We are looking for a strategic and results-driven Senior Manager of Information Security to protect our business, drive risk reduction, and enable secure growth. In this role, you will lead our information security initiatives, ensuring they enhance business agility, build trust with customers, and meet regulatory requirements. You will be responsible for developing scalable information security programs, managing risk, and fostering a proactive security culture across the organization.

The ideal candidate is an information security leader who goes beyond operations, influencing business strategy through smart, risk-based security decisions.

You will:

• Build and scale information security programs that support business growth and operational excellence
• Ensure compliance with complex regulatory landscapes including PCI DSS, SOC 2, and HIPAA while maintaining business agility
• Lead and develop a high-performing information security team, ensuring alignment with organizational priorities
• Embed information security into product development and business operations, making security a competitive advantage rather than a barrier
• Communicate security risks in business terms, empowering leadership to make informed decisions

Key Responsibilities

Leadership & Execution:

• Develop and execute an information security strategy that enables business goals while managing risk effectively
• Lead, mentor, and scale an information security team, fostering professional growth and operational excellence
• Advocate for information security as a business enabler, influencing stakeholders across departments

Information Security Operations & Risk Management:

• Own and scale information security programs that proactively identify, assess, and mitigate threats
• Drive security automation and operational efficiencies, reducing risk while improving business agility and improving predictability
• Implement effective risk management processes, balancing security protections with business needs

Compliance & Risk Mitigation:

• Ensure compliance with key information security standards while maintaining operational flexibility
• Maintain up-to-date knowledge of security trends, threats, and emerging technologies to proactively enhance security measures
• Lead technical audit efforts, by coordinating evidence gathering and ensuring security documentation and policies are well-maintained

Incident Management & Response:

• Develop and lead information security incident response programs, ensuring rapid detection, investigation, and resolution
• Conduct security drills, tabletop exercises, and training to strengthen incident preparedness
• Proactively reduce attack surface through continuous monitoring and threat intelligence

Cross-Functional Collaboration:

• Partner with product, engineering, and business teams to embed information security into development and operations
• Translate security risks into actionable business insights, ensuring alignment with company objectives
• Foster a security-first culture by developing awareness programs and engaging leadership

Qualifications & Experience

Required:

• 8+ years of information security experience, with 3+ years leading teams in high-growth or regulated industries
• Proven ability to scale information security programs in alignment with business priorities
• Proven ability to manage complex security projects, ensuring timely delivery and alignment with business objectives
• Experience managing compliance frameworks while supporting innovation
• Strong risk management mindset, balancing security and business enablement
• Excellent leadership, communication, and stakeholder engagement skills

Preferred:

• CISSP, CISM, or CISMP certifications
• Experience in security automation, DevSecOps, or cloud security
• Background in financial services, SaaS, or technology-driven businesses
• Experience with PCI (PCI DSS, P2PE, PIN, and 3DS2), SOC, or HIPAA compliance

As well as being a part of something exciting everyday, you will also receive the following benefits:

• • Annual salary of $175,000 - $200,000 + bonus
  • A remote first culture!
  • Flex PTO
  • Health, Dental and Vision Insurance
  • 13 Paid Holidays
  • Company volunteer days

What we do!

NMI enables our partners with choice, and challenges the one-size-fits-all approach to payments. You've probably used NMI in the last 24 hours without even realizing it. We’re the platform that powers success for innovative tech created by SMBs, entrepreneurs and fintech startups. We’re creative problem solvers who help visionaries smash through boundaries and think beyond what’s possible so they can think about what’s next. But we’re not just built for the tech savvy. We democratize the latest payments technology so that everyone can realize the benefits of easy payments across the full spectrum of commerce. We’re all about enabling more payments in more ways and more places.

We believe that having a diverse group of employees strengthens both our work and our workplace. We’re focused on making NMI more diverse and welcoming with initiatives like having a dedicated Diversity, Equity & Inclusion action group, diversity goals for hiring, anonymized resume screening, affinity groups such as our Women's network and LGBTQ+ Network, open forums for discussions on diversity and social justice, and measuring inclusion and belonging as part of our regular employee engagement surveys.

Equal Opportunity

NMI is committed to providing equal employment opportunity for all persons regardless of race, color, religion, sex, age, marital status, national origin, sexual orientation or sexual identity, genetic information, citizen status (except those that do not have the legal right to be employed in the United States), disability, military service, service member, veteran status, or any other basis protected by applicable law.

Please be aware that all offers of employment are made subject to receipt of satisfactory background and financial checks.

Attention job applicants: Please note that in compliance with the data protection regulations within your jurisdiction, any personal information submitted with your job application may be collected and used by NMI for the purpose of recruitment and employment-related activities. By submitting your application, you acknowledge and provide explicit consent to the processing of your personal information as described in our privacy policy found on our website. For more information on how we process your information, please read our privacy policy here: https://www.nmi.com/legal/privacy-policy/

#LI-Remote