Chief Information Security Officer

Who we are

Founded in 2002, Zafin offers a SaaS product and pricing platform that simplifies core modernization for top banks worldwide. Our platform enables business users to work collaboratively to design and manage pricing, products, and packages, while technologists streamline core banking systems.

With Zafin, banks accelerate time to market for new products and offers while lowering the cost of change and achieving tangible business and risk outcomes. The Zafin platform increases business agility while enabling personalized pricing and dynamic responses to evolving customer and market needs.

Zafin is headquartered in Vancouver, Canada, with offices and customers around the globe including ING, CIBC, HSBC, Wells Fargo, PNC, and ANZ. Zafin is proud to be recognized as a top employer and certified Great Place to Work® in Canada, India and the UK.

What's the opportunity?

Reporting to the Chief Information Officer, the Chief Information Security Officer (CISO) is a pivotal leadership role tasked with safeguarding Zafin's digital assets, information systems, and data against cyber threats. This role embodies the company's core values, leading by example to foster a culture of security awareness and resilience. The CISO is responsible for developing and executing a comprehensive information security strategy that aligns with the company's objectives and regulatory requirements, ensuring the protection of its SaaS banking technology platforms and customer data. Represent Zafin in security discussions with the company's customers, partners, and external parties and ensure compliance with global and local regulatory standards

Mode of Work: Hybrid

What will you do?

• Develop and implement a strategic information security plan that aligns with the company's goals and SaaS practices, supported by the broader organization, to protect against current and emerging cyber threats. Communicate effectively to connect stakeholders to the security vision and strategy
• Lead the identification, evaluation, and mitigation of information security risks. Ensure compliance with relevant laws, regulations, and standards affecting the banking and FinTech sectors
• Develop and oversee the implementation of incident response plans and procedures to handle security breaches or attacks. Manage the response to security incidents to minimize impact and conduct post-incident analysis to prevent future threats
• Provide strong leadership to the information security team. Create an inclusive environment that promotes growth and continuous learning. Act as a champion for cybersecurity within the company and the broader industry
• Oversee the selection, implementation, and management of security technologies and infrastructure to support the company's SaaS banking platforms and operations
• Prepare and communicate regular reports on the state of the information security program, emerging threats, and security incidents to executive leadership and relevant stakeholders
  
  

What do you need to succeed?

Must Haves:

• Bachelor's or Master's degree in Computer Science, Information Security, or a related field is preferred
• Professional certifications such as CISSP/CISM/GIAC or similar required
• 10+ years of experience in information security, with at least 5 years in a leadership role and at least 2+ years in CISO roles
• Proven track record of developing and implementing comprehensive security programs
• Deep understanding of cybersecurity frameworks, risk management, and compliance requirements
• Experience with cloud computing environments, preferably Microsoft Azure.
• Strong technical acumen in forensics, security technologies and industry best practices
• Must have demonstrated experience in Azure, Microsoft Intune, Defender for Endpoint, Defender for Cloud, Entra Identity Management, and SAML Authentication protocols, ensuring robust security posture
• Excellent communication skills, with the ability to articulate complex security concepts to non-technical stakeholders
• Strong negotiation and influence skills
• Demonstrated ability to lead and motivate a diverse team
• High level of credibility with all stakeholders, including executive leadership and external partners
• Strong problem-solving skills, with the ability to analyze data and make informed decisions
• Strategic thinker with a focus on long-term security objectives
  
  

What's in it for you

Joining our team means being part of a culture that values diversity, teamwork, and high-quality work. We offer competitive salaries, annual bonus potential, generous paid time off, paid volunteering days, wellness benefits, and robust opportunities for professional growth and career advancement. Want to learn more about what you can look forward to during your career with us? Visit our careers site and our openings: zafin.com/careers

Zafin welcomes and encourages applications from people with disabilities. Accommodations are available on request for candidates taking part in all aspects of the selection process.

Zafin is committed to protecting the privacy and security of the personal information collected from all applicants throughout the recruitment process. The methods by which Zafin contains uses, stores, handles, retains, or discloses applicant information can be accessed by reviewing Zafin's privacy policy at https://zafin.com/privacy-notice/. By submitting a job application, you confirm that you agree to the processing of your personal data by Zafin described in the candidate privacy notice.