Information Security GRC Specialist

Rapyd Is Building the Future of Fintech!

Rapyd is a financial technology company that allows businesses to accept and make payments anywhere, using any method. By building the largest local payments network, we’re unleashing global opportunities, letting businesses reach new markets faster and giving more consumers access to innovative goods and services.

Built from the ground up as a global organization, diversity is in our DNA. We have offices in London, Tel Aviv, Singapore, California, and Reykjavik, and employees around the world. Our investors include Stripe, General Catalyst, Oak FT, Tiger Global, Durable Capital, Target Global, and TaL Capital.

If you’re looking to be part of a fast-growing company that’s disrupting the payments industry by building transformative technology, then join our team and play a pivotal role in developing the future of fintech.

We are looking for a GRC Specialist, experienced with cyber security regulations, financial institutions and related compliance such as PCI-DSS and SOC2. This is a great opportunity to elevate the cyber security operations to a whole new level, understanding and securing the latest and greatest cloud-based technology, managing risk assessment and remediation plans, promoting cyber security throughout a global and diverse organization and helping keep our customers secure.

Responsibilities:

• Design and maintain processes, policies and related guidelines
• Conduct risk assessment on systems, processes, vendors and maintain a security maturity program
• Ensure remediation plans are implemented and carried out
• Lead our compliance operations, including ISO27001, SOC2 and PCI-DSS
• Develop, deliver and maintain an ongoing Information security & privacy awareness program
• Execute the Information security audit plan
• Operate and utilize GRC tools
• Support sales teams, enabling them to respond to customers and prospect questionnaires

Requirements:

• At least 2 years of information security, risk management, privacy and compliance experience
• Knowledge of Privacy and information regulations and best practices such as: PCI-DSS, SOC2 and privacy laws
• Knowledge of risk assessment methodologies
• Experience in major risk assessment projects and activities
• Hands-on experience in building awareness programs, including evaluating effectiveness.
• Experience on assessment of existing security controls and defining new controls and solutions
• Knowledge of identity management best practices
• Ability to take proactive initiative given general direction
• Strong oral and written communications and presentation skills

Job Candidate Privacy Policy - https://www.rapyd.net/candidate-privacy-policy