Company Description Finja Financial, Inc. is a behavioral fintech company focused on helping people manage multiple credit cards with less stress and greater control. The Finja app replaces manual tracking and mental calculations with decision intelligence that guides users toward smarter payment and spending choices. By combining behavioral science and AI, Finja helps users allocate payments strategically, reduce interest, manage impulse spending, and improve credit outcomes. The company is building a decision intelligence layer for modern credit, aiming to transform how consumers interact with and optimize their credit usage. Role Description The Chief Information Security Officer (CISO) is a full-time, remote role responsible for defining and leading Finja Financial’s information security vision, strategy, and program. This role oversees the security of infrastructure, applications, data, and cloud environments, and ensures that security practices support business objectives and regulatory requirements. Day-to-day responsibilities include developing and maintaining security policies and standards, leading risk assessments, coordinating incident response activities, and managing security audits and compliance efforts. The CISO will collaborate closely with engineering, product, data, and operations teams to embed secure-by-design principles, guide secure development practices, and oversee application and data security controls. This role also involves building and mentoring a security team, managing security vendors and tools, and regularly communicating security posture, risks, and priorities to executive leadership and stakeholders. Qualifications Demonstrated expertise in Information Security and Information Security Management, including strategy, policy development, governance, and risk management. Strong background in Cybersecurity, with hands-on experience securing cloud environments, networks, endpoints, and data. Proficiency in Application Security, including secure SDLC practices, code review, threat modeling, and vulnerability management for web and mobile applications. Experience implementing and overseeing Business Continuity and disaster recovery plans, including resilience, backup, and crisis management processes. Prior leadership experience in a senior security role (e.g., CISO, VP/Head of Security) within fintech, financial services, or a high-growth technology company. Thorough understanding of relevant security and privacy regulations and standards (such as PCI-DSS, SOC 2, ISO 27001, GDPR/CCPA), and experience managing audits and compliance programs. Ability to collaborate effectively with technical and non-technical stakeholders, communicate complex security concepts clearly, and influence strategic decisions. Experience building and leading diverse, high-performing security teams and working in a remote, distributed environment. Bachelor’s degree in Computer Science, Information Security, or a related field; advanced degree or security certifications (e.g., CISSP, CISM, CCSP) are preferred.