Common Securitization Solutions logo

Chief Information Security Officer

Common Securitization Solutions
1 day ago
Full-time
Remote
United States

OVERVIEW

 

The Company

 

U.S. Financial Technology (U.S. FinTech) is seeking an experienced Chief Information Security Officer to join our team of talented professionals. This is a full-time remote opportunity. 

 

U.S. FinTech built and operates the largest and most advanced mortgage securitization platform in the world, supporting the Uniform Mortgage-Backed Security (UMBS) of Fannie Mae and Freddie Mac.

 

Supporting 70% of the mortgage-backed securities in the market, U.S. FinTech provides best-in-class single-family issuance, bond administration, disclosure, and tax services. We support a broad portfolio of products for our clients with full lifecycle management.

 

Our market-leading, cloud-based, end-to-end platform executes transactions on an extraordinary scale which has bolstered liquidity in the secondary mortgage market, one of the largest and most important financial markets in the world. Our unique approach to securitization combines the best minds in financial services with the know-how, flexibility, and innovation of leading technologists.

RESPONSIBILITIES

 

Job Information

The SVP, Chief Information Security Officer (CISO) is responsible for establishing and maintaining a company-wide information security and cyber risk management program that protects the organization’s systems, data, and cloud-based platforms while enabling business growth.

 

Reporting to the CTO, the CISO will serve as a key member of the leadership team and a strategic partner to executive management, the Board, and GSE stakeholders. This role is accountable for driving security strategy, ensuring regulatory compliance, and embedding security across architecture, engineering, and operations in a highly available, regulated fintech environment.

 

The CISO will collaborate closely with internal stakeholders (Business, Technology, Risk, Compliance, Internal Audit) and external stakeholders (regulators, auditors, parent companies, and industry partners) to ensure alignment with enterprise risk tolerance, regulatory expectations, and evolving threat landscapes.


Key Job Functions

 

  • Define and execute a forward-looking cybersecurity and information security strategy aligned to business objectives and risk appetite.
  • Serve as a trusted advisor to the CTO, executive leadership, and Board on cyber risk, resilience, and emerging threats.
  • Lead, mentor, and scale a high-performing cybersecurity organization with strong engineering and operational capabilities.
  • Establish and maintain a comprehensive enterprise information security and IT risk management program integrated with architecture, engineering, and operations.
  • Partner with Enterprise Risk Management, Compliance, and Internal Audit to define, assess, and manage cyber risk within acceptable thresholds.
  • Ensure effective security governance, policies, standards, and control frameworks across the enterprise.
  • Act as the primary security liaison with regulators, auditors, and parent company oversight functions.
  • Ensure ongoing compliance with regulatory, legal, and contractual security requirements.
  • Collaborate with industry peers, including GSE and financial services partners, to share threat intelligence and Embed security into technology architecture, cloud platforms, and software development lifecycle (SDLC).
  • Ensure consistent application of security, privacy, and resilience standards across all systems and services.
  • Oversee third-party and vendor security risk management, including due diligence and ongoing monitoring.
  • Ensure robust data protection, data loss prevention, and fraud risk mitigation controls.
  • Advise on data governance and exposure risks across internal and external ecosystems.
  • Promote a strong security culture and awareness program across the organization.
  • Partner with business and corporate and technology leaders to ensure shared accountability for security and risk management.
  • Drive adoption of secure-by-design and secure-by-default practices.
  • Monitor and report on security posture, risk metrics, and control effectiveness.
  • Provide regular updates to executive leadership and the Board, including emerging risks and program maturity.
  • Ensure controls are implemented, tested, and continuously improved.
  • Stay ahead of emerging threats, technologies, and regulatory developments.
  • Drive automation and modernization of security capabilities to improve efficiency and effectiveness.
  • Leverage industry partnerships and the broader CISO community to adopt leading practices.

QUALIFICATIONS

 

Education   

  • Bachelor’s or Master’s degree in a relevant field (Computer Science, Engineering, Cybersecurity)

  • Industry certifications such as CISSP, CISM, CRISC, or equivalent

Minimum Experience  

 

  • Minimum of 15 years of experience in a combination of risk management, information security and IT jobs.
  • Applicants must be authorized to work in the US without requiring employer sponsorship currently or in the future. U.S. FinTech does not offer H-1B sponsorship for this position.

 

Specialized Knowledge & Skills     

  

  • Knowledge of common information security and information risk management frameworks.

  • Experience and deep knowledge of cloud-based services and related cybersecurity best practices, identity & access management, security operations, data protection and encryption strategies, and leading incident response and forensic investigations in complex environments.

  • Experience and knowledge in software development practices.

  • Experience with integrating functional security metrics into an enterprise risk management context.

  • Experience operating in environments with high availability and uptime requirements.

  • Experience working in a highly regulated entity.

     

  • Ability to balance security, performance, and customer impact.

     

  • Experience managing departmental budgets.

     

  • Experience with contract and vendor negotiations and management including managed services.

     

  • Innovative thinking and leadership with an ability to lead and motivate multi-functional, interdisciplinary teams.

     

  • Ability to effectively communicate and influence senior level management and key stakeholders.

     

  • Excellent written and verbal communication skills and high level of personal integrity.

Pay Range $297,000 to $328,000

U.S. FinTech's pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) a candidate’s qualifications, skills, competencies, and experience, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law. U.S. FinTech offers a competitive total compensation package, which includes a performance bonus, 401k match, healthcare coverage, PTO, and a broad range of other benefits.

 

Employment

As a condition of employment with U.S. Financial Technology, any successful job applicant will be required to  successfully complete a background investigation, which may also include a credit check for positions in some areas of our business.   

     

U.S. Financial Technology is an Equal Opportunity Employer.

 

##LI-Remote