Chief Information Security Officer
Confirmed live in the last 24 hours
Varo

501-1,000 employees

Digital, FDIC-insured bank offering high-yield savings and quick money
Company Overview
Varo Bank, an all-digital, FDIC-insured institution, merges the expertise of banking veterans with tech specialists to provide premium banking services, including high-yield savings, automatic saving tools, and early access to paychecks. The company's commitment to customer-centric innovation is evident in its unique offerings such as Varo Advance, providing quick access to cash, and Varo Believe, a program designed to help customers build credit. With one of the highest savings rates in the country and a strong emphasis on a fee-free banking experience, Varo has successfully positioned itself as a leader in the digital banking industry.
Fintech

Company Stage

Series E

Total Funding

$996.3M

Founded

2015

Headquarters

San Francisco, California

Growth & Insights
Headcount

6 month growth

-4%

1 year growth

-4%

2 year growth

-4%
Locations
Salt Lake City, UT, USA
Experience Level
Entry
Junior
Mid
Senior
Expert
Desired Skills
Management
CategoriesNew
IT & Security
Requirements
  • Progressive experience in information security with regulated financial institutions and/or fintech companies
  • 10+ years of experience in a senior leadership role with increasing levels of responsibilities
  • Experience with information security frameworks such as NIST, ISO, SOC 2, PCI, and/or Cobit
  • Familiarity with Cyber Security Assessment Tool (CAT) and IS related laws, rules, regulations, and best practices
  • Experience with third-party service provider due diligence, negotiations, oversight, and monitoring
  • Thorough understanding of IT operations and the role and impact of information security on these operations
  • One or more of the following professional certifications: CISSP, CISM, CERT, CISA, etc.
Responsibilities
  • Manage the second-line information security function by performing credible challenge of first-line programs and driving oversight, governance, reporting
  • Develop, maintain, and publish up-to-date information security policies, procedures, standards, controls, and guidelines
  • Oversee the training and dissemination of such policies, procedures, standards, controls, and guidelines
  • Develop and oversee the monitoring and continuous improvement of a risk-based enterprise security program across all cyber-security risk domains
  • Partner with Fraud and Anti-Money Laundering teams to develop a holistic financial crimes program for Varo
  • Conduct risk assessments and testing to ensure that appropriate controls are in place and are effective
  • Inspire a cultural shift within Varo to more strongly embed pragmatic risk management into business decisions and operations
  • Assist in the creation and management of information security awareness training programs for all employees and contractors
  • Coordinate information security projects and initiatives together with resources from technology and business line teams
  • Ensure that information security programs comply with relevant laws, regulations, and policies to minimize risk and audit findings
  • Advise the first line during security incidents and events to help protect corporate assets
  • Be a key member of and assist in the management of Varo’s Crisis Management Team
  • Execute table-top exercises and simulations to prepare participants for their roles in a crisis
Desired Qualifications
  • Experience in financial crimes prevention and management
  • Experience in developing information security policies and procedures in a dynamic environment