Chief Information Security Officer

U.S. Financial TechnologyRemote,
$297,000 - $328,000Remote

About The Position

U.S. FinTech is seeking an experienced Chief Information Security Officer (CISO) to join their team. This is a full-time remote opportunity. U.S. FinTech operates the largest and most advanced mortgage securitization platform in the world, supporting the Uniform Mortgage-Backed Security (UMBS) of Fannie Mae and Freddie Mac. The company provides best-in-class single-family issuance, bond administration, disclosure, and tax services, supporting a broad portfolio of products with full lifecycle management. Their market-leading, cloud-based, end-to-end platform executes transactions on an extraordinary scale, enhancing liquidity in the secondary mortgage market. The company combines expertise in financial services with technological innovation.

Requirements

  • Bachelor’s or Master’s degree in a relevant field (Computer Science, Engineering, Cybersecurity)
  • Industry certifications such as CISSP, CISM, CRISC, or equivalent
  • Minimum of 15 years of experience in a combination of risk management, information security and IT jobs.
  • Applicants must be authorized to work in the US without requiring employer sponsorship currently or in the future.
  • Knowledge of common information security and information risk management frameworks.
  • Experience and deep knowledge of cloud-based services and related cybersecurity best practices, identity & access management, security operations, data protection and encryption strategies, and leading incident response and forensic investigations in complex environments.
  • Experience and knowledge in software development practices.
  • Experience with integrating functional security metrics into an enterprise risk management context.
  • Experience operating in environments with high availability and uptime requirements.
  • Experience working in a highly regulated entity.
  • Ability to balance security, performance, and customer impact.
  • Experience managing departmental budgets.
  • Experience with contract and vendor negotiations and management including managed services.
  • Innovative thinking and leadership with an ability to lead and motivate multi-functional, interdisciplinary teams.
  • Ability to effectively communicate and influence senior level management and key stakeholders.
  • Excellent written and verbal communication skills and high level of personal integrity.

Responsibilities

  • Establishing and maintaining a company-wide information security and cyber risk management program to protect the organization’s systems, data, and cloud-based platforms while enabling business growth.
  • Serving as a key member of the leadership team and a strategic partner to executive management, the Board, and GSE stakeholders.
  • Driving security strategy, ensuring regulatory compliance, and embedding security across architecture, engineering, and operations in a highly available, regulated fintech environment.
  • Collaborating with internal stakeholders (Business, Technology, Risk, Compliance, Internal Audit) and external stakeholders (regulators, auditors, parent companies, and industry partners) to ensure alignment with enterprise risk tolerance, regulatory expectations, and evolving threat landscapes.
  • Defining and executing a forward-looking cybersecurity and information security strategy aligned to business objectives and risk appetite.
  • Serving as a trusted advisor to the CTO, executive leadership, and Board on cyber risk, resilience, and emerging threats.
  • Leading, mentoring, and scaling a high-performing cybersecurity organization with strong engineering and operational capabilities.
  • Establishing and maintaining a comprehensive enterprise information security and IT risk management program integrated with architecture, engineering, and operations.
  • Partnering with Enterprise Risk Management, Compliance, and Internal Audit to define, assess, and manage cyber risk within acceptable thresholds.
  • Ensuring effective security governance, policies, standards, and control frameworks across the enterprise.
  • Acting as the primary security liaison with regulators, auditors, and parent company oversight functions.
  • Ensuring ongoing compliance with regulatory, legal, and contractual security requirements.
  • Collaborating with industry peers, including GSE and financial services partners, to share threat intelligence and embed security into technology architecture, cloud platforms, and software development lifecycle (SDLC).
  • Ensuring consistent application of security, privacy, and resilience standards across all systems and services.
  • Overseeing third-party and vendor security risk management, including due diligence and ongoing monitoring.
  • Ensuring robust data protection, data loss prevention, and fraud risk mitigation controls.
  • Advising on data governance and exposure risks across internal and external ecosystems.
  • Promoting a strong security culture and awareness program across the organization.
  • Partnering with business and corporate and technology leaders to ensure shared accountability for security and risk management.
  • Driving adoption of secure-by-design and secure-by-default practices.
  • Monitoring and reporting on security posture, risk metrics, and control effectiveness.
  • Providing regular updates to executive leadership and the Board, including emerging risks and program maturity.
  • Ensuring controls are implemented, tested, and continuously improved.
  • Staying ahead of emerging threats, technologies, and regulatory developments.
  • Driving automation and modernization of security capabilities to improve efficiency and effectiveness.
  • Leveraging industry partnerships and the broader CISO community to adopt leading practices.

Benefits

  • performance bonus
  • 401k match
  • healthcare coverage
  • PTO
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service