| Company | Mercury |
| Location | San Francisco, CA, New York, NY, Portland, OR, or Remote within United States |
| Salary | Competitive |
| Experience | |
| Type | Full-Time |
Overview
We are seeking an experienced Deputy Chief Information Security Officer to join our team at Mercury. As the operating second to the CISO, you will own the bank-entity scope of our 2LOD Information Security program. You will be responsible for ensuring the program is examiner-ready by default, with a focus on coherent policy architecture, evidenced controls, gap-remediation, and a tested incident response program.
Responsibilities
- Own the bank-entity scope of Mercury’s 2LOD Information Security program
- Ensure the program is examiner-ready by default, with a focus on coherent policy architecture and evidenced controls
- Develop and maintain a credible gap-remediation track record
- Test and exercise the incident response program, with documented exercise history
- Sit across the table from OCC examiners, FFIEC IT audit teams, our Chief Risk Officer, and the board’s risk committee
- Answer for every line in our policies and every status in our control inventory
Requirements
- Experience in a similar role, preferably in a fintech or banking environment
- Strong understanding of information security principles, regulations, and standards
- Excellent communication and interpersonal skills, with the ability to work with examiners, audit teams, and senior management
- Ability to develop and maintain coherent policy architecture and evidenced controls
- Strong problem-solving and analytical skills, with the ability to identify and remediate gaps in the program
Benefits
Joining Mercury as a Deputy Chief Information Security Officer offers a competitive salary, the opportunity to work with a talented team, and the chance to make a real impact on the company’s information security program. You will also have the opportunity to work remotely within the United States or from one of our offices in San Francisco, CA, New York, NY, or Portland, OR.
Apply
If you are a motivated and experienced information security professional looking for a new challenge, please submit your application, including your resume and a cover letter, to our website. We look forward to hearing from you.