Sr. Security Governance, Risk & Compliance Analyst - Paze

At Early Warning, we've powered and protected the U.S. financial system for over thirty years with cutting-edge solutions like Zelle, Paze, and more. As a trusted name in payments, we partner with thousands of institutions to increase access to financial services and protect transactions for hundreds of millions of consumers and small businesses.

Positions located in Scottsdale, San Francisco, Chicago, or New York follow a hybrid work model to promote collaboration.

Candidates must independently possess the eligibility to work in the United States without employer-sponsored visas.

The Sr. Security Governance, Risk & Compliance Analyst - Paze will support the Audit Readiness program within SecGRC, handling inquiries related to questionnaires and contract negotiations with Paze Customers, Merchants, and Integrators. This role requires a thorough knowledge of Early Warning's policies, standards, and processes, along with a strong understanding of Information Security and Risk frameworks.

The role involves supporting information security governance, risk, and compliance activities, including developing and assessing security policies, conducting risk management, and facilitating audits and assessments.

1. Support security governance, risk, and compliance programs and initiatives.
2. Manage the security policy program, including drafting, approvals, and ensuring compliance.
3. Design and enhance internal control testing and advise management on control design.
4. Consult management on regulatory and contractual requirements.
5. Lead external and internal audits (e.g., SOC-2, GLBA, FISMA, PCI DSS).
6. Assess information security risks and recommend mitigation strategies.
7. Document audit activities and support responses.
8. Track and report compliance metrics.
9. Present security topics to stakeholders and leadership.
10. Participate in security awareness programs.
11. Mentor Security GRC staff.
12. Communicate security risks and issues effectively.
13. Lead issues management and risk remediation efforts.
14. Support the company's risk management and data protection commitments.

The above list is not exhaustive; additional duties may be assigned.

• Bachelor's degree and 5+ years of relevant experience.
• Proficiency in standards like ISO 27000, PCI DSS, NIST 800-53a, and others.
• Certification in CISA, CISSP, or similar within 12 months of hire.
• Excellent communication skills.
• Background check and drug screening required.

• Additional relevant education or experience.
• Experience in financial services or FinTech.
• Certifications like Security+, GCIH, etc.
• Experience with GRC tools, IAM, and security systems.

Primarily sedentary office work with occasional physical activity. Must be able to lift 10 pounds and communicate effectively. Reasonable accommodations available.

Salary ranges vary by location, e.g., $110,000 - $120,000 in Phoenix/Chicago, and $120,000 - $130,000 in NY/SF. Benefits include healthcare, 401(k), paid time off, parental leave, and more. Details are available on our Benefits page.

We consider all qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, age, national origin, veteran status, or disability.