GRC Engineer
Description For GRC Engineer
One is revolutionizing financial services with a mission to help customers achieve financial progress. Backed by prominent fintech investor Ribbit and retail giant Walmart, One offers an integrated platform for saving, spending, borrowing, and growing money. As a GRC Engineer, you'll play a crucial role in managing One's Information Security program, including third-party risk management. You'll oversee security risk management processes, conduct vendor due diligence, and ensure compliance with privacy regulations.
The role combines technical expertise with strategic oversight, requiring deep knowledge of security frameworks and the ability to communicate effectively with various stakeholders. You'll work in a hybrid environment from Bangalore, contributing to a mission-driven company that's addressing critical financial inclusion challenges in the U.S. market, where nearly a quarter of adults are unbanked or underbanked.
One offers an attractive compensation package, including competitive salary, day-one benefits, and generous stock options. The company maintains a startup's agility while backed by industry giants, providing unique opportunities for professional growth. You'll join a diverse, inclusive team that values different perspectives and experiences, working in a flexible environment with comprehensive benefits including health insurance, mental health support, and work-from-home provisions.
This role is perfect for an experienced security professional who wants to make a meaningful impact in fintech while working with cutting-edge technology and contributing to financial inclusion. The position offers the excitement of a startup with the stability of established backing, all while helping build solutions that make a real difference in people's financial lives.
Responsibilities For GRC Engineer
- Performing due diligence on third-party vendors and partners regarding data protection, business continuity, and platform security
- Reviewing contractual agreements for information security and privacy standards
- Consulting with technology and business teams on security-related issues
- Identifying and tracking security risks and driving remediation
- Assisting in external audits and internal readiness assessments
- Reviewing compliance with privacy requirements and regulations
Requirements For GRC Engineer
- 10+ years of experience in information security, internal and third party risk management, and/or audit management
- Strong knowledge of industry standard frameworks (NIST, SOC 2, PCI DSS, HiTrust)
- Thorough knowledge of enterprise-scale security architecture, cloud security, and business continuity
- Ability to explain security concepts to technical and non-technical stakeholders
- Domain knowledge of IT systems, networking, security, and compliance
- Relevant certifications (AWS Certified Solutions Architect, CISSP) are a plus
Benefits For GRC Engineer
- Competitive cash compensation
- Benefits effective day one
- Generous stock option packages
- Employer Provident Fund contributions
- Comprehensive health insurance for employee and family
- Mental health support and wellness programs
- Flexible time off programs
- Monthly transport allowance
- Monthly work-from-home stipend
- Hybrid working model
Jobs Related To One GRC Engineer
