Aspiration is in the business of fighting the climate crisis. We help people and businesses build sustainable impact into what they do every day by making it easy, automated, and powerful -- whether it is in the ways people spend and save their money or the ways businesses engage their customers and employees. The estimated cumulative climate impact of the Aspiration community thus far is the equivalent of taking every car in the state of Connecticut off the road for a year. Aspiration is a certified B Corporation and, in fact, has been named to the “Best for the World” list of the top five percent of highest scored certified B Corporations four years in a row. Aspiration has raised over $250M in funding to date and is growing quickly.

Action: We take initiative. We are doers, not bystanders.

Boldness: We don’t tinker, we transform.

Customer-Centered: Our customers are at the core of our business. Delivering for them is our North Star.

Diligence & Dedication: We do what we say we’re going to do, when we say we’re going to do it.

Entrepreneurial: Act like an entrepreneur not an employee, generate results for the company and customers everyday.

What You'll Do

• Manage the entire information security program for an exciting fintech, neobank company.
• Maintain the information security policies, standards, procedures, and guidelines; update policies as needed as CISO.
• Manage the information security team to protect the company from cyber threats.
• Ensure controls continue for PCI and SOC 2 compliance.
• Manage the business continuity and disaster recovery program. Conduct regular exercises and report results to senior management, auditors, and regulators.
• Conduct regular information security risk assessments to provide security posture and areas for improvement.
• Collect and report information security metrics to senior management.
• Manage various security and IT vendors; third party risk management, new services, contracts, and renewals.
• Manage the IT team to provide service to internal customers.
• Management oversight of office network, VPN, MDM, CASB.
• Work closely with DevOps to ensure security for the cloud environment.
• Work closely with HR, Legal, and Compliance on various matters including audits.

What You'll Bring

• Strong AWS security experience
• PCI and SOC experience
• Experience and knowledge in security architecture, identity and access management, application security, and network security.
• Experience in the financial industry
• Familiarity with financial industry-specific regulations: FINRA, SEC, OCC
• Familiarity with security frameworks, NIST CSF, 800-53, ISO 27001, 27002, 
• Extensive experience with modern cloud applications and services; AWS, G Suite, Okta.
• At least one professional certification: CISSP, CISM, CISA, CIPP, CIPT.

What You'll Get

• Work for a mission-driven company to transform the lives of millions by building a better, values-oriented financial firm
• Competitive Salary and Equity Incentives
• Robust Healthcare Plans (medical, dental, vision)
• 401K & Unlimited Vacation Time
• Diverse & Inclusive Culture

#BI-Remote