Sr. GRC Analyst
San Francisco, CA
Prosper
Discover a credit card, personal loans, or home equity options. Explore financial education. Meet your financial needs and find peace of mind with Prosper
Prosper is seeking a detail-oriented, highly motivated, technology-savvy, and passionate security compliance professional with a desire to support, promote, and further mature the company's Governance, Risk and Compliance program. This role is responsible for executing various security compliance initiatives such as PCI DSS, NIST based risk assessments, security audits, 3rd party vendor reviews and IAM support. You will use your strong communication and analytical skills to quickly identify and report on security controls or process gaps. We are looking for smart, self-driven candidates who want to be part of an innovative FinTech company with a mission to improve the financial well-being of its customer.
About Our Technology TeamWe are growing our Technology team to support our various financial products. The ideal candidate is passionate about learning the Fintech domain and delivering cutting-edge, high-quality solutions to solve business problems. We utilize a progressive, test-driven, Agile development methodology that places a high premium on communication, teamwork, sound design and clean implementation.
About UsFounded in 2005 as the first peer-to-peer marketplace lending platform in the U.S., Prosper was built on a simple idea: connect people who want to borrow money with those who want to invest. Since inception, Prosper has helped more than 2 million people gain access to affordable credit with over $28 billion in loans originated through its platform. Our mission is to help our customers advance their financial well-being through a variety of products including personal loans, credit, home equity lines of credit (HELOC), and our newest product, HELoan. Our diverse culture rewards accountability and cross functional teamwork because we believe this encourages innovative thinking and helps us deliver on our mission. We’re on a mission to hire the very best, and we are committed to creating exceptional employee experiences where everyone is respected and has access to equal opportunity. We realize that new ideas can come from everywhere. It is important to us that every hire connects with our vision, mission, and core values. Join a leading fintech company that’s democratizing finance for all!
Our ValuesDiversity expands opportunitiesCollaboration creates better solutions Curiosity fuels our innovationIntegrity defines all our relationshipsExcellence leads to longevity Simplicity guides our user experience Accountability at all levels drives results
www.prosper.comOur Story & Team // Our Blog
Applicants have rights under Federal Employment Laws.Family & Medical Leave Act (FMLA)Equal Employment Opportunity (EEO)Employee Polygraph Protection Act (EPPA)
California applicants: please click here to view our California Consumer Privacy Act (“CCPA”) Notice for Applicants, which describes your rights under the CCPA: https://www.prosper.com/plp/legal/privacy-notice-for-applicants/
At Prosper, we're looking for people with passion, integrity, and a hunger to learn. We encourage you to apply even if your experience doesn't precisely match the job description. Your unique skill set and diverse perspective will stand out and set you apart from other candidates. Prosper thrives with people who think outside of the box and aren't afraid to challenge the status quo. We invite you to join us on our mission to advance financial well-being.
Prosper is committed to an inclusive and diverse workplace. All aspects of employment including the decision to hire, promote, discipline, or discharge, will be based on merit, competence, performance, and business needs. We do not discriminate on the basis of race, color, religion, marital status, age, national origin, ancestry, physical or mental disability, medical condition, pregnancy, genetic information, gender, sexual orientation, gender identity or expression, veteran status, or any other status protected under federal, state, or local law, including the San Francisco Fair Chance Ordinance. Prosper will consider for employment qualified applicants who are non-US citizens and will provide green card sponsorship.
Problems You Will Solve
- Review, audit, and monitor security compliance programs against security policies, standards, and frameworks such as PCI-DSS, NIST CSF-171, SOC1 II, etc.
- Perform annual risk assessment and monitor the progress of remediation efforts
- Perform security and privacy assessments of Prosper’s vendors and partners
- Assist in documenting and maintaining the security control matrix, and the risk register
- Support the management of security documentation such as policies, standards, processes, procedures, and data flows
- Oversee quarterly user access reviews
- Oversee users access to systems and applications
- Lead evidence collection for external audits related to SOC1, PCI-DSS, etc.
- Perform PCI readiness assessments and support external PCI Level 1 assessment
- Build and cultivate positive working relationships with stakeholders across various teams
- Conduct security awareness training and phishing campaigns
All About You
- B.S. degree in Information Systems, Computer Science, or any technology-related field
- 5-7 years of GRC experience auditing internal controls and recommending process improvements
- Prior experience working at SaaS, Fintech or Cloud company is a plus
- Very high attention to detail, high integrity, and a good understanding of business risk
- Basic knowledge in auditing security technologies such as firewalls, IDS, DLP, Vulnerability Scans, Windows Servers, Applications, etc.
- Ability to work independently to achieve objectives and deliver results
- Experience in security standards/frameworks such as PCI-DSS, NIST, SOC 2 II, etc.
- CISSP, CISA, CISM, or similar security certification is ideal
- Cloud security compliance experience preferred
- Ability to clearly articulate ideas, work effectively and strategically collaborate cross functionally with internal stakeholders
What We Offer
- The opportunity to collaborate with a team of creative, fun, and driven colleagues on products that have an immediate and significant impact on people's lives
- The opportunity to work in a fast-paced environment with experienced industry leaders
- Flexible time off, comprehensive health coverage, competitive salary, paid parental leave
- Wellness benefits including access to mental health resources, virtual HIIT and yoga workouts
- A bevy of other perks including Udemy access, childcare assistance, pet insurance discounts, legal assistance, and additional discounts
About Our Technology TeamWe are growing our Technology team to support our various financial products. The ideal candidate is passionate about learning the Fintech domain and delivering cutting-edge, high-quality solutions to solve business problems. We utilize a progressive, test-driven, Agile development methodology that places a high premium on communication, teamwork, sound design and clean implementation.
About UsFounded in 2005 as the first peer-to-peer marketplace lending platform in the U.S., Prosper was built on a simple idea: connect people who want to borrow money with those who want to invest. Since inception, Prosper has helped more than 2 million people gain access to affordable credit with over $28 billion in loans originated through its platform. Our mission is to help our customers advance their financial well-being through a variety of products including personal loans, credit, home equity lines of credit (HELOC), and our newest product, HELoan. Our diverse culture rewards accountability and cross functional teamwork because we believe this encourages innovative thinking and helps us deliver on our mission. We’re on a mission to hire the very best, and we are committed to creating exceptional employee experiences where everyone is respected and has access to equal opportunity. We realize that new ideas can come from everywhere. It is important to us that every hire connects with our vision, mission, and core values. Join a leading fintech company that’s democratizing finance for all!
Our ValuesDiversity expands opportunitiesCollaboration creates better solutions Curiosity fuels our innovationIntegrity defines all our relationshipsExcellence leads to longevity Simplicity guides our user experience Accountability at all levels drives results
www.prosper.comOur Story & Team // Our Blog
Applicants have rights under Federal Employment Laws.Family & Medical Leave Act (FMLA)Equal Employment Opportunity (EEO)Employee Polygraph Protection Act (EPPA)
California applicants: please click here to view our California Consumer Privacy Act (“CCPA”) Notice for Applicants, which describes your rights under the CCPA: https://www.prosper.com/plp/legal/privacy-notice-for-applicants/
At Prosper, we're looking for people with passion, integrity, and a hunger to learn. We encourage you to apply even if your experience doesn't precisely match the job description. Your unique skill set and diverse perspective will stand out and set you apart from other candidates. Prosper thrives with people who think outside of the box and aren't afraid to challenge the status quo. We invite you to join us on our mission to advance financial well-being.
Prosper is committed to an inclusive and diverse workplace. All aspects of employment including the decision to hire, promote, discipline, or discharge, will be based on merit, competence, performance, and business needs. We do not discriminate on the basis of race, color, religion, marital status, age, national origin, ancestry, physical or mental disability, medical condition, pregnancy, genetic information, gender, sexual orientation, gender identity or expression, veteran status, or any other status protected under federal, state, or local law, including the San Francisco Fair Chance Ordinance. Prosper will consider for employment qualified applicants who are non-US citizens and will provide green card sponsorship.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Job stats:
2
0
0
Categories:
Analyst Jobs
Compliance Jobs
Tags: Agile Audits CCPA CISA CISM CISSP Cloud Compliance Computer Science Finance FinTech Firewalls Governance IAM IDS NIST PCI DSS Polygraph Privacy Risk assessment SaaS SOC SOC 1 SOC 2 Vulnerability scans Windows
Perks/benefits: Career development Competitive pay Equity / stock options Flex hours Flex vacation Health care Insurance Medical leave Parental leave Startup environment Wellness Yoga
Region:
North America
Country:
United States
More jobs like this
Explore more career opportunities
Find even more open roles below ordered by popularity of job title or skills/products/technologies used.
Security Operations Engineer jobsPenetration Tester jobsSenior Cybersecurity Engineer jobsSenior Cyber Security Engineer jobsInformation Security Officer jobsInformation Systems Security Officer jobsPrincipal Security Engineer jobsCloud Security Architect jobsSenior Network Security Engineer jobsInformation System Security Officer jobsChief Information Security Officer jobsSenior Penetration Tester jobsStaff Security Engineer jobsSecurity Specialist jobsSecurity Consultant jobsCyber Security Specialist jobsIT Security Engineer jobsSenior Information Security Analyst jobsCyber Security Architect jobsSecurity Operations Analyst jobsSenior Product Security Engineer jobsCybersecurity Consultant jobsSenior Information Security Engineer jobsInformation System Security Officer (ISSO) jobsThreat Intelligence Analyst jobs
SaaS jobsSDLC jobsMalware jobsEncryption jobsRMF jobsForensics jobsSQL jobsGDPR jobsIPS jobsSplunk jobsIDS jobsTop Secret jobsEDR jobsFinance jobsDoDD 8570 jobsTerraform jobsBash jobsITIL jobsOWASP jobsCRISC jobsUNIX jobsGIAC jobsCompTIA jobsDocker jobsIntrusion detection jobs
TCP/IP jobsBanking jobsSANS jobsThreat detection jobsData Analytics jobsActive Directory jobsPolygraph jobsCCSP jobsOSCP jobsClearance Required jobsVPN jobsCyber defense jobsIT infrastructure jobsSOC 2 jobsAnsible jobsJavaScript jobsSOX jobsDNS jobsSOAR jobsJira jobsGCIH jobsSecurity strategy jobsOracle jobsNIST 800-53 jobsCryptography jobs