At Beyond Finance, we've made it our mission to help everyday Americans escape the endless cycle of crippling debt and step into a brighter financial future. Through compassionate, individualized care, a culture focused on compliance and ethics, supportive user-centric technology, and customized financial solutions, we've helped over 300,000 clients on their path to a brighter future.
While we're proud of what we've already accomplished, we're searching for new collaborators to help us get to the next level! If you're looking to join a forward-thinking, rapidly growing organization with helping people as its number one goal, we want to hear from you.
The Role
The Director of Information Security plays a pivotal role in safeguarding our company's critical information assets. You will lead a team of security professionals and collaborate with DevOps, Software Engineering, and other departments to integrate security best practices throughout the entire software development lifecycle. Manage the security team from a monitoring and security operations perspective, lead application and product security to be built in applications (Web and Mobile), and execute remediation activities as part of a Threat and Vulnerability management program.
We’re a Chicago-based company looking for candidates willing to come into our downtown office 2-3 days a week. Enjoy in-person team collaboration, mentorship, and catered lunches — not to mention a free fitness center and relaxation lounge!
What You’ll Do
- Develop, implement, and manage a comprehensive information security program aligned with industry best practices and regulatory requirements.
- Oversee all aspects of information security, including vulnerability management, incident response, access control, and security awareness training.
- Partner with Product and Software Engineering teams to integrate security considerations into the software development lifecycle (SDLC).
- Partner with IT Engineering to deliver and manage IT Security for end users and behavioral monitoring of activities that cover DLP and Zero Trust frameworks.
- Foster a culture of security awareness throughout the organization.
- Partner with IT Support teams to ensure security is orchestrated in end user and support tools.
- Partner with DevOps for managing security in CICD and code pipelines.
- Lead the security risk assessment process and develop mitigation strategies.
- Manage and maintain relationships with key security vendors.
- Stay up-to-date on the latest information security threats and trends.
- Provide strategic direction and guidance to senior management on information security matters.
What We Look For
- 10 + years of experience in information security, with at least 3 - 5 years in a leadership role.
- Proven track record of developing and implementing successful information security programs, preferably in a financial services environment.
- Demonstrated management of Linux, Container and technology stacks centered around a Non-Microsoft environment.
- In-depth knowledge of information security frameworks and best practices (e.g., NIST CSF, ISO 27001/27002).
- Extensive experience with Security Operations and managing 3rd party security vendors like MSSP’s.
- Experience working with DevSecOps methodologies, integrating application security into the Software Delivery Life Cycle (SDLC) and CI/CD pipelines.
- Strong understanding of AWS cloud security principles.
- Excellent communication, collaboration, and leadership skills.
- Ability to think strategically and translate security risks into business context.
- CISSP, CISA, or equivalent security certification is a plus.
Why Join Us?
Benefits
While you make a difference for others, we’ll work to make a difference for you, providing an uplifting, collaborative work environment and benefits that reflect your value to us. For eligible full-time employees, we offer:
- Considerable employer contributions for health, dental, and vision programs
- Generous PTO, paid holidays, and paid parental leave
- 401(k) matching program
- Merit advancement opportunities
- Career development & training
And finally, our team spirit and culture! We cultivate an environment of community, connection, and belonging across our entire organization.
Beyond Finance does not accept unsolicited resumes from individual recruiters or third-party recruiting agencies in response to job positions. No fee will be paid to their parties who submit unsolicited candidates directly to Beyond Finance employees or the Beyond Finance HR team. No placement fee will be paid to any third party unless such a request has been made by the Beyond HR team.