Information Security & Compliance Leader

Join NorthSlope Technologies as an Information Security & Compliance Leader where you will play a pivotal role in safeguarding our information assets and ensuring compliance with relevant regulations. You will lead our security initiatives, develop comprehensive policies, and drive the implementation of best practices to protect sensitive data across our organization.

About UsAt Rain, we are pioneering the future of global payment solutions. As a dynamic team of innovative builders and experienced founders, we are dedicated to making stablecoins practical for everyday use. Our advanced infrastructure supports a variety of transactions, including card payments, cross-border transactions, B2B purchases, and remittances. We collaborate with fintechs, neobanks, and institutions to launch inclusive and efficient solutions worldwide. Join us to make a significant impact at a rapidly growing company backed by leading investors in fintech, crypto, and SaaS, such as Sapphire Ventures, Norwest, Galaxy Ventures, Lightspeed, Khosla, and more. If you are driven, inquisitive, and eager to contribute to a borderless financial future, we want to hear from you!Our CultureWe promote a culture of openness and accessibility, allowing employees to flourish in roles that align with their aspirations. Every team member has the autonomy to share ideas and influence the strategic direction of our company.Your RoleAs our Chief Information Security Officer (CISO), you will spearhead Rain’s security governance, risk, and compliance framework, with a strong emphasis on ISO certification and regulatory preparedness. You will work collaboratively with our engineering, infrastructure, legal, and operations teams.Lead and drive Rain’s information security and compliance strategy, focusing on ISO 27001 readiness, certification, and continuous improvement.Act as the executive lead for security compliance initiatives, including ISO 27001, SOC 2, vendor risk assessments, and customer security evaluations.Design, implement, and enhance Rain’s security governance framework, including policies, standards, and risk management practices.Collaborate closely with Engineering, Infrastructure, Product, Legal, and Operations to integrate compliance and security standards into technical and business processes.Oversee external audits, certifications, and assessments, serving as the main contact for auditors and evaluators.Convert regulatory, customer, and partner security requirements into actionable, scalable controls that align with Rain’s operational framework.Manage the risk management lifecycle, including risk identification, assessment, prioritization, and executive-level reporting.Establish and monitor security and compliance metrics, providing updates to executive leadership and the board.

tagup seeks a Security & Compliance Manager (ISSO / FSO) based in New York, NY. This position centers on protecting information systems and ensuring the company meets all required compliance standards. Key responsibilities Lead security projects from planning through implementation Oversee risk management activities to identify and address vulnerabilities Collaborate with teams across the company to improve security practices Focus areas Safeguarding information systems Maintaining compliance with relevant standards This role requires both technical expertise and strong communication skills to coordinate efforts across departments and keep security at the forefront of company operations.

Join Hudson River Trading (HRT), a pioneering firm in the trading space, as the Lead for Security Governance, Risk, and Compliance within our expanding Information Security team. This pivotal role will spearhead the security governance initiatives for HRT entities across America, Europe, and Asia, driving the automation of security governance at scale.In this hands-on position, you will collaborate closely with HRT’s Compliance and Legal teams to research, develop, and uphold security solutions tailored to a diverse range of industry regulations and requirements. You’ll lead a skilled technical team tasked with strategically ensuring HRT’s compliance with global security standards, facilitating our growth into new markets with complex regulatory landscapes.

Planned Parenthood Federation of America (PPFA) is seeking a dynamic and experienced National Director of Information Security. This pivotal role, reporting to the Deputy Chief Information Security Officer (CISO), will lead the strategic direction and implementation of our comprehensive information security program. The ideal candidate will ensure the protection of sensitive data entrusted to us by our patients, supporters, donors, and staff, while promoting a culture of security across the organization. You will collaborate with various departments to create and maintain robust security measures, ensuring that our health centers continue to provide equitable access to care and education without compromising the integrity of our systems.

The City of New York is seeking a highly skilled Chief Information Security Officer (CISO) to lead our information security initiatives. This pivotal role involves developing and implementing robust security strategies to protect city data and technology from cyber threats. The ideal candidate will possess a deep understanding of security frameworks, risk management, and compliance requirements.

We are seeking a dedicated Information Security Analyst to join our team at Betterment HQ in New York City. This role is crucial in protecting our organization’s information assets and ensuring compliance with regulatory requirements. The ideal candidate will possess strong analytical skills, a proactive mindset, and a passion for cybersecurity.

Join dev2 as a Senior Manager, Information Security Office Consultant, where you will play a pivotal role in enhancing our information security practices. You will lead a team of professionals to identify vulnerabilities and implement robust security measures that protect our organization against potential threats. This position requires a strategic thinker with a strong background in information security management, and the ability to communicate effectively with stakeholders at all levels.Your contributions will directly impact our organizational security posture and influence our commitment to safeguarding sensitive information. If you are passionate about information security and eager to lead a dedicated team, we invite you to apply.

Join a Transformative OrganizationAt Palantir, we develop cutting-edge software that empowers organizations to make informed, data-driven decisions. Our innovative platforms enable partners to advance critical initiatives, from developing life-saving pharmaceuticals to predicting supply chain challenges and reuniting families with missing children.Position OverviewAs the Information Systems Security Manager (ISSM) at Palantir, you play a pivotal role in ensuring our operations within the U.S. Government (USG) sectors are secure, efficient, and compliant. You will oversee the systems that facilitate our team’s access to USG facilities and related environments, directly supporting vital Department of Defense (DoD) missions. Your responsibilities will include ensuring compliance with security protocols, fortifying system infrastructure, managing user access, and collaborating with personnel to resolve various challenges they face while enhancing advanced capabilities. The ideal candidate will possess a strong ability to balance compliance with operational functionality, a strong desire for continuous learning, and a genuine passion for assisting colleagues in their endeavors.

About UsAt Rain, we are pioneering the future of payments on a global scale. Our dynamic team, composed of seasoned founders and innovators, is dedicated to making stablecoins accessible in the real world. We facilitate card transactions, cross-border payments, B2B purchases, remittances, and more, partnering with fintechs, neobanks, and institutions to create inclusive and efficient solutions. Join us in shaping a borderless financial future at a rapidly growing company backed by top investors in the fintech, crypto, and SaaS sectors.Our CultureWe embrace a flat organizational structure that empowers every team member to grow in alignment with their personal goals. Everyone, regardless of their role, is encouraged to share ideas and contribute to the company's roadmap and vision.Your RoleLead the compliance program for DORA, SOC 2, SOC 1, GDPR, and PCI, ensuring adherence to regulatory and audit standards.Oversee compliance audits and certifications from start to finish, including renewals and new certifications.Update and refine Rain’s policies to align with regulatory expectations consistently across all entities.Collaborate with engineering, security, legal, and operations teams to ensure operational compliance with our policies.Promote a proactive compliance culture by educating the team on obligations and integrating compliance into daily operations.Identify potential compliance gaps early and implement remediation strategies to ensure audit readiness.Support the team in enhancing compliance-related activities, including KYB, KYC, and AML processes, informed by operational data.QualificationsOpen to candidates based in the US and EU.3–7+ years of experience in compliance, GRC, or security assurance, preferably in fintech, payments, SaaS, or similar regulated sectors.Strong knowledge of SOC 2, SOC 1, GDPR, PCI, and other compliance frameworks.Excellent analytical and problem-solving skills.Strong communication skills and ability to work collaboratively.

Role Overview Palantir Technologies is seeking an Information Security Engineer focused on endpoint security in New York, NY. This role centers on protecting the company’s endpoint devices and ensuring that security standards are upheld across the organization. What You Will Do Implement and maintain security measures for endpoint devices Monitor systems to detect and respond to threats as they arise Work with teams across the company to strengthen overall security Participate in real-time incident response and help drive improvements

Join a Transformative Force in TechnologyPalantir is at the forefront of developing cutting-edge software that empowers organizations to make data-driven decisions and optimize operations. Our platforms enable partners to achieve remarkable feats—from developing lifesaving pharmaceuticals to anticipating supply chain disruptions and reuniting families with missing children.Role OverviewAs a Cybersecurity Engineer at Palantir, you will play a pivotal role in safeguarding our global workforce and infrastructure. Your technical acumen is complemented by a strong commitment to integrity and an authentic passion for security and technology. We seek a highly motivated team player who thrives on tackling challenges and finding innovative solutions to complex problems.In this position, you will be the frontline defender against security threats to Palantir. Your team will be tasked with the continuous prevention, detection, and investigation of security incidents and active threats across our infrastructure. Your contributions will significantly influence the success of Palantir's mission as you fortify our defenses and secure our global network.

About UsAt DriveWealth, we are dedicated to revolutionizing the investment landscape. Our vision is to empower individuals to take charge of their financial destinies, ensuring that access to financial markets is universally available, regardless of location, wealth, or outdated systems. As a leading global B2B financial technology firm, we strive to democratize financial independence through our innovative API-based platform. This enables our partners to provide seamless investing and trading experiences to their clients globally, all from their mobile devices. Our state-of-the-art technology equips partners with a versatile toolkit that supports both traditional investment workflows and cutting-edge strategies like fractional share ownership. DriveWealth is at the forefront of a global trading platform, facilitating transactions in US equities, mutual funds, ETFs, fixed income, and options.Now is an exciting time to join a trailblazing business that is poised for significant growth. Our culture uniquely combines the dynamism of a fintech startup with the rigor, impact, and stability of Wall Street. We foster an environment that encourages innovation and experimentation while ensuring that we uphold the highest standards of execution and regulatory compliance in all our endeavors. Come and be part of shaping the future of global investing!About the RoleAs the Chief Information Security Officer, you will spearhead and enhance our entire security framework across four critical areas: Governance, Risk & Compliance (GRC), Offensive Security (Red Team), Defensive Security (Blue Team), and Security Engineering & Architecture. You will be responsible for strategic leadership, process improvements, budget management, and team development to meet our ambitious growth targets. The CISO will also serve as the security representative to senior leadership and the board, ensuring compliance with industry standards and readiness for regulatory examinations.What You’ll DoEnhance and oversee policy frameworks and regulatory compliance programs (e.g., SOC, ISO27001, GDPR)Conduct and refine security monitoring, incident response, and threat hunting activitiesLead penetration testing and manage vendor relationshipsDirect the engineering of secure network and identity management systems in cloud environmentsBuild, mentor, and grow a proficient security team, particularly in GRC and Blue Team areasEngage with industry communities, prepare compliance reports, and present findings to company leadershipFacilitate readiness for public company listing and support ongoing business expansion

Information System Security Officer (ISSO)Employment Type: Full-Time, Mid-LevelDepartment: Administrative and Logistics SupportAs an Information System Security Officer (ISSO) at CGS Federal, you will play a pivotal role in safeguarding the secure and compliant operation of a high-stakes data and application platform utilized by U.S. Government clients. This on-site position requires you to be the leading authority on system security and compliance, engaging directly with live systems while collaborating closely with engineers, operators, and security teams.Join CGS, where we unite driven, skilled, and innovative individuals to tackle the complex challenges faced by government entities utilizing state-of-the-art technology. We are looking for candidates who are eager to contribute to government innovation, value collaboration, and possess the foresight to anticipate the needs of others. At CGS, we foster a supportive environment for our employees and promote professional development through diverse learning opportunities.

Join our dynamic team at Lewis Associates as a Senior Information Security Engineer. In this pivotal role, you will be responsible for safeguarding our information systems and ensuring compliance with security standards. Your expertise will help us develop and implement robust security solutions, conduct risk assessments, and respond to security incidents.

Join Vtekis Consulting LLP as an Information Security Engineer IV, specializing in cryptography engineering. In this role, you will be pivotal in designing and implementing security measures that protect sensitive information across various platforms. Your expertise in cryptographic systems will be fundamental in ensuring the integrity and confidentiality of our clients’ data.

Description:The Compliance team at MongoDB is pivotal in overseeing the strategy, implementation, and upkeep of our global security certifications alongside various regulatory requirements. We guarantee that our cloud database offerings adhere to stringent security standards, catering to clients within some of the most heavily regulated industries across the globe.Serving as the primary liaison between external auditors and our internal Product, Engineering, and Legal teams, we aim to demystify intricate regulatory requirements and convert them into scalable operational processes, ensuring a compliant and audit-ready stance throughout our varied portfolio.The Program Manager / Senior Analyst position is a mid-to-senior level individual contributor role, tasked with steering high-stakes audits and specialized compliance initiatives. Unlike the Analyst position, this role encompasses full accountability for intricate international frameworks—such as IRAP and ENS High—and fosters relationships with our Financial Services clientele during detailed audit engagements. You will coordinate internal audit schedules and execute gap analyses for market expansions.

Join CoreWeave as a Technical Program Manager specializing in Security Compliance. In this pivotal role, you will oversee and drive security compliance initiatives across our technical programs. Your expertise will ensure that we adhere to industry standards and best practices, thereby safeguarding our infrastructure and data integrity.

The MLB Information Security team is seeking a dedicated Governance, Risk & Compliance (GRC) Analyst for a seasonal position. This role is essential in supporting our governance, risk management, and compliance initiatives. The selected Analyst will engage in various GRC activities, including assisting with audit preparations, conducting risk assessments, monitoring risk registers, and updating internal policies and procedures.Key ResponsibilitiesAssist in the implementation of MLB’s data privacy, governance, and risk management programs.Facilitate the execution of PCI-DSS and SOC 1 Type II audits by reviewing evidence, coordinating with internal stakeholders, and maintaining audit readiness dashboards.Perform thorough vendor security and compliance risk assessments while providing recommendations for contractual security provisions.Refine and maintain vendor risk review workflows, manage the vendor repository, and apply risk tiering based on data access and criticality using MLB’s TPRM tool.Track and manage risk acceptances and policy exceptions, ensuring proper documentation and regular reviews.Support the fulfillment of Data Subject Access Requests (DSAR), ensuring compliance with statutory timelines required by applicable privacy laws.Assist in drafting compliance policies, procedures, and playbooks related to cybersecurity, privacy, confidentiality, and data protection.Develop and maintain KPIs and dashboards to evaluate the success of GRC programs and initiatives.

As an Information Systems Security Officer (ISSO) at CGS, you will play a crucial role in safeguarding the Department of Commerce's information systems. In this full-time position, located at our client site in the Herbert Hoover building, Washington, DC, you will leverage your expertise in DIACAP and RMF to oversee security assessment documentation and support efforts to achieve Authorization to Operate (ATO). Your responsibilities will encompass full life-cycle Assessment and Authorization (A&A) management through all six steps of the RMF process, ensuring adherence to NIST 800.53 standards. Join us in fostering innovation and maintaining the security posture of government systems.