GRC Engineer - Cloud & Application Security
August 31
🏡 Remote – New York
Description
• As a GRC Security Analyst, you will be instrumental in defining and implementing the overall strategy for One’s Information Security program, and will have opportunities to identify control gaps and lead initiatives to remediate such gaps. • You will be designing, overseeing and executing One’s information security risk management processes, including defining security standards and policies, performing internal and external security assessments, identifying and managing security risks, and supporting audits conducted by independent parties. • You will be focusing on evaluating the security posture of our cloud infrastructure and application security designs, ensuring they comply with compliance frameworks such as SOC 2 and PCI DSS controls.
Requirements
• 5+ years of experience in security governance, cloud and application security assessments, risk management, and/or third party risk • Strong knowledge of various industry standard frameworks such as NIST, FFIEC, SOC 2, PCI DSS, HiTrust, etc • Thorough knowledge of enterprise-scale security architecture, cloud security, and application security best practices • Domain knowledge of multiple disciplines including IT systems, networking, security, and compliance • Familiarity with containerization technologies (e.g., Docker, Kubernetes) and CI/CD pipelines. • Excellent written and verbal communication skills, with the ability to convey technical concepts to both technical and non-technical audiences • Strong analytical and problem-solving skills with the ability to work independently and as part of a team. • Relevant certifications such as AWS Certified Security Specialty, Certified Information Systems Security Professional (CISSP), or Certified Cloud Security Professional (CCSP) are a plus
Benefits
• Competitive cash • Benefits effective on day one • Early access to a high potential, high growth fintech • Generous stock option packages in an early-stage startup • Remote friendly (anywhere in the US) and office friendly - you pick the schedule • Flexible time off programs - vacation, sick, paid parental leave, and paid caregiver leave • 401(k) plan with match
Apply Now
