Oficial en Jefe de Seguridad de la Información (CISO)

We are seeking an experienced Chief Information Security Officer (CISO) to lead our Information Security function in Mexico. This role is accountable for defining, implementing, and continuously improving the organization’s information security policies, governance, and controls in alignment with regulatory requirements (CNBV, Banco de México) and industry best practices. As CISO, you will act as the primary authority on information security for a regulated Fintech (IFPE), ensuring the confidentiality, integrity, and availability of critical systems and data. You will collaborate closely with executive leadership, regulators, and technical teams to safeguard the organization’s technology infrastructure, services, and customer trust.

• Define, approve, and oversee the implementation of information security policies, standards, and procedures.
• Maintain and further develop the IFPE’s Information Security Master Plan and ensure it is reviewed and updated at least annually.
• Verify that access profiles and privileges are aligned with job roles and authorize their assignment across internal and third-party infrastructure.
• Ensure secure configuration and monitoring of critical technology systems, including operating systems, databases, and cloud environments.
• Approve and monitor remediation measures for deficiencies identified in audits, assessments, or incidents.
• Lead the detection, response, and recovery process for information security incidents and oversee the incident response team.
• Report incidents, corrective actions, and preventive measures to executive leadership in a timely manner.
• Oversee annual security training and awareness programs for employees, customers, and third-party providers.
• Provide monthly information security management reports and risk indicator assessments to the Sole Administrator.
• Respond to information security requirements issued by CNBV, Banco de México, and internal stakeholders.
• Ensure that sensitive information handled by providers is encrypted and establish procedures for decryption when required.

• 10+ years of progressive experience in information security leadership, with at least 5 years in a senior security management or CISO role.
• Deep knowledge of regulatory frameworks in Mexico (CNBV, Banco de México, Fintech Law) and international standards (ISO 27001, NIST, PCI DSS).
• Strong expertise in governance, risk management, and compliance (GRC) in financial services.
• Proven experience leading large-scale incident response, risk assessment, and audit remediation efforts.
• Experience managing access controls and privileged accounts in complex technology environments.
• Excellent leadership and communication skills, with the ability to engage with regulators, executives, and technical teams.
• Advanced degree in Information Security, Computer Science, or related field (preferred).
• Relevant certifications (e.g., CISM, CISSP, CISA, CRISC).

• Competitive salary
• Sign-on stock options bonus, so you become part of the success of the company
• Discretionary performance bonus (stock options)
• Paid annual leave
• Latest technology to work with
• Strong team that will help you improve your skills