Job Description:

About Finzly:Finzly is headquartered in Charlotte, NC, and was founded in 2012 by financial engineers whose mission is to create a modern, real-time, and responsive platform for bankers who need to break free from core limitations. Our initial success and wider adoption arrived after the introduction of our foreign exchange, trade finance, lending, digital banking, and branch banking solutions. Finzly is on a mission to free banks from their core banking systems and core-vendor limitations, by creating an Appstore ecosystem that empowers banks to launch new products and services instantly and easily. Finzly enables financial institutions to make smarter technology decisions while getting to market at fintech speed.Check you match the skill requirements for this role, as well as associated experience, then apply with your CV below.Recently, Finzly has won the "Best and Brightest Companies to Work For" of 2022 & 2023 and the "Best Parallel Core Technology" award at the NACHA Smarter Faster Payments Conference in 2023.About the Role:Finzly is currently seeking a highly motivated Chief Information Security Officer to join our dynamic team based in Charlotte, NC. We are in search of an individual who thrives in a fast-moving environment and contributes to a team that embraces continuous delivery practices and places a strong emphasis on enhancing the customer experience. This role entails extensive collaboration and teamwork across various teams and organizational boundaries, playing a pivotal role in engineering services that consistently exceed customer expectations.Our ideal candidate is a self-driven individual who excels at multitasking and flourishes as part of a collaborative team. Furthermore, we are seeking someone who possesses a genuine enthusiasm for exploring cutting-edge technologies, driving innovation, and thriving in a startup environment. If you're passionate about being part of a forward-thinking team, we encourage you to apply.Responsibilities:Build and maintain effective relationships with business and technology stakeholders. Partner with the stakeholders across the company to raise awareness of risk management concerns.Develop and enhance an information security management framework (such as ISO, SOC2, etc.)Assist with the overall business technology planning by providing a current knowledge and future vision of technology and systems.Mitigate the risks various security threats pose to the organization's mission and goals.Developing secure business and communication practices, objectives, and metrics.Ability to develop and interpret standards, policies, and procedures and analyze systems and procedures, write and review standards and procedures, handle multiple projects.Work with external audit firms to achieve and maintain compliance accreditations.Manage client security assessments and develop internal security training programs and maintain materials for end-users.Stay current on security practices, threat landscape, laws, and regulations.Knowledge of network security threats and ability to implement preventative controls including firewalls, access controls, authentication systems, intrusion detection systems, VPNs, cryptography, etc.Ability to resolve advanced security issues in diverse and fast-paced environments.The ability to build good relationships at all levels and across all business units and organizations, and the ability to influence stakeholders of all levels.Requirements:Minimum of 10 years of experience in a combination of risk management, information security, and IT jobs.Advanced knowledge in the information security domain.Experience implementing an internal information security program preferred.Knowledge of common information security management frameworks, such as ISO/IEC 27001/27002, and NIST.Experience with Zero Trust Security tools like Zscaler is desirable.Familiarity with security tools such as SecureFrame and KnowBe4 is a plus.Excellent written and verbal communication skills and high level of personal integrityInnovative thinking and leadership with an ability to lead and motivate cross-functional teams.Specific experience in Agile (scaled) software development practices.Experience with cloud hosting environments such as AWS, Azure, etc.Experience in implementing SOC2 compliance is an added advantage. Specific experience in Agile (scaled) software development practices.Experience with cloud hosting environments such as AWS and Azure.Experience in implementing a SOC2 compliance is an added advantage.Qualifications:A bachelor's degree in information systems, business administration or a technology-related field is required.Professional security management certification is essential.What We Offer:Full Benefits Package - medical, dental and vision coverage with HSA optionHealthcare FSA and Dependent Care FSACompany-paid Life InsuranceCompany-paid Long-Term DisabilityPaid Holidays and generous Paid-Time OffStock Options401k Savings Retirement PlanShort Term Disability, Critical Illness and Accident InsuranceWellness Programs including Employee Assistance ProgramAnnual Cash Bonus and more!