This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more. Role Description We’re seeking an experienced Chief Compliance Officer (CCO) / Chief Information Security Officer (CISO) to lead our compliance and information security programs. This executive will be a key member of the leadership team, ensuring LendSwift operates with full regulatory compliance and robust data security across all operations. - Maintain and improve a comprehensive Compliance Management System (CMS) that aligns with applicable federal and state consumer lending laws and regulations (e.g., TILA, ECOA, FCRA, GLBA, UDAAP). - Manage and maintain strong working relationships with our bank partners, ensuring ongoing compliance with bank oversight requirements and participation in exams and audits. - Oversee licensing, regulatory reporting, and interactions with federal and state regulators. - Advise senior leadership on compliance risks, trends, and mitigation strategies. - Lead compliance training, monitoring, and issue management programs. - Own the design and execution of our enterprise information security program to protect customer and company data. - Ensure compliance with GLBA, SOC 2, PCI DSS, and other applicable data security frameworks. - Develop and enforce policies, procedures, and controls for data privacy, cybersecurity, and incident response. - Oversee vendor due diligence and third-party risk management as it relates to information security. - Report regularly to executive leadership and the Board on the state of information security. Qualifications - 8+ years of progressive leadership experience in compliance and/or information security in the consumer lending industry. - Extensive knowledge of the bank partnership lending model and managing bank sponsor relationships. - Hands-on experience with multi-state lending operations and regulatory requirements. - Proven ability to lead, build, and scale compliance and security programs in a high-growth environment. - Strong communication skills; comfortable engaging with regulators, bank partners, auditors, and legal counsel. - Bachelor’s degree required; JD, CIPP, CISSP, or other relevant certifications a plus. Benefits - Highly flexible remote work environment. - Unlimited PTO. - Lean, AI-forward leadership team. - The chance to shape compliance and security strategy for a growing fintech innovator. - Competitive compensation and comprehensive benefits.

• Define, execute, and mature Avantor’s global security governance, risk, and compliance strategy • Develop and oversee programs ensuring adherence to regulatory requirements and alignment with security best practices • Advise the CISO and senior leadership on enterprise risk posture and compliance obligations • Manage the Company’s Information Security Management System (ISMS) • Define and drive the enterprise application security strategy • Lead the enterprise cyber risk management program including risk assessments and reporting • Own information security components of compliance programs and readiness efforts

About Airwallex Airwallex is the only unified payments and financial platform for global businesses. Powered by our unique combination of proprietary infrastructure and software, we empower over 200,000 businesses worldwide - including Brex, Rippling, Navan, Qantas, SHEIN and many more - with fully integrated solutions to manage everything from business accounts, payments, spend management and treasury, to embedded finance at a global scale. Proudly founded in Melbourne, we have a team of over 2,000 of the brightest and most innovative people in tech across 26 offices around the globe. Valued at US$8 billion and backed by world-leading investors including T. Rowe Price, Visa, Mastercard, Robinhood Ventures, Sequoia, Salesforce Ventures, DST Global, and Lone Pine Capital, Airwallex is leading the charge in building the global payments and financial platform of the future. If you're ready to do the most ambitious work of your career, join us. Attributes We Value We hire successful builders with founder-like energy who want real impact, accelerated learning, and true ownership. You bring strong role-related expertise and sharp thinking, and you're motivated by our mission and operating principles. You move fast with good judgment, dig deep with curiosity, and make decisions from first principles, balancing speed and rigor. You're humble and collaborative; turn zero-to-one ideas into real products, and you "get stuff done" end-to-end. You use AI to work smarter and solve problems faster. Here, you'll tackle complex, high-visibility problems with exceptional teammates and grow your career as we build the future of global banking. If that sounds like you, let's build what's next. Your role As a Staff Corporate Security Engineer, you will be a critical part of defending Airwallex's enterprise systems and employees from threats such as malware, phishing and unauthorised access. This role is a highly technical opportunity to detect, investigate and prevent security issues across a modern corporate environment. You will work on digital forensics, incident response and tool development and deployment, protecting a range of corporate IT platforms from endpoints to identity providers. What you'll be doing - Contribute to incident response for malware, phishing, digital forensics. - Design, develop, test, and evaluate new corporate security controls for a rapidly growing business. - Perform incident response and hunt through log sources to identify new threats. - Design and implement security alerts and workflows to support the incident response lifecycle. - Secure corporate IT infrastructure and remediate issues across identity providers, endpoints, corporate networks and other platforms. - Deploy, configure and operate security tooling with a laser focus on impact. What you'll bring - A passion for solving the complex challenges of high-growth startups. - Self motivation and drive to learn new skills, or dive deeper into existing skills. - Bachelor's degree in Computer Science, Cybersecurity or similar. - 7+ years working in a security engineering or incident response role within a tech company. - Strong experience with Crowdstrike, Splunk or other common security monitoring tools. - In depth understanding of common attacker tools and techniques, how they can be detected and prevented, and ability to respond to incidents with high depth and quality of investigation. - Experience with GCP, Alibaba Cloud or other cloud platforms is preferred. - Experience with Okta, Google Workspace and cloud-based VPN services is preferred. - Experience securing endpoints, including with MDM tooling such as Kandji, Intune - Strong communication skills with the ability to explain technical security and software concepts to a non-technical audience. - Scripting experience such as with Python, Bash, Powershell. Applicant Safety Policy: Fraud and Third-Party Recruiters To protect you from recruitment scams, please be aware that Airwallex will not ask for bank details, sensitive ID numbers (i.e. passport), or any form of payment during the application or interview process. All official communication will come from an @airwallex.com email address. Please apply only through careers.airwallex.com or our official LinkedIn page. Airwallex does not accept unsolicited resumes from search firms/recruiters. Airwallex will not pay any fees to search firms/recruiters if a candidate is submitted by a search firm/recruiter unless an agreement has been entered into with respect to specific open position(s). Search firms/recruiters submitting resumes to Airwallex on an unsolicited basis shall be deemed to accept this condition, regardless of any other provision to the contrary. Equal opportunity Airwallex is proud to be an equal opportunity employer. We value diversity and anyone seeking employment at Airwallex is considered based on merit, qualifications, competence and talent. We don't regard color, religion, race, national origin, sexual orientation, ancestry, citizenship, sex, marital or family status, disability, gender, or any other legally protected status when making our hiring decisions. If you have a disability or special need that requires accommodation, please let us know. #BI-Hybrid

This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more. Role Description This role is for a Senior Network Security Engineer in the United States to perform project-based consulting for our enterprise customers, designing, implementing, and supporting various vendor network security technologies. The successful candidate will be a self-starter who can work in a team environment and resolve issues independently and as a senior member of a team. Having a positive attitude, excellent customer service skills, and strong, clear communication (verbal and written) capabilities is key. A typical day in this role would include high-level and detailed design, implementation, operations, troubleshooting, and issue resolution. You will develop documentation related to project requirements and assist with or develop customer-facing presentations of technology solutions. - Assess, design, implement, troubleshoot, and document various vendor networks and related systems - Provide solutions for various security challenges with modern-day networks - Provide segmentation and Zero trust solutions, including Network Access Control - Evaluate vendor solutions and provide recommendations to clients - Provide detailed documentation on recommended solutions Qualifications - Cisco Certified Internetwork Expert (CCIE) or CCIE level expertise in Enterprise Infrastructure (formerly Route/Switch), Security, Data Center or Service Provider (enterprise wireless and collaboration are welcome as well - let's talk) - 10+ years of experience in the design of large enterprise networks - Good understanding and practical experience with routing protocols (EIGRP, OSFP, and BGP) - Good understanding and practical experience with switching technologies (Spanning tree, EtherChannel, Port Security, 802.1X, MAB) - Familiarity with Virtual Private Network (VPN) and firewall technologies (Cisco, Palo Alto, Juniper, Check Point, etc) - Strong ZScaler experience - Familiarity with network segmentation and Zero Trust - Must be able to work with end users, communicate clearly, and meet deadlines Requirements - Experience in the integration of data network and storage system in data center environment - Good understanding and practical experience with switching technologies (Spanning tree, EtherChannel, Port Security, 802.1X, MAB) - Comfortable with Data Center virtualization technologies such as VXLAN and Nexus Data Center Fabric Controller (NDFC) - Familiarity with Virtual Private Network (VPN) and firewall technologies (Cisco, Palo Alto, Juniper, Check Point, etc) - Familiarity with Security technologies-SASE/SSE, Stealthwatch, Network Admission Control - Must be able to work with end-users, communicate clearly and meet deadlines Education - One or more CCNP/CCIE level certifications preferred - Bachelor's or above/equivalent Work Conditions - 40-hour week and availability for off-hours work as required based on the project - Location: Fully remote within the contiguous US - Some travel expected - approximately 25%