Risk Analyst - Security GRC
August 22
🏡 Remote – New York
Description
• Engage with customers to gather necessary information to perform security reviews. • Conduct high quality security and privacy risk assessments of customers within the ecosystem. • Perform security and privacy assessments of Plaid’s vendors and partners. • Develop and maintain internal frameworks, policies, and procedures to support a rapidly evolving customer oversight risk management function. • Influence effective risk management strategies and monitor the progress of remediation efforts. • Confidently represent Plaid’s security and privacy risk management practices to external stakeholders. • Prepare and present reports on the security posture of onboarded customers to senior management and stakeholders.
Requirements
• Working knowledge of common security assurance and trust frameworks such as SOC 2, NIST CSF, ISO 27001, GLBA Safeguards, ISO 27701, and others. • Prior experience working in GRC roles at an engineering-led SaaS, FinTech, or Cloud company. • Experience performing security audits or gap assessments. • Good understanding of common security risks and control domains that make up information security programs. • Exceptional attention to detail, an eye for operational excellence, and the capacity to execute and iteratively improve operational processes. • The ability to clearly articulate ideas, work effectively, and strategically collaborate cross-functionally with internal stakeholders.
Apply Now
