CyberSecurity & IT Jobs from the Boardroom to the S.O.C.


JUser: :_load: Unable to load user with ID: 354

VP, Chief Information Security Officer (CISO)

Add to Favourites
Added 2018-09-16 15:50:54



At YapStone, we approach payments with the same startup mentality that we had when we launched our first payment solution in 1999. We are now focused on combining our entrepreneurial spirit with our immense payment expertise to take our company and our partners to the forefront of innovation. As one of the leading payment companies, YapStone is continually searching for passionate thinkers to join us in changing how the world pays.


YapStone is looking to hire a VP, Chief Information Security Officer (CISO) to drive the strategy and implementation of a company-wide information security management program whilst protecting the business from security threats and cyber-hacking. The CISO will also ensure operational compliance with all standards and regulatory requirements (e.g. ISO, SOX, GDPR, PII, PCI, etc.) while serving as an effective liaison for engaging with YapStone customers, clients, partners and stakeholders on security-related matters. This role is at the Vice-President level and is based in Walnut Creek, California.


The CISO must be a leader in the field having sound knowledge of business management and a working knowledge of information security technologies. This position will proactively work with various YapStone business units to implement practices that meet defined policies and standards for information security, particularly within the context of a company with business operations managed in the cloud. The CISO will also have oversight of multiple risk management activities and projects defined by the Chief Technical Officer.



  • Develop, implement and monitor a strategic, comprehensive enterprise information security and risk management program for the YapStone business, which operates in the cloud leveraging Amazon Web Services (AWS).
  • Manage the enterprise's information security organization, consisting of direct reports and indirect reports. This includes hiring, training, staff development, performance management and annual performance reviews.
  • Develop, maintain and publish up-to-date information security policies, standards and guidelines; oversee the approval, training, and dissemination of security policies and practices.
  • Create, communicate and implement a risk-based process for vendor risk management, including the assessment and treatment for risks that may result from partners, consultants and other service providers.
  • Provide regular reporting on the current status of the information security program to company senior business leaders as part of a strategic risk management program.
  • Develop and enhance an information security management framework based on the following: International Organization for Standardization (ISO) 2700X, Sarbanes-Oxley Act (SOX), Payment Card Industry Data Security Standards (PCI DSS), Personally Identifiable Information (PII).
  • Provide strategic risk guidance for Product Engineering projects, including the evaluation and recommendation of technical controls.
  • Liaise with the company’s development team to ensure alignment between the security and development practices.
  • Liaise with YapStone customers, clients, partners and stakeholders on security-related matters.



  • Bachelor's degree in business administration or a technology-related field, or equivalent work or education-related experience.
  • Certification as a Certified Information Systems Security Professional (CISSP) and/or Systems Security Certified Practitioner (SSCP) is desirable.
  • Minimum of 15 years of experience in a combination of risk management, information security and Product Engineering roles. At least 4 years in a senior leadership role.
  • Relevant experience managing security for companies that leverage cloud technologies such as Amazon Web Services (AWS) and / or offer platform as a service (PaaS) with security commitments to customers and partners.
  • Relevant experience working in the payment industry with a deep understanding of regulatory frameworks such as ISO, SOX, GDPR, PII, PCI, etc.
  • Excellent written and verbal communication skills, interpersonal and collaborative skills, and the ability to communicate security and risk-related concepts to technical and non-technical audiences. Must be able to effectively liaise with internal direct reports and senior management as well as external customers, clients, partners and stakeholders.
  • Proven track record and experience in developing information security policies and procedures.
  • Must be a critical thinker, with strong problem-solving skills.
  • Knowledge and understanding of relevant legal and regulatory requirements, such as Sarbanes-Oxley Act (SOX), Health Insurance Portability and Accountability Act (HIPAA) and Payment Card Industry/Data Security Standard Personally Identifiable Information (PII).
  • Strong project management, financial/budget management, scheduling and resource management skills.
  • Ability to lead and motivate cross-functional, interdisciplinary teams to achieve tactical and strategic goals.

Changing how the world pays is a mission that inspires us daily. It gets us up in the morning and keeps us up at night. And just in case we need an extra dose of inspiration during the day, our team can take in the views from our Santa Monica office or refuel at the Yap Café in our Walnut Creek office. From comprehensive health insurance choices, 401(k) matching and weekly socials to gym memberships, you'll find plenty of benefits and perks that reflect our appreciation for all of the thinking and doing that goes on at YapStone. 

About YapStone

YapStone is a provider of online and mobile payment solutions for global marketplaces, software, and large vertical markets, powering electronic payments for sharing economy marketplaces, such as HomeAway® and VRBO®, and thousands of apartment and vacation rental companies, homeowners' associations, self-storage companies, and many other markets.

YapStone processes $20B in payment volume annually and has been recognized on the Inc. 5000 list of Fastest-Growing Private Companies for ten consecutive years, as well as San Francisco Bay Area's Best and Brightest Company to Work for by the National Association for Business Resources.

The company has raised over $120 million from investors including Premji Invest, Accel Partners, Meritech Capital and MasterCard. Headquartered in Walnut Creek, California, YapStone has additional offices in Santa Monica, California and

YapStone is an equal opportunities employer.

Specific details

Employment Type Full time
Degree 4 Year Degree
Salary Range 2500


California, United States, North America
Walnut Creek


We use cookies to maintain login sessions, analytics and to improve your experience on our website. By continuing to use our site, you accept our use of cookies. Terms of Use