← Back to list
Job

Deputy Chief Information Security Officer

Security Engineer • Remote • Full-time • 📍 United States

Sardine is hiring a Deputy Chief Information Security Officer to partner closely with the CISO and help scale the security program, operating across application security, GRC, security operations, cloud/SaaS security, corporate IT, and customer trust.

Stack

Responsibilities

  • Partner with the CISO on Sardine's overall security strategy, roadmap, priorities, and execution
  • Help identify, prioritize, and address the highest-risk areas across the business
  • Support security reporting, executive updates, budgeting, vendor evaluation, and planning
  • Partner on key compliance initiatives, including PCI, SOC 2, ISO 27001, DORA, and future FedRAMP readiness
  • Support incident response and act as a deputy incident lead when needed
  • Work closely with Engineering on application security, secure SDLC, vulnerability management, threat modeling
  • Assess and improve security across cloud infrastructure, SaaS tools, IAM, endpoint management, and corporate IT
  • Support customer-facing security conversations, RFPs, due diligence, and security reviews

Requirements

  • 10-15+ years of cybersecurity experience, including 3+ years in a senior leadership or director-level role
  • Broad security background across multiple domains, not a single-specialty profile
  • Strong application security experience, able to assess technical risk without needing to be hands-on coding daily
  • Experience operating in a startup, scale-up, or similarly resource-constrained environment
  • Strong working knowledge of compliance frameworks such as SOC 2, PCI DSS, ISO 27001, GDPR, CCPA, DORA, ideally FedRAMP
  • Experience participating in or leading security incidents
  • Strong cloud, SaaS security, IAM, endpoint security, and zero-trust fundamentals
  • Customer-facing communication skills, supporting sales and executive-level customer conversations
  • Must be based in the United States and authorized to work without sponsorship

Nice to have

  • Experience in fintech, payments, security, bot mitigation, or regulated industries

Soft skills

Pragmatic, business-enabling mindsetBuilding trust with leaders and teamsStrong leadership presence

What we offer

  • Remote: United States; travel approximately once every 1-2 months, primarily North America
  • Generous compensation in cash and equity
  • Remote-first culture, work from anywhere
  • Flexible paid time off and year-end break
  • MacBook Pro delivered to your door
  • Monthly meal and social stipends
  • Annual health, wellness, and learning stipends

About the company

Sardine is the leading agentic risk platform for fighting financial crime. Its integrated solution unifies data across risk teams to stop fraud in real time, prevent AI-driven attacks, and automate fraud and AML operations. Leading companies including FIS, GoDaddy, Intuit, Edward Jones, ZoomInfo, and Checkout.com rely on Sardine.

Similar jobs