Chief Information Security Officer (CISO)
Cybersecurity Leadership
Develop and execute a comprehensive security strategy aligned with industry standards (NIST, ISO 27001, CIS Controls) to safeguard sensitive financial data.
Continuously assess cyber threats, vulnerabilities, and implement proactive security measures.
Ensure compliance with financial industry regulations (SEC, FINRA, SOC 2), managing audits and certifications.
Evaluate and manage security risks associated with external partners, vendors, and cloud service providers, ensuring compliance with cybersecurity policies.
Lead the firm’s response to security incidents, breaches, and fraud, ensuring swift resolution and recovery.
Lead secure architecture design, cloud security, endpoint protection, and network security—personally engaging in design reviews, tooling evaluations, and technical decision-making.
Develop and implement security policies and governance frameworks for AI and machine learning systems, ensuring responsible AI deployment, data integrity, model security, and compliance with emerging AI regulations.
Direct and actively participate in day-to-day cybersecurity functions, including security monitoring, threat hunting, vulnerability management, and detection engineering.
Implement robust encryption standards, access controls, and data governance policies.
Risk Management & Threat Intelligence
Lead the firm's operational risk management framework, including identification, assessment, and mitigation of operational risks across business processes, technology systems, and third-party relationships.
Ensure regulatory compliance and audit management.
Operational Risk Oversight
Oversee all cybersecurity and operational risk functions while remaining hands-on with architecture, tooling, and incident response.
Technology & Infrastructure Security
Lead secure architecture design, cloud security, endpoint protection, and network security—personally engaging in design reviews, tooling evaluations, and technical decision-making.
AI Security Strategy
Develop and implement security policies and governance frameworks for AI and machine learning systems, ensuring responsible AI deployment, data integrity, model security, and compliance with emerging AI regulations.
Data Protection & Privacy
Implement robust encryption standards, access controls, and data governance policies.
Leadership & Collaboration
Partner with executive leadership, IT teams, and external stakeholders to align security initiatives with business objectives.
Develop security training programs and promote a culture of cybersecurity across the organization.
Employee Education & Awareness
Develop security training programs and promote a culture of cybersecurity across the organization.
Qualifications
- Proven track record in financial services cybersecurity or a regulated industry.
- Experience in information security leadership roles with a strong hands-on technical background (e.g., security engineering, penetration testing, cloud security architecture, or incident response).
- Expertise in risk management, operational risk frameworks, vendor security, cloud security, and encryption protocols.
- Strong knowledge of regulatory compliance frameworks affecting financial institutions.
- Experience developing AI security strategies, governance frameworks, and risk assessments for AI/ML systems.
- CISSP, CISM, or CISA certifications preferred.
- Excellent communication and leadership skills, with an ability to influence stakeholders at all levels.
- A leader who thrives at the intersection of strategy and execution—equally comfortable presenting to the Board and working through a security incident hands-on.