Security GRC Analyst

Employer Industry: Personal Finance Technology

• Competitive cash and equity compensation in a hyper-growth, early-stage company
• Unlimited PTO and a monthly 3-day weekend to focus on rest and recuperation
• Stipend to set up your ideal working environment
• Work remotely from anywhere, allowing you to choose your most productive setting
• Opportunity to scale and optimize compliance programs in a fast-paced environment

• Scale, automate, and optimize existing GRC, compliance, and customer assurance programs
• Optimize and automate the third-party risk program to improve risk signal quality and reduce assessment cycle time
• Evaluate, implement, and maintain GRC tooling with a focus on AI-powered automation
• Mature the existing SOC 2 program by enhancing continuous controls monitoring and reducing audit preparation efforts
• Research and implement additional frameworks and attestations to position the employer as a security leader in personal finance

• 3-5 years of experience in operating and scaling mature GRC, compliance, or customer assurance programs in high-growth environments
• Hands-on experience with customer assurance including security questionnaires and evidence requests
• Familiarity with SOC2, CCPA/GDPR compliance, and understanding of frameworks like ISO 27001
• Experience with Continuous Controls Monitoring and compliance automation tools
• Strong written communication skills for internal and external engagements

• Background in fintech or financial services
• Familiarity with cloud infrastructure (AWS) and modern SaaS stack
• Experience in a high-growth startup environment within B2B SaaS
• Knowledge of leveraging AI tools for GRC workflows
• Relevant certifications such as CISA, CRISC, or Security+

#PersonalFinance #Compliance #RemoteWork #CareerOpportunity #UnlimitedPTO

We prioritize candidate privacy and champion equal-opportunity employment. Central to our mission is our partnership with companies that share this commitment. We aim to foster a fair, transparent, and secure hiring environment for all. If you encounter any employer not adhering to these principles, please bring it to our attention immediately. We are not the EOR (Employer of Record) for this position. Our role in this specific opportunity is to connect outstanding candidates with a top-tier employer.