Rain · 17 hours ago
CISO
New York, NY
Full-time
Hybrid
Director/Executive
$200K/yr - $250K/yr
8+ years expRain is a company that enables next-generation payments across the globe through innovative technology solutions. As CISO, you will be responsible for leading the security governance, risk, and compliance strategy, ensuring the organization meets necessary standards and regulatory requirements while collaborating with various teams.
BlockchainCryptocurrencyDecentralized Finance (DeFi)FinTechWeb3
Responsibilities
Own and drive Rain’s information security and compliance strategy, with a primary focus on ISO 27001 (and related standards) readiness, certification, and ongoing maintenance
Serve as the executive owner for security compliance programs (e.g., ISO 27001, SOC 2, vendor risk, customer security reviews)
Design, implement, and continuously improve Rain’s security governance framework, including policies, standards, and risk management processes
Partner closely with Engineering, Infrastructure, Product, Legal, and Operations to embed compliance and security requirements into technical and business workflows
Lead and manage external audits, certifications, and assessments, acting as the primary point of contact for auditors and assessors
Translate regulatory, customer, and partner security requirements into practical, scalable controls that align with Rain’s architecture and operating model
Own the risk management lifecycle, including risk identification, assessment, prioritization, and executive reporting
Establish and track security and compliance metrics, reporting posture, progress, and risk to executive leadership and the board as needed
Oversee incident response governance, ensuring policies, playbooks, and escalation paths meet compliance and regulatory expectations
Qualification
Required
8–12+ years of experience in information security, GRC, or security leadership roles, with demonstrated ownership of compliance programs
Hands-on experience leading ISO 27001 certification efforts (initial certification and/or ongoing surveillance audits)
Experience operating as a security leader in a high-growth, technology-driven company, ideally in fintech, payments, or regulated environments
Strong understanding of security governance, risk management, and control frameworks (ISO 27001/27002, SOC 2, NIST, etc.)
Proven ability to partner effectively with engineering and technical teams to implement controls in cloud-native and application-driven environments
Experience managing third-party risk, customer security questionnaires, and enterprise security reviews
Ability to clearly communicate risk, tradeoffs, and priorities to executives and non-technical stakeholders
Preferred
Experience with additional frameworks such as SOC 2 Type II, PCI DSS, ISO 22301, or regional regulatory requirements
Prior experience acting as a first or early security leader at a scaling company
Familiarity with cloud security and modern application architectures, even if not hands-on day-to-day
Experience supporting global customers or international compliance requirements
Security or compliance certifications (e.g., CISSP, CISM, ISO 27001 Lead Implementer / Auditor)
Experience presenting security posture or risk assessments to boards or executive committees
Benefits
Unlimited time off 🌴 Unlimited vacation can be daunting, so we require Rainmakers to take at least 10 days off.
Flexible working ☕ We support a flexible workplace. If you feel comfortable at home, please work from home. If you’d like to work with others in an office, feel free to come in. We want everyone to be able to work in the environment in which they are their most confident and productive selves. New Rainmakers will receive a stipend to create a comfortable home environment.
Easy to access benefits 🧠For US Rainmakers, we offer comprehensive health, dental and vision plans for you and your dependents, as well as a 100% company subsidized life insurance plan.
Retirement goals💡Plan for the future with confidence. We offer a 401(k) with a 4% company match.
Equity plan 📦 We offer every Rainmaker an equity option plan so we can all benefit from our success.
Rain Cards 🌧️ We want Rainmakers to be knowledgeable about our core products and services. To support this mission, we issue a card for our team to use for testing.
Health and Wellness 📚 High performance begins from within. Rainmakers are welcome to use their card for eligible health and wellness spending like gym memberships/fitness classes, massages, acupuncture - whatever recharges you!
Team summits ✨ Summits play an important role at Rain! Time spent together helps us get to know each other, strengthen our relationships, and build a common destiny. Expect team and company off-sites both domestically and internationally.
Company
Rain
Rain is a fintech company that builds stablecoin-powered payment infrastructure, allowing businesses and individuals to use tokenized money.
51-200 employees
H1B Sponsorship
Rain has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (2)
2023 (1)
2022 (1)
2021 (1)
Funding
Current Stage
Growth StageTotal Funding
$332.5MKey Investors
ICONIQ CapitalSapphire VenturesNorwest
2026-01-09Series C· $250M
2025-08-28Series B· $58M
2025-03-24Series A· $24.5M
Leadership Team
Farooq Malik
Co-Founder and CEO
Charles Yoo-Naut
Co-Founder and CTO
Recent News
2026-01-14
2026-01-14
2026-01-12
Company data provided by crunchbase