Vaco
Chief Information Security Officer - Banking & Financial Services
Vaco, Memphis, Tennessee, us, 37544
Position Overview
The CISO is responsible for the security, integrity, and compliance of the organization's information systems across core banking, fintech, and Banking-as-a-Service (BaaS) platforms. This role provides strategic leadership to protect sensitive data, ensure regulatory compliance, and safeguard technology assets against evolving cyber threats. The CISO will work closely with leadership, regulators, auditors, strategic partners, and business stakeholders to enable secure innovation and trust across the enterprise. Responsibilities
Develop, implement, and oversee the enterprise-wide information security strategy, policies, and governance framework. Lead the design, deployment, and monitoring of security protocols including intrusion detection, prevention, and incident response systems. Ensure compliance with all relevant regulatory requirements and industry best practices. Direct periodic audits, vulnerability assessments, penetration testing, and due diligence activities to identify and remediate risks. Establish secure data governance and identity/access management practices across on-premise, cloud, and third-party BaaS environments. Partner with technology and product teams to embed security into new fintech and core banking solutions from design through deployment. Lead enterprise risk management programs, including threat modeling, business continuity planning, and disaster recovery. Collaborate with regulators, auditors, and external examiners during compliance reviews and security assessments. Develop and deliver enterprise security training, awareness programs, and incident response playbooks for staff. Provide executive briefings on threat landscape, compliance posture, and security program maturity to the Board and C-suite. Oversee vendor and third-party risk management to ensure compliance and security alignment in BaaS ecosystems. Maintain up-to-date knowledge of emerging threats, technologies, and industry best practices in financial cybersecurity. Qualifications
10+ years of progressive IT and cybersecurity experience, with at least 5 years in a senior leadership role within the banking or financial sector. Demonstrated success directing security posture across core banking, fintech, or BaaS environments. Demonstrated knowledge of federal banking and financial regulations (FFIEC, GLBA, PCI-DSS, NIST, etc). Experience with Jack Henry SilverLake or other core banking systems preferred. Strong background in security operations, data protection, incident response, and risk management. Familiarity with cloud security, digital identity management, and secure API/integration practices. Professional certifications such as CISSP, CISM, CISA, or CCISO strongly preferred. Strategic thinker with the ability to balance security and compliance standards with strategic business innovation. Strong communication skills with the ability to effectively interface and advise senior management, board members, regulators, and stakeholders. Collaborative leader skilled at mentoring and building high-performing security teams. Additional Details
Employment Type: Perm / Direct-Hire Start Date: Immediate Location: Memphis, TN Target Total Compensation: $200k - $250k, based on skills and experience Relocation: Assistance is available Interested Candidates are Encouraged to Apply for Immediate Consideration! Determining compensation for this role (and others) at Vaco/Highspring depends upon a wide array of factors including but not limited to the individual's skill sets, experience and training, licensure and certifications, office location and other geographic considerations, as well as other business and organizational needs. With that said, as required by local law in geographies that require salary range disclosure, Vaco/Highspring notes the salary range for the role is noted in this job posting. The individual may also be eligible for discretionary bonuses, and can participate in medical, dental, and vision benefits as well as the company's 401(k) retirement plan. Vaco by Highspring values a diverse workplace and strongly encourages women, people of color, LGBTQ+ individuals, people with disabilities, members of ethnic minorities, foreign-born residents, and veterans to apply. EEO Notice: Vaco by Highspring is an Equal Opportunity Employer and does not discriminate against any employee or applicant for employment because of race, color, sex, religion or creed, national origin, citizenship, age, disability, status as a veteran, union membership, ethnicity, gender, gender identity, gender expression, sexual orientation, marital status, political affiliation, or any other protected characteristics as required by federal, state or local law. Vaco by Highspring and its affiliates are committed to full inclusion of all qualified individuals and will provide reasonable accommodations. If reasonable accommodation is needed to participate in the job application or interview process, to perform essential job functions, and/or to receive other benefits and privileges of employment, please contact HR. Vaco by Highspring also wants all applicants to know that workplace discrimination is illegal. Privacy Notice: Vaco by Highspring respects your privacy and is committed to providing transparent notice of our policies. California residents may access HR notices here, Virginia residents here, residents of other states here, Canadian residents here, and GDPR jurisdictions here. Pay Transparency Notice: Determining compensation depends upon factors including skill sets, experience and training, licensure and certification requirements, office location, and other business needs. The salary range is noted in this posting where required by law, and discretionary bonuses may apply.
#J-18808-Ljbffr
The CISO is responsible for the security, integrity, and compliance of the organization's information systems across core banking, fintech, and Banking-as-a-Service (BaaS) platforms. This role provides strategic leadership to protect sensitive data, ensure regulatory compliance, and safeguard technology assets against evolving cyber threats. The CISO will work closely with leadership, regulators, auditors, strategic partners, and business stakeholders to enable secure innovation and trust across the enterprise. Responsibilities
Develop, implement, and oversee the enterprise-wide information security strategy, policies, and governance framework. Lead the design, deployment, and monitoring of security protocols including intrusion detection, prevention, and incident response systems. Ensure compliance with all relevant regulatory requirements and industry best practices. Direct periodic audits, vulnerability assessments, penetration testing, and due diligence activities to identify and remediate risks. Establish secure data governance and identity/access management practices across on-premise, cloud, and third-party BaaS environments. Partner with technology and product teams to embed security into new fintech and core banking solutions from design through deployment. Lead enterprise risk management programs, including threat modeling, business continuity planning, and disaster recovery. Collaborate with regulators, auditors, and external examiners during compliance reviews and security assessments. Develop and deliver enterprise security training, awareness programs, and incident response playbooks for staff. Provide executive briefings on threat landscape, compliance posture, and security program maturity to the Board and C-suite. Oversee vendor and third-party risk management to ensure compliance and security alignment in BaaS ecosystems. Maintain up-to-date knowledge of emerging threats, technologies, and industry best practices in financial cybersecurity. Qualifications
10+ years of progressive IT and cybersecurity experience, with at least 5 years in a senior leadership role within the banking or financial sector. Demonstrated success directing security posture across core banking, fintech, or BaaS environments. Demonstrated knowledge of federal banking and financial regulations (FFIEC, GLBA, PCI-DSS, NIST, etc). Experience with Jack Henry SilverLake or other core banking systems preferred. Strong background in security operations, data protection, incident response, and risk management. Familiarity with cloud security, digital identity management, and secure API/integration practices. Professional certifications such as CISSP, CISM, CISA, or CCISO strongly preferred. Strategic thinker with the ability to balance security and compliance standards with strategic business innovation. Strong communication skills with the ability to effectively interface and advise senior management, board members, regulators, and stakeholders. Collaborative leader skilled at mentoring and building high-performing security teams. Additional Details
Employment Type: Perm / Direct-Hire Start Date: Immediate Location: Memphis, TN Target Total Compensation: $200k - $250k, based on skills and experience Relocation: Assistance is available Interested Candidates are Encouraged to Apply for Immediate Consideration! Determining compensation for this role (and others) at Vaco/Highspring depends upon a wide array of factors including but not limited to the individual's skill sets, experience and training, licensure and certifications, office location and other geographic considerations, as well as other business and organizational needs. With that said, as required by local law in geographies that require salary range disclosure, Vaco/Highspring notes the salary range for the role is noted in this job posting. The individual may also be eligible for discretionary bonuses, and can participate in medical, dental, and vision benefits as well as the company's 401(k) retirement plan. Vaco by Highspring values a diverse workplace and strongly encourages women, people of color, LGBTQ+ individuals, people with disabilities, members of ethnic minorities, foreign-born residents, and veterans to apply. EEO Notice: Vaco by Highspring is an Equal Opportunity Employer and does not discriminate against any employee or applicant for employment because of race, color, sex, religion or creed, national origin, citizenship, age, disability, status as a veteran, union membership, ethnicity, gender, gender identity, gender expression, sexual orientation, marital status, political affiliation, or any other protected characteristics as required by federal, state or local law. Vaco by Highspring and its affiliates are committed to full inclusion of all qualified individuals and will provide reasonable accommodations. If reasonable accommodation is needed to participate in the job application or interview process, to perform essential job functions, and/or to receive other benefits and privileges of employment, please contact HR. Vaco by Highspring also wants all applicants to know that workplace discrimination is illegal. Privacy Notice: Vaco by Highspring respects your privacy and is committed to providing transparent notice of our policies. California residents may access HR notices here, Virginia residents here, residents of other states here, Canadian residents here, and GDPR jurisdictions here. Pay Transparency Notice: Determining compensation depends upon factors including skill sets, experience and training, licensure and certification requirements, office location, and other business needs. The salary range is noted in this posting where required by law, and discretionary bonuses may apply.
#J-18808-Ljbffr