VP Information Security

Fairway Independent Mortgage Corporation•Madison, WI

18d•Hybrid

About The Position

As the VP of Information Security, you will be the primary architect of our enterprise security vision. This is a high-impact leadership role responsible for designing and executing a multi-year roadmap that seamlessly integrates robust risk management with our core business objectives. You will lead technical operations—from cloud architecture to incident response—while fostering a culture in which security is a shared responsibility across the organization. Join us in Madison! This hybrid role offers the best of both worlds: the focus of remote work combined with collaborative days at our HQ. Fairway Home Mortgage, founded in 1996, is a nationwide leader in the mortgage industry. Customer service is at the heart of everything we do. We deliver personalized loan solutions with some of the fastest turn times in the industry. Our mission is to act as trusted advisors, guiding clients through every step of the mortgage process to exceed expectations and ensure satisfaction. Our culture promotes innovation, growth, and collaboration, offering exciting career paths and professional development. Whether you're starting out or advancing your career, Fairway is a place where your skills and ambitions can thrive. At Fairway Independent Mortgage Corporation, we’ve been committed to delivering exceptional service and fostering a culture of growth and collaboration since our founding in April 1996. We strive to make a meaningful impact in the communities we serve by living out our core values daily. Explore rewarding career opportunities at Fairway, from branch-based roles to corporate support positions. Join a team dedicated to helping others and achieving success together.

Requirements

12+ years in Information Security, with at least 5 years in a senior leadership role overseeing enterprise-wide accountability for a mid-to-large organization (2,000+ users).
Advanced mastery of GLBA, FTC Safeguards Rule, and state privacy regulations within the financial services sector.
Deep hands-on experience building and maturing frameworks based on NIST CSF, ISO 27001, or CIS Controls.
Demonstrated expertise in cloud security architecture, Zero Trust principles, and modern ransomware defense strategies.
Proven track record of successfully leading organizations through regulatory examinations and external audits.
CISSP certification (required).

Nice To Haves

Master’s Degree in Cybersecurity (preferred)
Azure/AWS preferred

Responsibilities

Develop and execute a multi-year security strategy aligned with global business goals and evolving regulatory landscapes.
Act as a key advisor to the Chief Privacy Officer, Chief Compliance Officer, and Legal team to align security controls with GLBA, FTC Safeguards, and state privacy laws.
Mature our security governance and provide executive-level reporting on risk exposure, remediation progress, and overall security posture.
Oversee threat detection, vulnerability management, and modern ransomware defense. Lead cross-functional incident response and tabletop exercises with executive stakeholders.
Establish secure architecture across IaaS, PaaS, and SaaS (Azure/AWS), embedding "Security by Design" into system operations and Identity & Access Management (IAM).
Lead the design and monitoring of third-party risk management (TPRM) programs, ensuring vendor contracts meet rigorous data protection standards.