×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security

Information Security Lead

Job in New York, New York County, New York, 10261, USA
Listing for: Silversmith Capital Partners
Full Time position
Listed on 2026-05-29
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security
Salary/Wage Range or Industry Benchmark: 150000 - 165000 USD Yearly USD 150000.00 165000.00 YEAR
Job Description & How to Apply Below
Location: New York

  • Location Remote - United States
  • Job Category Corporate, Information Technology
  • Employee TypeFT Exempt
  • Required Degree4 Year Degree
  • Travel
    10%
  • Minimum Experience5 Years

Description

Compensation Transparency

Salary: $150,000 - $165,000

At Earned, we are committed to fair and transparent compensation. Base salary is market-driven and determined at the time of offer based on benchmarks such as role-specific market data, company stage, and factors such as internal equity, relevant experience, interview performance, location, and level.

About Earned

Earned is a category-defining, first-in-kind tax-smart financial services firm dedicated to serving doctors, their families, and their practices. Our goal is to be the only financial partner doctors need by seamlessly integrating personal and practice-based solutions to maximize their wealth potential and drive better financial outcomes.

We bring together tax, accounting, wealth management, insurance, and legal services under one platform not as a generic one-stop shop, but to deliver better advice through an integrated view of a doctor’s full financial life. Our differentiation is relationship-led, trust-based selling paired with disciplined execution across the ecosystem.

Earned manages $3.4B+ in assets, serves more than 20,000 clients, and is one of the fastest-growing doctor-focused platforms in the country. Backed by $200M of committed capital, we are scaling rapidly through acquisitions and organic growth across multiple service lines.

We are building this platform from the ground up, leveraging modern technology, data, and AI to simplify the client experience and make it easier for advisors and sales teams to deliver high-quality advice rating across multiple service lines, acquired entities, and client entry points requires a highly disciplined yet relationship-driven go-to-market model that can scale without losing trust.

Join us as we build the future of financial services for doctors faster, smarter, and at scale.

Job Summary

Earned is hiring an Information Security Lead to own and operate our security governance, compliance, and risk programs. This is a hands-on individual contributor role focused on building, running, and continuously improving Earned’s security control system. You will take ownership of Earned’s Written Information Security Program (WISP), ensure it is operational in practice, and lead SOC 2 readiness and audits to validate and evidence those controls.

You will partner closely with IT, Engineering, Legal, and system owners, and support security governance during acquisitions and system integrations as needed to maintain Earned’s security posture.

Key Responsibilities

  • Own the WISP and security policy framework: Own and continuously improve Earned’s Written Information Security Program (WISP), including applicable jurisdiction-specific requirements (e.g., GLBA, SEC Reg S-P, state-level data security obligations), and maintain supporting security and privacy policies, standards, and procedures (access control, data handling, business continuity and incident response governance, intercompany agreements, responsible use of AI).  /li
  • Own SOC 2 delivery: Lead SOC 2 Type I readiness and audit, then operate the ongoing program to achieve and maintain SOC 2 Type II, including audit planning, evidence strategy, timelines, and direct interaction with auditors.
  • Partner on control implementation: Work closely with IT and Engineering to define control requirements and verify evidence for technical and operational controls across core platforms (e.g., Microsoft 365 for corporate systems and AWS for product infrastructure), with implementation owned by those teams.
  • Evidence and access reviews (SOC 2 controls): Operate the compliance cadence in Vanta, including evidence collection and periodic access reviews, and define standards for privileged access in partnership with IT.
  • Risk visibility and tracking: Identify and document security and compliance risks, track remediation with control owners, and provide clear visibility into risk status and priorities for leadership.
  • Vendor risk (critical vendors): Personally run security risk assessments for tier-1 vendors,…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search