Chief Information Security Officer (CISO) jobs in United States
cer-icon
Apply on Employer Site
company-logo

Candescent · 1 week ago

Chief Information Security Officer (CISO)

positionUnited States
timeFull-time
remoteRemote
seniorityDirector/Executive
date15+ years exp

Candescent is the leading cloud-based digital banking solutions provider for financial institutions. The Chief Information Security Officer (CISO) will lead enterprise security, compliance, and risk management strategy, ensuring regulatory alignment and advancing product-embedded identity and fraud detection capabilities.

BankingFinancial ServicesSaaS
check
H1B Sponsor Likelynote

Responsibilities

Lead enterprise-wide information security strategy and governance aligned to FFIEC, GLBA, NIST CSF, SOC2, ISO 27001, PCI-DSS, and GDPR
Manage regulatory relationships and ensure audit readiness with customers, regulators, and independent assessors
Define and monitor security risk metrics, dashboards, and board-level reporting
Partner with Legal, Risk, and Compliance teams to maintain proactive adherence to evolving banking and fintech regulations
Build and mature Secure SDLC practices integrating SAST/DAST, dependency scanning, and threat modeling
Lead a comprehensive API Security program addressing authentication, authorization, token management, rate limiting, payload inspection, and anomaly detection
Secure Open Banking and Fintech APIs, ensuring compliance with data security and privacy standards
Oversee penetration testing and bug bounty programs, emphasizing API and data-layer resilience
Collaborate with Product and Engineering to ensure secure-by-design principles are applied to all services, including microservices deployed in GCP and AWS
Embed fraud detection and identity protection mechanisms — such as device fingerprinting, behavioral analytics, and AI-based anomaly detection — directly into platform and product architectures
Oversee the architecture, compliance, and integrity of Candescent’s Identity and Fraud Detection products
Partner with Product and Engineering to enhance fraud prevention models and partner integrations for fraud detection
Establish governance and controls around customer identity data protection, in compliance with privacy frameworks
Define and implement AI security and compliance frameworks covering model and AI tooling development, deployment, and monitoring
Partner with Candescent AI Labs to secure AI pipelines and defend against prompt injection, model inversion, and data leakage
Lead Responsible AI initiatives, aligning with regulatory guidance and customer expectations
Serve as an executive sponsor for AI risk management, bridging security, ethics, and compliance
Oversee identity and access management (IAM), encryption, key management (KMS), and Zero Trust Architecture across hybrid environments
Lead incident response, root cause analysis, and business continuity exercises
Collaborate with SRE and Platform teams to strengthen resiliency, observability, and reliability in production systems
Govern security and compliance for fintech integrations, payment networks, and core banking partners
Strengthen and lead a Vendor Risk Management (VRM) and Third-Party Assurance program
Engage directly with customer CISOs, auditors, and regulatory stakeholders to communicate Candescent’s security posture and roadmap
Ensure all third-party integrations meet FFIEC and GLBA security requirements

Qualification

Information SecurityAPI SecurityCloud SecurityIdentity/Fraud DetectionFFIEC ComplianceAI/ML SecurityDevSecOps PracticesData ProtectionLeadershipCollaborationCommunication

Required

15+ years in Information Security, including 5+ years in a CISO or senior security leadership role in financial services, fintech, or SaaS
Bachelor's degree in a relevant field such as computer science, information technology, or cybersecurity
Deep expertise in API Security, Cloud Security, Product Security, and Identity/Fraud Detection systems
Proven experience implementing FFIEC-aligned compliance frameworks and managing regulatory engagements
Hands-on familiarity with AI/ML security, data protection, and DevSecOps practices
Strong understanding of financial data privacy, Open Banking standards, and API threat prevention

Preferred

Certifications such as CISSP, CISM, CCSP, or CRISC preferred

Company

Candescent

twittertwitter
company-logo
Candescent is a digital banking platform that offers online banking, account openings, and digital transaction services.
dateFounded in 2024
location
Atlanta, Georgia, USA
people-size1001-5000 employees
web-link
https://www.candescent.com/

H1B Sponsorship

Candescent has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (7)

Funding

Current Stage
Late Stage

Leadership Team

leader-logo
Donald Chesnut
Chief Design Officer
linkedin
leader-logo
Gareth Gaston
Chief Product Officer
linkedin

Recent News

Morningstar.com
CORRECTING and REPLACING Candescent Taps Kranti Talluri as VP of Developer Experience to Enhance Developer Ecosystem
2025-11-13
Business Wire
Candescent Named a Leader in IDC MarketScape: North America Retail Digital Banking Solutions 2025-2026 Vendor Assessment
2025-11-07
Company data provided by crunchbase