Chief Information Security Officer

Headquartered in Charlotte, NC, and founded in 2012 by visionary minds shaping the future of banking and payments in the US, Finzly makes bank transformation radically simple. Our core-independent platform is trusted by some of the market’s leading financial institutions to transform operations and launch new products and services at speed.

We’ve been recognized with 20+ industry awards in the last two years - including three years in a row as one of the Best and Brightest Places to Work as well as accolades for Best Parallel Core Technology, Best Corporate Payments Solution, Best Payments-as-a-Service Provider, and Best Trading System. Quite simply, Finzly is known for being the best in everything we do, giving you the perfect opportunity to grow your career with impact.

About the Role:

Finzly is currently seeking a highly motivated Chief Information Security Officer to join our dynamic team based in Charlotte, NC. We are in search of an individual who thrives in a fast-moving environment and contributes to a team that embraces continuous delivery practices and places a strong emphasis on enhancing the customer experience. This role entails extensive collaboration and teamwork across various teams and organizational boundaries, playing a pivotal role in engineering services that consistently exceed customer expectations.

Our ideal candidate is a self-driven individual who excels at multitasking and flourishes as part of a collaborative team. Furthermore, we are seeking someone who possesses a genuine enthusiasm for exploring cutting-edge technologies, driving innovation, and thriving in a startup environment. If you're passionate about being part of a forward-thinking team, we encourage you to apply.

Responsibilities:

• Build and maintain effective relationships with business and technology stakeholders. Partner with the stakeholders across the company to raise awareness of risk management concerns.

• Develop and enhance an information security management framework (such as ISO, SOC2, etc.)

• Assist with the overall business technology planning by providing a current knowledge and future vision of technology and systems.

• Mitigate the risks various security threats pose to the organization's mission and goals.

• Developing secure business and communication practices, objectives, and metrics.

• Ability to develop and interpret standards, policies, and procedures and analyze systems and procedures, write and review standards and procedures, handle multiple projects.

• Work with external audit firms to achieve and maintain compliance accreditations.

• Manage client security assessments and develop internal security training programs and maintain materials for end-users.

• Stay current on security practices, threat landscape, laws, and regulations.

• Knowledge of network security threats and ability to implement preventative controls including firewalls, access controls, authentication systems, intrusion detection systems, VPNs, cryptography, etc.

• Ability to resolve advanced security issues in diverse and fast-paced environments.

• The ability to build good relationships at all levels and across all business units and organizations, and the ability to influence stakeholders of all levels.

Requirements:

• Minimum of 10 years of experience in a combination of risk management, information security, and IT jobs.

• 2 to 4 years of CISO experience at any bank with over $20B in asset size. OCC expertise is preferred.

• Advanced knowledge in the information security domain.

• Experience implementing an internal information security program preferred.

• Knowledge of common information security management frameworks, such as ISO/IEC, and NIST.

• Experience with Zero Trust Security tools like Zscaler is desirable.

• Familiarity with security tools such as Secure Frame and KnowBe4 is a plus.

• Excellent written and verbal communication skills and high level of personal integrity

• Innovative thinking and leadership with an ability to lead and motivate cross-functional teams.

• Specific experience in Agile (scaled) software development practices.

• Experience with cloud hosting environments such as AWS, Azure, etc.

• Experience in…