Senior InfoSec GRC Analyst

The Senior InfoSec GRC Analyst is responsible for driving the development, implementation, communication, and maintenance of loanDepot’s technology policies, standards and procedures that are aligned to industry standards and regulatory requirements.

Requirements

• Bachelor’s Degree in Information Security, Computer Science, Information Technology, or a related field preferred.
• Minimum of six (6) + years’ experience working in Cybersecurity GRC, policy development, risk management, or a similar field.
• Experience with GRC tools (e.g., Archer, ServiceNow, OneTrust).
• Proficiency in using data analysis and reporting tools (e.g., Excel, Power BI).
• Relevant certifications such as CISM and/or CISA are highly desirable
• Demonstrates knowledge of, adherence to, monitoring and responsibility for compliance with state and federal regulations and laws as they pertain to this position.
• Knowledge of regulatory frameworks (NIST, FFIEC, GLBA, NYDFS, SOX and PCI-DSS).
• Understanding of risk management concepts, control frameworks, and compliance auditing.
• Ability to provide consultation and recommendations to management.
• Ability to present inside and/or outside the organization; speaking before assigned team or other groups as needed.

Benefits

• Aggressive compensation package based on experience and skill set.
• Inclusive, diverse, and collaborative culture where people from all backgrounds can thrive.
• Work with other passionate, purposeful, and customer-centric people.
• Extensive internal growth and professional development opportunities including tuition reimbursement.
• Comprehensive benefits package including Medical/Dental/Vision.
• Wellness program to support both mental and physical health.
• Generous paid time off for both exempt and non-exempt positions.