LATAM BISO

Employee Applicant Privacy Notice

Who we are:

Welcoming, collaborative and having the opportunity to make an impact - is how our employees describe working here.  Galileo is a financial technology company that provides innovative and revolutionary software products and services that power some of the world's largest Fintechs. We are the only payments innovator that applies tech and engineering capabilities to empower Fintechs and financial institutions to unleash their full creativity to achieve their most inspired goals. Galileo leads its industry with superior fraud detection, security, decision-making analytics and regulatory compliance functionality combined with customized, responsive and flexible programs to accelerate the success of all payments companies and solve tomorrow's payments challenges today. We hire energetic and creative employees while providing them the opportunity to excel in their careers and make a difference for our clients. Learn more about us and why we work here at https://www.galileo-ft.com/working-at-galileo.

About The Role

Combining business acumen with technical knowledge, the BISO will guide, consult, and partner with business unit leadership to improve the Cyber Security posture of the business unit as per the strategic direction established by SoFi CISO. The BISO will report into the greater security organization and act as a liaison between the central security team and the business unit.

The BISO will understand the key assets and processes, identify and evaluate risks and controls, and suggest incremental controls or risk mitigation strategies where necessary. Additionally, the BISO will ensure business compliance with Cyber Security Policies and Standards while continuously monitoring and reporting on risks and documented exceptions. 

What You’ll Do

• Develop and maintain in depth understanding of region/business unit processes, systems, technologies, data, customers, consumers, partners.
• Act as the primary security contact for the product, engineering and operations teams.
• Advise on the secure design of product and application architecture by leveraging services from the central product security team.
• Partner with business unit legal and compliance resources to achieve effective working relationships that can further the effectiveness of the Security program
• Implement the Cyber Security Policies and Standards across the business unit
• Communicate, oversee and carryout technical implementations of security solutions required to meet business objectives
• Proactively identify non compliance and areas of potential improvement, and facilitate development and deployment of standard solutions
• Engage with clients and partners as needed to assist the business to achieve its objectives by representing our security program, supporting internal and external audits, assisting in security related inquiries
• Provide regular and timely reporting on the status of Cyber Security across the region/business unit
• Work with SOC and Incident management teams to assist in effectively driving incidents to acceptable resolution; assist with investigations as needed
• Provide Cyber Security guidance across functions and provide escalation path for security issues, incidents and inquiries
• Collaborate with the Product Security and Enterprise Security  teams to develop a technical roadmap.
• Work with the GRC team to drive policy and regulatory compliance.
• Assist on the implementation and translation of Cyber Security policies.
  
  

What You’ll Need

• Strong understanding in the following areas
• Cyber design
• Risk & Compliance
• Technology Risk Management
• Identity & Access Management
• Data Protection
• Cloud security
• Incident Response and Architecture
• Web application security and Microservices 
• Experience evaluating Cyber Security controls and providing guidance for platform or distributed computing platforms
• Experience working and architecting security solutions that are scalable
• Demonstrate understanding CI/CD pipelines and security tooling in pipelines
• Ability to prioritize between and execute on multiple work streams
• Written and verbal skills for communicating security concepts and solutions
• Bachelor's degree in Computer Science or equivalent from a fully-accredited college or university
  
  

Preferred Qualifications

• 8+ Experience in Cyber Security space with experience in
• Infrastructure and product security architecture
• Cloud native products and in-depth understanding of microservice topologies and implementations
• Cyber Security Consulting
• Demonstrated ability to think strategically about business, product, and technical challenges
• Proven ability to work with compliance frameworks and requirements such as PCI, SOC2, ISO27001, etc.
• Ability to manage relationships with other business units, external vendors and stakeholders when IT security risks are present and system or process changes must be made to mitigate risk
• Experience supporting cyber strategy with cross-functional executive level stakeholders
• Demonstrated ability support organizational change and work with multiple business units
• Knowledge and experience across multiple information protection and security domains
• Familiarity with AWS and at-scale services
• Familiarity with software development and service delivery organizations
• Ability to work in a fast paced and Agile development environment
• Work and play well with others; SoFi is a collaborative environment CISSP, CISM, GSEC or AWS Certified Security Architect
• Masters or PhD in Computer Science or Engineering
• Financial services experience

Galileo Financial Technologies provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion (including religious dress and grooming practices), sex (including pregnancy, childbirth and related medical conditions, breastfeeding, and conditions related to breastfeeding), gender, gender identity, gender expression, national origin, ancestry, age (40 or over), physical or medical disability, medical condition, marital status, registered domestic partner status, sexual orientation, genetic information, military and/or veteran status, or any other basis prohibited by applicable state or federal law.

The Company hires the best qualified candidate for the job, without regard to protected characteristics.

Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.

New York applicants: Notice of Employee Rights

Galileo is committed to embracing diversity. As part of this commitment, Galileo offers reasonable accommodations to candidates with physical or mental disabilities. If you need accommodations to participate in the job application or interview process, please let your recruiter know or email accommodations@sofi.com.

Due to insurance coverage issues, we are unable to accommodate remote work from Hawaii or Alaska at this time.