Student Choice

VP of Information Security

Student Choice  •  $130k/yr  •  United States (Remote)  •  2 days ago
Apply
AI can make mistakes so check important info. Chat history is never stored.

Job Description

Title:VP, Information Security

Standard Hours:40

Primary Location:Home Office

Reports to:CIO

The Vice President of Information Security leads a modern, business-aligned security program across the organization’s Microsoft-based environment.

This role blends security leadership with cloud architecture and reliability principles, ensuring systems are not only protected, but also resilient, observable, and continuously improving.

The VP will work closely with internal teams, vendors and a managed service provider (MSP), maintaining accountability for outcomes while enabling efficient, scalable operations.

________________________________________

Core Responsibilities

Security Program Leadership

•Manage and maintain a risk-based, right-sized security program aligned to business priorities

•Manage security controls that balance protection, usability, and system performance

•Translate risk into clear, actionable decisions for leadership

________________________________________

Cloud Security, Architecture & Reliability

•Working with our vendors, ensure systems are architected with:

oStrong identity and access controls

oSecure configurations

oHigh availability and resilience

•Partner with MSP and IT to build secure, scalable, and fault-tolerant systems

•Promote infrastructure consistency and automation

________________________________________

Observability, Monitoring & Metrics

•Manage and enhance monitoring, logging, and alerting across all platforms

•Define and track key security and reliability metrics, such as:

oIncident detection and response times

oVulnerability remediation timelines

oSystem availability and performance

•Improve visibility into system behavior to support faster, more effective decision-making

________________________________________

Incident Response & Continuous Improvement

•Lead all aspects of incident response, including coordination with MSP, COO, and CIO

•Conduct root cause analysis and implement corrective actions

•Drive a culture of continuous improvement, reducing repeat incidents over time

•Ensure systems and processes evolve based on lessons learned

________________________________________

MSP Management & Operations

•Manage the MSP relationship, ensuring accountability and performance

•Oversee:

oSecurity monitoring

oAlert triage and response

oVulnerability management

oDesk top maintenance and issue resolution

•Define SLAs and ensure operational effectiveness

________________________________________

Risk, Compliance & Audit

•Working with internal and external resources, lead SSAE 18 / SOC audits, including preparation and remediation coordination.

•Maintain existing policies, standards, and documentation aligned to actual risk

•Create new policies as identified

________________________________________

Business Continuity & Resilience

•Co-Own business continuity and disaster recovery programs across the organization

•Participate in testing and improvement recommendations

________________________________________

Vendor & Partner Security

•Assess and monitor third-party security posture

•Integrate vendor risk into broader risk management practices

•Work with and manage other vendor partners to ensure best security practices and successful audits. ________________________________________

Security Culture & Awareness

•Promote a practical, accountable security culture

•Deliver targeted training and awareness programs to staff

•Stay current on threats and evolving best practices

________________________________________

Qualifications

•~7–12 years in information security, cloud security, or related roles

•Experience with Azure and/or Microsoft 365 security and architecture

•Experience with monitoring, incident response, and cloud operations

•Familiarity with automation and modern infrastructure practices

•Experience working with MSPs or external service providers

•Exposure to SOC/SSAE 18 and regulated environments

________________________________________

Leadership Profile

•Hands-on and accountable, with both strategic and technical capability

•Focused on measurable outcomes and continuous improvement

•Pragmatic—balances security, reliability, and business needs

•Strong collaborator across technology, operations, and leadership

•Growth-oriented and eager to expand leadership scope

________________________________________

Work Conditions

•Sitting for extended periods of time

•Dexterity of hands and fingers to operate a computer keyboard, mouse, and other devices

•Physically able to participate in training sessions, presentations and meetings

•Some travel is required for the purpose of meeting with management, employees, and occasional credit union client meetings

AA EEO

Student Choice

About Student Choice

CU Student Choice helps credit unions meet the evolving needs of the next generation of members. Our vision began with an education line of credit in 2008 and now has grown to include student loan refinance, skilled trades lending solutions, referral programs, next gen lead gen and a proprietary loan origination system. Student Choice has partnered with more than 300 credit unions to facilitate student lending solutions that lead to better financial decisions, long-term relationships, and sustainable, high-quality loan assets.

Industry
Finance & Insurance
Company Size
51-200 employees
Headquarters
Washington, DC
Year Founded
2008
Social Media