💼 About This Role

You'll own Rain's security governance, risk, and compliance strategy, focusing on ISO 27001 certification and regulatory readiness. You'll partner with engineering, legal, and operations teams to embed security into all workflows. This role offers massive impact at a hypergrowth fintech funded by top investors.

🎯 What You'll Do

• Lead ISO 27001 certification and compliance programs
• Design and implement security governance framework
• Partner with engineering and product teams on security controls
• Manage external audits, certifications, and assessments

📋 Requirements

• 8–12+ years in information security or GRC roles
• Hands-on ISO 27001 certification experience
• Experience in high-growth fintech or regulated environments
• Deep knowledge of NIST and SOC 2 frameworks

✨ Nice to Have

• Experience with PCI DSS or ISO 22301
• Prior first security leader at a scaling company
• CISSP, CISM, or ISO 27001 Lead Implementer certification

🎁 Benefits & Perks

• 🏖️ Unlimited PTO (minimum 10 days required)
• 🏥 Comprehensive health, dental, and vision for you and dependents
• 💰 401(k) with 4% match
• 📦 Equity option plan for all Rainmakers
• 📚 Health and wellness stipend for gym, massage, etc.