecture artifacts, and workflow documentation accurately reflect implemented controls and are audit-ready.
  • Establish measurable performance objectives and operational KPIs for the security team in collaboration with teams responsible for execution (MTTR, vulnerability remediation SLAs, detection coverage, control validation, etc.).
  • Drive automation and continuous improvement across monitoring, alert triage, vulnerability remediation, and DevSecOps integration.
  • Build a culture of ownership, urgency, and technical depth cross-functionally associated with the program.
  • Maintain sufficient hands-on familiarity with security tooling and architecture to effectively challenge assumptions, validate control effectiveness, and provide technical direction when needed.
  • Assist in the management of Nymbus’ risk log with the ability to identify, manage, and make security risk recommendations.
  • Develop a deep understanding of our platform, cloud architecture (AWS/GCP), integrations, and AI initiatives.
  • Partner with the CTO, engineering, product, NOC, and operations leaders.
  • Ensure strong embedded security controls into SDLC, DevOps, and cloud-native development practices.
  • Enable secure innovation rather than slow it down.
  • Serve as the subject matter expert in banking security and regulatory expectations.
  • Lead SOC/PCI audit readiness and regulatory exam preparedness.
  • Engage confidently with regulators, auditors, and bank and credit union clients and prospects.
  • Establish governance frameworks for secure and responsible AI usage.
  • Assess model risk, data protection, and security implications of AI-driven products.
  • Stay ahead of evolving regulatory expectations in AI and fintech.
    Requirements:
  • 10+ years of progressive experience in information security leadership.
  • Significant experience in banking, financial services, or regulated fintech.
  • Deep knowledge of:
  • NIST CSF & NIST 800-53
  • FFIEC guidance
  • PCI DSS
  • SOC audits
  • Experience leading cloud-first security programs (AWS and/or GCP).
  • Demonstrated ability to independently assess risk and make defensible decisions.
  • Strong executive communication and cross-functional leadership skills.
  • Experience operating in high-growth or fast-changing environments.
  • Preferred certifications: CISSP, CISM, CRISC or equivalent.
    Benefits:
  • Annual Cash Bonus and Equity Options commensurate with the role level and experience.
  • Fully Remote.
  • 401(k) plan.
  • Insurance - Health, Dental and Vision.
  • Time Off.
Apply Now

Similar Jobs

Recent Jobs

Remote Customer Service Representative at Chewy
Remote Chief Information Security Officer Job at Confidential in Portland
Chief Information Security Officer | MeridianLink | Remote US
Executive Assistant to the COO
[Remote] Chief Operating Officer - World Financial Group (WFG)
Technical Sustainability Manager (Hybrid, NYC Area)
Technical Sustainability Manager (Hybrid, NYC Area)
Claims Examiner - Liability (REMOTE- General Product/Property Liab & Lit exp)
[Hiring] Litigation Claims Examiner @Reserv
Customer Service Coach - Cigna Healthcare - Remote

You May Also Like

**Experienced Full Stack Data Entry Analyst – Web & Cloud Application Development**
Machine Learning Engineer - Perception Computer Vision
Remote Data Entry Specialist – Work From Home Position | $25/Hour | Data Management & Administrative Excellence
Remote Data Entry Specialist – Work From Home Position | Airline & Travel Operations Data Management Professional
**Experienced Apple Home Advisor – Remote Customer Support Specialist**
Project Manager - Product Enablement PM
**Experienced Chat Support Agent (Remote) - Entry Level, No Degree Required - $15-$18 per Hour**
**Experienced Work-from-Home Customer Service Representative – Virtual Support Agent**
Arenaflex Remote Customer Service Representative – Work From Home Customer Support Specialist
**Experienced Part-Time Data Entry Specialist – Remote Opportunity at arenaflex**
Back to Job Board