Facebook pixel

Senior Analyst II
Information Security
Confirmed live in the last 24 hours
Experience Level
Desired Skills
  • Experience with security and control frameworks, such as FFIEC, NIST, COBIT, ITIL, and ISO control framework
  • Background in Information Security, IT Risk Management, or third party risk management
  • 8+ years of experience supporting Information Technology compliance programs to meet regulatory or compliance requirements
  • Experience identifying potential IT controls risks and opportunities through and offering sustainable recommendations that address cause rather than symptoms
  • Experience with information security standards, best practices for securing computer systems within applicable laws and regulations
  • Experience with Governance Risk & Compliance (GRC) tools and procedure development
  • Experience working in a regulated industry (financial services or health care)
  • Day 1 - Month 3: Define Your Mission You'll understand our company mission, values, and vision, and how your position at OppFi plays a part in that. With the help of your manager, you'll set mission-aligned goals to make an impact in your role
  • Manage the process and tools for Information Security & Risk Management, and process IT due-diligence requests and ensure compliance to policies, procedures and regulations
  • Function as a central third-party risk management subject matter expert looking to involve third parties in processes that interact with data. Support completion of information security review process for all new third parties, and annual reviews for all other relationships, that receive and/or interact with data
  • Maintain inventory of third parties who possess and/or interact with data, including key risk information about the relationship, data attributes involved, and regulatory compliance. Monitor open third party security issues and remediation actions associated with security control gaps to ensure timely closure
  • Educate and build cybersecurity awareness across the enterprise
  • Identify and analyze new requirements for policy impacts; develop and update policies, procedures and guidelines
  • Improve compliance with security standards and policies across the enterprise
  • Be the primary point of security risk management activities, including analyzing, quantifying, and tracking identified information security risks and reviewing and documenting risk exception requests
  • Work with the Technology Process Owners to create, modify, validate, and decommission policies/procedures
  • Create dynamic dashboards and scorecards for visibility of Information Security Governance activities

501-1,000 employees

Financial technology platform
Company Overview
OppFi's mission is to empower everyday consumers to rebuild financial health through facilitating credit access, enabling savings, and building wealth. The company build financial literacy products for all.
  • Generous vacation
  • Insurance benefits
  • 401(k) matching
  • Employee Assistance Program
  • Tuition reimbursement
  • Subsidies for childcare costs, free financial literacy tools, 6 paid weeks of parental leave
  • Collaborative and supportive company culture