Chief Information Security Officer

About the Role

As Chief Information Security Officer, you will be responsible for leading and strengthening the company's entire security function across four key domains: Governance, Risk & Compliance (GRC), Offensive Security (Red Team), Defensive Security (Blue Team), and Security Engineering & Architecture. You will take charge of strategy, improve processes, manage budgets, and build out teams to support ambitious growth goals. The CISO will also represent security to senior leadership and the board, ensuring the organization is compliant with industry standards and ready for regulatory scrutiny.

What You'll Do

• Oversee and enhance policy frameworks and regulatory compliance programs (e.g., SOC, ISO27001, GDPR)
• Conduct and improve security monitoring, incident response, and threat hunting functions
• Direct penetration testing and vendor management activities
• Lead the engineering of secure network and identity management systems in the cloud
• Build, mentor, and expand a skilled security team across underdeveloped areas (especially GRC and Blue Team)
• Engage with industry forums, prepare audit and compliance reports, and present to company leadership
• Drive readiness for public company listing and support ongoing business growth

What You'll Need

• Strong experience in regulated industries (preferably fintech; healthcare also considered)
• Deep knowledge of cloud-first and zero-trust security models
• Proven track record in building full-scale security programs for public or pre-IPO companies
• Hands-on leadership with the ability to develop and expand high-performing teams
• Expertise in standards compliance, including SOC, ISO27001, and GDPR
• Experience presenting security strategy to executive and board-level leadership
• Familiarity with security certifications and regulatory forums (e.g., FINRA, ISAC)
• Ability to manage budgets and vendor relationships in a dynamic environment