As the Chief Information Security Officer (CISO) at Rocktop Technologies LLC, you will be responsible for overseeing and managing all aspects of information security, data protection, and privacy within our AI-enabled financial technology firm. You will lead the development and implementation of comprehensive security strategies, policies, and procedures to safeguard our organization's digital assets, client data, and sensitive information.  You will play a key role in designing and potentially leading the IT infrastructure, balancing modern architecture with strict regulatory and security demands.  You will work closely with application development teams to ensure robust and secure solutions are deployed.

Key Accountabilities:

• Develop and Implement Information Security Strategy and Program
• Cybersecurity Operations
• Data Protection and Privacy
• Risk Management and Compliance
• Security Awareness and Training
• Incident Response and Business Continuity

Job Duties:

• Develop and execute a comprehensive information security program aligned with business objectives and regulatory requirements.
• Define security policies, standards, and procedures to ensure the confidentiality, integrity, and availability of information assets.
• Lead the establishment of security governance frameworks and risk management processes.
• Oversee day-to-day security operations, including monitoring, threat detection, incident response, and vulnerability management.
• Implement security controls and technologies to mitigate cyber threats and risks.
• Conduct regular security assessments and audits to identify vulnerabilities and ensure compliance with regulatory standards.
• Ensure compliance with data protection regulations (e.g., GDPR, CCPA) and industry-specific standards.
• Establish data protection policies and procedures to safeguard client information and sensitive data.
• Collaborate with legal and compliance teams to address privacy concerns and respond to data breaches or incidents.
• Assess and manage security risks associated with technology initiatives, business processes, and third-party vendors.
• Stay abreast of emerging threats, vulnerabilities, and security technologies to continuously enhance the organization's security posture.  Play a lead role in identifying and implementing the appropriate technologies. 
• Coordinate with internal audit teams and regulatory authorities to demonstrate compliance with relevant security standards and regulations.
• Develop and deliver security awareness programs to educate employees and contractors on security best practices and policies.
• Foster a culture of security awareness and accountability throughout the organization.
• Lead the incident response team in handling security incidents, breaches, and emergencies.
• Develop and maintain business continuity and disaster recovery plans to ensure the resilience of critical business operations.
• Closely collaborate with infrastructure and development teams to ensure security throughout the ecosystem.
• Lead security conversations with clients and prospects.

• Active Directory
• Drata
• Wiz
• Microsoft 365 Additional cloud and on-prem security systems as needed

Min Education: Bachelor’s or master’s degree in computer science, Information Security, or a related field. Certified Information Systems Security Professional (CISSP) or equivalent certification preferred.

Min Years Experience: 10+ years of IT and security experience with progressive increase in responsibilities. 5+ years of manager responsibilities

Skills:
Proven experience (5 years) in a senior leadership role within information security, preferably in the financial services industry. In-depth knowledge of cybersecurity principles, technologies, and best practices. Strong understanding of regulatory requirements and compliance frameworks relevant to the financial sector. Excellent communication, leadership, and collaboration skills

Nice to haves:

• Hands-on cloud infrastructure implementation
• Software deployment and change management techniques
• Direct audit and assessment expertise