Deputy Chief Information Security Officer
Employment Information
Report this job
Job expired or something wrong with this job?
Job Description
Deputy Chief Information Security Officer at Mercury responsible for the bank's 2LOD Information Security program. Ensure security policies and examiner readiness for regulatory standards in a fintech environment.
Responsibilities:
- You will be the operating second to the CISO and own the bank-entity scope of Mercury's 2LOD Information Security program.
- Keep the program examiner-ready by maintaining coherent policy architecture and evidenced controls
- Own the examiner-ready narrative and coordinate the evidence for OCC, FFIEC, FDIC, and FRB examiner inquiries.
- Lead remediation of identified FFIEC IT control deficiencies to ensure charter readiness.
- Manage relationships with internal audit and external assessors.
- Coach and grow the GRC sub-team while running a recurring training cadence.
- Ensure third-party risk evidence holds up to bank-grade scrutiny.
Requirements:
- 8+ years in Information Security
- 3+ years inside a regulated bank, trust bank, or de novo bank charter effort
- Deep FFIEC and OCC fluency
- Direct examiner-facing experience
- Policy and standards craft
- Operating discipline
- 2LOD instinct
- CISSP, CISM, or CRISC preferred
Benefits:
- The total rewards package at Mercury includes base salary, equity (stock options), and benefits.
- Our salary and equity ranges are highly competitive within the SaaS and fintech industry and are updated regularly using the most reliable compensation survey data for our industry.
- New hire offers are made based on a candidate’s experience, expertise, geographic location, and internal pay equity relative to peers.
- Mercury values diversity & belonging and is proud to be an Equal Employment Opportunity employer.
- We are committed to providing reasonable accommodations throughout the recruitment process for applicants with disabilities or special needs.
Similar Jobs
VP of Security
VP of Security overseeing Serve's security strategy for autonomous delivery. Leading initiatives and developing security practices in a high-growth tech environment.
Security Engineer
Security Engineer at Coterie enhancing security operations and access management in cloud-native environments. Collaborating with teams to conduct access reviews and manage privileged access programs.
Azure Data Security Engineer
Data Security Engineer focusing on cloud data security for U.S. client. Joining a multinational team with a Swiss background.
Senior Product Security Engineer
Senior Product Security Engineer at Nexthink responsible for managing FedRAMP cloud security and automation processes. Collaborating with teams to enhance incident response and security architecture.
Security Engineer – Cybersecurity Posture, Hygiene & AI Enablement
Security Engineer enhancing AbbVie’s cybersecurity posture in a collaborative tech team. Implementing security controls, solutions, and working with AI for improved outcomes.
Security Technik Administrator
Security Technik Administrator responsible for security processes and technical support in ICT operations at Deutsche Telekom. Involves administrative tasks, testing, and procurement.
Senior Manager, Application Security
Senior Manager leading Application Security initiatives in innovative technology for real estate at First American. Embedding security into product delivery and mentoring a high-performing AppSec team.
Director – Offensive Security, Red Team
Director of Offensive Security at FICO. Leading the proactive security strategy across Red Teaming, Threat Intelligence, and Threat Hunting with an AI-first mindset.
Security Director
Security Director responsible for consulting on risk management and security solutions for clients in the Northeastern US. Driving revenue growth and enhancing partnership relationships with stakeholders.
IAM Security Consultant
IAM Security Consultant responsible for managing user identities and access rights across IAM platforms. Collaborating with international teams in a large IT environment from Brazil with remote work.
Network Security Engineer, III
Network Security Engineer III executing advanced security protocols within multicloud environments. Collaborating with infrastructure teams to ensure robust security measures across various platforms.
Principal Cybersecurity Engineer
Principal Cybersecurity Engineer focusing on Governance, Risk, and Compliance at DIRECTV. Leading enterprise-level GRC programs and mentoring cybersecurity professionals.
Director, Physical Security
Director of Physical Security responsible for managing security across GAF's eastern US sites. Leading physical security efforts and developing programs to mitigate risks at multiple locations.
Contract Security, Compliance, Access Analyst
Program Analyst Senior managing compliance and security operations for IHS Electronic Health Records Modernization program. Collaborating with security teams and ensuring personnel access policies are met.
AWS Cloud Security, ICAM Specialist
AWS Cloud Security and ICAM Specialist supporting Case Management Modernization for the U.S. Courts. Designing and managing authentication frameworks within cloud environments.
Infrastructure Security Team Lead
Lead the Infrastructure Security Team at SOFTSWISS, an international iGaming company. Responsible for defining security strategies, priorities, and team development in a remote setting.
Identity Security Engineer – ITDR, CSPM
CrowdStrike Identity Security Engineer managing ITDR and CSPM capabilities for a federal agency. Leading threat detection and response efforts with extensive CrowdStrike platform experience.
Senior Analyst, Information Security Compliance
Senior Analyst for managing information security compliance initiatives at Kontoor Brands. Collaborating with various teams to support regulatory compliance across iconic denim brands.
Corporate Security Engineer – IAC & Automation
Corporate Security Engineer leading design and optimization of security infrastructure at OnePay. Focusing on automation, data protection, and collaboration across IT and security teams.
Senior Manager – Offensive Security
Senior Manager leading offensive security services at Cyber Advisors, focusing on threat-driven risk assessments and remediation activities. Mentoring teams and enhancing security methodologies.