Senior Security GRC Analyst Bengaluru, Karnataka

Greenlight is the leading family fintech company on a mission to help parents raise financially smart kids. We proudly serve more than 6 million parents and kids with our award-winning banking app for families. With Greenlight, parents can automate allowance, manage chores, set flexible spend controls, and invest for their family's future. Kids and teens learn to earn, save, spend wisely, and invest.

At Greenlight, we believe every child should have the opportunity to become financially healthy and happy. It's no small task, and that's why we leap out of bed every morning to come to work. Because creating a better, brighter future for the next generation depends on it.

We are looking for a Senior Security GRC Analyst that will have a huge impact on the Security Governance, Risk, Compliance & Trust program of Greenlight. This critical position offers the opportunity to make a significant and lasting impact on Greenlight's cybersecurity program.

This role will report to the Senior Manager, Security GRC & Trust.

• Coordinate and manage IT SOX compliance program to perform testing, remediation, and reporting on control design and control effectiveness for ITGC, ITAC, and key reports
• Oversee and execute recurring compliance activities (e.g. user access reviews, change management reviews) to maintain compliance with relevant obligations
• Conduct security risk assessments and maintain security risk register, tracking mitigation plans and residual risks
• Drive the Business Continuity and Disaster Recovery (BC/DR) activities by partnering with business units to perform BIA, facilitate recurring exercises, etc.
• Coordinate and support internal and external audits, including evidence gathering, reviewing and managing audit findings
• Provide support on other Security GRC & Trust projects (i.e. Infosec Policies, Security Awareness, security risk management, third-party risk management, data and privacy security, etc)
• Implement and configure toolings for Security GRC and Trust
• Foster a culture of trust and accountability by collaborating with internal stakeholders (Engineering, Security Operations, IT, Legal, etc) to ensure alignment and effectiveness of the Security GRC & Trust program
• Develop, implement, and oversee a comprehensive Security GRC & Trust program aligned with industry best practices and regulatory requirements (e.g., SOC 1, SOC 2, ISO, PCI, NIST CSF, IT SOX)

• Must be a team player
• 5+ years of information security, security governance, risk management, and compliance.
• In-depth knowledge of industry best practices and security frameworks (e.g., NIST CSF, ISO 27001, SOC 2, SOC 1, PCI DSS, IT SOX).
• Strong understanding of relevant privacy security regulations (e.g., GDPR, CCPA, etc.)
• IT Internal Audit & external audit experience
• Knowledge of AWS, CI/CD process, and common Security tooling stack for enterprise technology companies
• Experience with development and operation of Security Trust program
• Experience with implement and configure Security GRC relevant tools
• Excellent communication, collaboration, and influencing skills.
• Ability to manage multiple priorities and deadlines in a fast-paced environment.
• Strong analytical and problem-solving skills.

Who we are:

It takes a special team to aim for a never-been-done-before mission like ours. We're looking for people who love working together because they know it makes us stronger, people who look to others and ask, "How can I help?" and then "How can we make this even better?" If you're ready to roll up your sleeves and help parents raise a financially smart generation, apply to join our team.

Greenlight is an equal opportunity employer and will not discriminate against any employee or applicant based on age, race, color, national origin, gender, gender identity or expression, sexual orientation, religion, physical or mental disability, medical condition (including pregnancy, childbirth, or a medical condition related to pregnancy or childbirth), genetic information, marital status, veteran status, or any other characteristic protected by federal, state or local law.

Greenlight is committed to an inclusive work environment and interview experience. If you require reasonable accommodations to participate in our hiring process, please reach out to your recruiter directly or email