VP Information Security Risk Officer

Job Title - VP, Information Security Risk Officer (ISRO)Location - Houston, TX, USA – (Onsite) Employment Type - Full-TimeClient: Financial Services Organization Compensation: ~$200K Base + Bonus + Long-Term Incentives (Stock Grants) Visa: USC / GCAbout the RoleWe are seeking a VP, Information Security Risk Officer (ISRO) to lead enterprise-wide cybersecurity, IT risk, and compliance strategy within a highly regulated financial services environment.This executive role will own the organization’s technology roadmap, information security posture, regulatory compliance, and vendor ecosystem, while acting as the primary liaison for audits, risk governance, and security programs.Key ResponsibilitiesStrategic Leadership & Technology Governance • Define and execute enterprise information security and IT risk strategy • Lead IT governance forums, including steering committees and executive reporting • Align technology initiatives with business objectives and digital transformation goals • Oversee managed service providers (MSPs) and vendor relationships • Present risk posture, security strategy, and technology updates to leadership and boardCybersecurity, Risk & Compliance • Lead enterprise cyber risk management and security programs • Ensure compliance with frameworks such as NIST, FFIEC, ISO 27001, SOC 2, and GLBA • Act as the primary contact for regulatory audits, examinations, and compliance reviews • Design and maintain IT controls, risk frameworks, and audit documentation • Monitor regulatory changes and ensure timely updates to policies and proceduresPolicy & Governance Frameworks • Develop and maintain IT security policies, procedures, and governance documentation • Translate regulatory requirements into actionable internal controls and standards • Establish policy review cycles and ensure continuous compliance • Create process documentation, risk matrices, and control frameworksBusiness Continuity & Vendor Risk Management • Lead business continuity planning (BCP) and disaster recovery (DR) initiatives • Oversee vendor risk management, due diligence, and contract lifecycle • Conduct periodic testing of security controls, access management, and incident response • Provide guidance on security risks for new initiatives and enterprise projectsMandatory Skills & Qualifications• 10+ years of experience in Information Security, IT Risk, or Compliance leadership within Financial Services • Strong knowledge of regulatory frameworks (FFIEC, GLBA, NIST, ISO 27001, SOC 2) • Proven experience leading enterprise cybersecurity programs and risk governance • Hands-on experience managing audits, regulatory exams, and compliance reporting • Strong leadership and stakeholder management skills with executive-level communication • Experience with vendor risk management and third-party governance • Ability to handle sensitive financial and regulatory data with high confidentialityPreferred Skills• Certifications such as CISSP, CISM, or CCISO • Experience in trust companies, banking, or financial institutions • Knowledge of business continuity, disaster recovery, and incident response frameworks • Familiarity with trust accounting systems or financial platformsWhy Join Us• Lead cybersecurity strategy for a high-growth financial services organization • Direct exposure to executive leadership and board-level decision making • Opportunity to shape enterprise-wide risk, compliance, and digital transformation initiatives • Competitive compensation with bonus and long-term equity incentivesAbout NetworkPediaNetworkPedia is a certified women-owned technology and talent solutions company, providing IT infrastructure, cybersecurity, managed services, and specialized recruitment across North Americas and beyond. Our mission is to empower organizations with secure, scalable, and innovative technology while building inclusive teams that reflect the communities we serve.As a trusted partner, we deliver expertise across networking, cloud, IT service management, and security operations, along with staffing solutions for niche technology roles. We are committed to diversity, equity, and inclusion (DEI) in all our hiring practices and ensure that our opportunities are open to all qualified applicants, without discrimination on the basis of age, gender, race, ethnicity, religion, sexual orientation, or disability.How to ApplyApply directly via LinkedIn Easy Apply. All applications are routed to our central recruitment email id - recruitment@networkpedia.com