Information Security Lead

Meet Method

🔮 We built Method to propel consumer finance into the next decade. Method’s APIs are redefining financial connectivity with real-time, read-write, and frictionless access to all consumer liability data with integrated payment rails. The composability of our APIs and robust integrations into 10,000+ financial institutions allows lenders, fintechs, and other financial institutions to build products that unlock a level of autonomy never before harnessed by consumers.

We have helped 2+ million users connect 30+ million liability accounts, save them millions in interest and fees, get them access to billions of dollars in personalized loans, and earn millions of points on their purchases. We have partnered with 60+ financial institutions - including Bilt Rewards, SoFi, PenFed, Figure, Happy Money and Aven - to deliver frictionless, personalized and engaging user experiences.

We are backed by investors and advisors from Andreessen Horowitz, Y Combinator, SV Angel, Ardent Ventures, Abstract Ventures, Truist Ventures, Truebill, Upstart, and more.

About our team

As a small but fast-growing team, we value teammates who are passionate about building, scaling, all while having fun together! While we have our own roles to fill, we often find ourselves wearing multiple hats. No day is the same when you’re building from scratch. Our founding team is based across Austin and Washington D.C., with an office in New York.

To learn more about us, check out our blog!

The impact

As a founding member of the information security team, you are responsible for developing, implementing, and maintaining the organization's information security program and controls to protect the confidentiality, integrity, and availability of the company's information assets. This includes leading the security team, assessing and mitigating security risks, and ensuring compliance with relevant laws, regulations, and industry standards.

What you'll do

• Develop and maintain the organization's information security strategy, policies, standards, and procedures

• Oversee the implementation and ongoing management of security controls, technologies, and processes

• Support our security and privacy certification processes (e.g. SOC2, PCI-DSS)

• Collaborate closely with IT, Engineering, Product, and Legal departments to enhance security frameworks and compliance with established policies

• Develop and maintain a vendor risk management program consistent with internal policies and risk thresholds

• Assist Sales & Product with inquiries from prospective customers, including:

  • Completing pre-sales security reviews

  • Answering specific RFP questions

  • Providing details around the security features of the product

• Lead initiatives in data protection through advanced sharing controls, Data Loss Prevention (DLP), and other relevant security mechanisms

Who you are

• Proven experience in managing and securing macOS environments and deploying endpoint security solutions 

• Solid background in public cloud infrastructures like AWS, Cloudflare or Microsoft Azure, and proficiency in managing cloud security aspects

• Expertise in identity and access management, including familiarity with protocols like SAML, OAUTH, and SCIM.

• 6+ years of experience in information security, preferably experience with financial institutions (banks, credit unions, financial services)

• Proven track record of developing and implementing comprehensive information security programs

• In-depth knowledge of security frameworks, standards, and regulations (e.g. NIST, SOC 2 Type 2, PCI-DSS)

• Strong technical skills in areas such as network security, access controls, vulnerability management, and incident response

• Excellent communication, project management, and problem-solving abilities

Extra awesome

• Experience working at an early stage company

• Familiarity with Drata, Safebase, Linear, JAMF etc.

--

The annual US base salary range for this role is: $150,000 - $200,000.

Benefits:

• Medical, Dental, Vision; basic medical plans 100% covered

• Unlimited PTO

• Stipends for WFH setup, gym/wellness, cellphone, and continued learning

• Student Loan repayment program

• Commuter benefits 100% covered

• Lunch allowance when working from the office

• 12 weeks parental leave

• Hybrid-office stocked with snacks

• Quarterly team off-sites

Disclaimer to Staffing/Recruiting Agencies:
Method Financial does not accept unsolicited resumes from recruiters or employment agencies in response to our Career page or a Method Financial social media/job board post. Method Financial will not consider or agree to payment of any referral compensation or recruiter fee relating to these unsolicited resumes. Method Financial explicitly reserves the right to hire those candidate(s) without any financial obligation to the recruiter or agency. Any unsolicited resumes, including those submitted to hiring managers, are deemed to be the property of Method Financial.