Chief Information Security Officer
Avant is a high growth financial technology company, dedicated to lowering the barriers of borrowing for all consumers. Since 2012, Avant has secured more than $4 billion in funding and connected customers to over $5 billion through 800,000 transactions and counting. Through big data and machine learning, Avant’s mission is to provide better access to responsible financial products. Avant has been featured in The Wall Street Journal, The New York Times, TechCrunch, Fortune, Bloomberg, and has raised over $600 million of equity capital. Visit www.avant.com, for more information.
We are looking to bring on a Chief Information Security Officer (CISO) that will ensure that data information assets are adequately protected, and that Avant is in compliance with all current and future regulations through an enterprise-wide information security, governance, and compliance program. The CISO will oversee and continue to improve the operational effectiveness of the Security Architecture and Engineering, ensuring each team is appropriately staffed with the required competencies and fosters a diverse and inclusive workplace.
What you will do at Avant:
- Set the overall information security, governance, and compliance strategic plan
- Drive the development, maintenance, and execution of the security roadmap that captures, prioritizes, and sequences current and future initiatives, regulations, and capabilities across the entire business
- Communicate effectively across the senior leadership team to keep the business informed of Avant’s security strategy and industry threats
- Provide regular risk-based reporting to the Board of Directors and audit committee on matters related to information security and compliance.
- Serve as the Information Security Process and Policy Owner for ongoing activities related to the availability, integrity, and confidentiality of all information (i.e., customers, business partners, employees, and business information)
- Work proactively with Avant offices to implement practices that meet defined policies and standards for information security
- Author the I standard guidelines and procedures to ensure the right level of risk and protection for Avant
- Provide oversight regarding audit, regulatory and risk management activities
- Monitor and analyze technology risk trends and conduct external and internal information security risk and vulnerability assessments to protect corporate IT assets
- Address security incidents and respond to policy violations or complaints from external parties following the established Incident Reporting and Response Program
- Recommend appropriate counter measures for internal security incidents and events
- Provide input and improvements to the Avant information security RFP process along
- Continue to build maturity of the Avant 3rd party due diligence program to adequately measure risk impact of Avant’s key high-risk vendor relationships
- Negotiate information security contract terms with cloud, personal device, outsourced provider and specialized security providers and manage the provider relationships
- Manage 3rd party contractor and contractor relationships and the security policy of 3rd party data centers
Strategic Leadership
Security Policies and Processes
Security Oversight
Vendor Management
Why you are a fit for Avant:
- Served as top security officer role for a small to medium organization, as a divisional CISO, or key lieutenant in a large organization
- Understanding the compliance and regulatory environments of diversified financial services company, including current and emerging regulations
- Has depth of knowledge and technical expertise in IT security strategy, across a broad spectrum of technology infrastructure and applications, where digital and mobility is increasingly important
- Proven track record leading information security teams, specific experience includes:
- Working across a complex enterprise that includes incident management, threat and vulnerability assessment, customer privacy, broad systems integration, and risk management and control programs
- Working in a customer-focused and results-oriented environment that required balancing security policy enforcement with the needs of the business
- Leading information security in an environment that requires rapid incident response
- Evolving information technology architecture and the subsequent exposures and defenses that have simultaneously emerged
- Working with senior business leaders and exposure to the Board of Directors
- Undergraduate degree in computer science or a related field
- Minimum 10 years of information technology experience in roles of increasing complexity and leadership requirements
- Experience working in multiple countries
- Willingness to travel, US & Canada
- CISSP or CRISC certifications are strongly preferred
Why Avant is a fit for you:
At Avant, we believe our values make a difference:
We value, support, and help each other grow
We are committed to active inclusion and diversity
We are transparent and believe the best idea wins
We succeed when our customers succeed
We get sh!t done… responsibly
And we keep it fun!
We believe that ideas are more important than titles, everything is more fun together, everyone drives change, and everyone is an owner. While we believe the perks and benefits that we offer are terrific, nothing excites us more than having the ability to collaborate with intelligent, highly-motivated and talented people on challenging problems as we work to change the face of online lending.