Head of Security & Infrastructure

ARIVE·Remote(United States)
Cybersecurity

WFA Digital Insight

As the remote job market continues to grow, demand for skilled cybersecurity professionals like Heads of Security & Infrastructure has skyrocketed, with some estimates suggesting a 25% increase in the past year alone. With the rise of fintech, companies like ARIVE are at the forefront of innovation, making this role particularly exciting for those interested in digital mortgage originations. Candidates should be aware that this role requires a unique blend of technical expertise, leadership skills, and strategic thinking, as well as the ability to drive cross-functional collaboration and implement SOC 2 controls.

Job Description

About the Role

The Head of Security & Infrastructure at ARIVE will be responsible for leading the company's cybersecurity posture, core platform security, cloud infrastructure, secure DevOps, endpoint protection, and internal business applications. This is a hands-on, engineering-minded leadership role that requires a deep understanding of cybersecurity, cloud infrastructure, and IT operations. The successful candidate will lead and develop a high-impact team, driving solutions across each of these areas and collaborating with cross-functional teams to execute security initiatives.

The role is critical to ARIVE's success, as the company's platform is the foundation for the mortgage broker ecosystem, processing sensitive financial data and connecting brokers, lenders, borrowers, and service providers. The Head of Security & Infrastructure will report directly to the CEO and will be responsible for driving global security across U.S. and India teams.

ARIVE is a privately held, founder-led, high-growth fintech company that is revolutionizing digital mortgage originations. The company's platform is designed to connect brokers, lenders, borrowers, and service providers into one seamless platform, making it easier and more efficient to process mortgage applications.

What You Will Do

  • Lead and evolve ARIVE's security and infrastructure strategy, roadmap, and posture
  • Lead, manage, and develop the existing security and infrastructure teams
  • Partner across all teams to embed security into workflows and practices
  • Champion secure-by-design standards and assess emerging AI-driven threats and opportunities
  • Lead the security of ARIVE's core platform, ensuring protection of PII, mortgage data, and financial information
  • Govern application security standards, including secure code reviews, SAST/DAST, API security, and penetration testing programs
  • Govern authentication, authorization, and access control frameworks across all customer-facing and internal applications
  • Drive threat modeling and security reviews for new features, integrations, and third-party connections
  • Run a 24x7 security incident monitoring program across all platform, cloud, and endpoint environments
  • Mature the SIEM/SOAR program, lead incident response across all severity levels, and drive automation to improve MTTD/MTTR
  • Manage regular penetration tests, vulnerability assessments, and red-team engagements
  • Track findings to closure and maintain risk registers and remediation SLAs

What We Are Looking For

  • 15+ years of hands-on experience spanning cybersecurity, cloud infrastructure/DevOps, and IT operations
  • 5+ years of experience in a leadership role, with a proven track record of driving security initiatives and leading high-impact teams
  • Strong technical expertise in cybersecurity, cloud infrastructure, and IT operations
  • Experience with AWS cloud infrastructure, CI/CD pipelines, container orchestration, and deployment automation
  • Strong understanding of security frameworks, including SOC 2 and GLBA
  • Experience with threat modeling, security reviews, and penetration testing
  • Strong communication and collaboration skills, with the ability to drive cross-functional collaboration and embed security into workflows and practices

Nice to Have

  • Experience with AI-driven security solutions and emerging threats
  • Certification in cybersecurity, such as CISSP or CISM
  • Experience with IT operations, including identity/access management and internal tooling
  • Experience with vendor/third-party risk assessments and BC/DR planning

Benefits and Perks

  • Competitive salary and equity package
  • Comprehensive health insurance and benefits package
  • Flexible PTO and remote work options
  • Professional development opportunities, including training and certification programs
  • Access to cutting-edge technology and tools
  • Collaborative and dynamic work environment
  • Opportunity to work with a high-growth fintech company and make a meaningful impact on the mortgage ecosystem

How to Stand Out

  • Be prepared to provide specific examples of your experience driving security initiatives and leading high-impact teams
  • Make sure your resume and online profiles are up-to-date and highlight your technical expertise in cybersecurity, cloud infrastructure, and IT operations
  • Research ARIVE and the fintech industry to understand the company's mission and values, as well as the current trends and challenges in the field
  • Be ready to discuss your approach to threat modeling, security reviews, and penetration testing, and how you stay current with emerging threats and technologies
  • Consider creating a portfolio or repository of your work, including any relevant projects or certifications, to demonstrate your skills and experience to the hiring team
  • Don't be afraid to ask questions during the interview process, such as what the biggest security challenges are facing the company, or what the typical career path is for someone in this role

This is a remote position listed on WFA Digital, the platform for professionals who work from anywhere. Browse more remote jobs across all categories.