Information Security Compliance - Lead

Array

Array

IT, Legal
Remote
Posted 6+ months ago

Array is a financial innovation platform that helps digital brands, financial institutions, and fintechs get compelling consumer products to market faster. We deliver a suite of credit and identity monitoring tools, privacy protection, and a financial ads marketplace via embeddable widgets or a clean, modern API. Our private label offerings help drive revenue and increase engagement for our customers while empowering millions of consumers to achieve their financial goals.

As a remote-first company, we’re focused on providing opportunities for high performing individuals to have deep impact in the fast growing fintech space. A clear mission, a commitment to continuous improvement and a willingness to experiment empower us individually and together deliver the best products for our clients and users.

The Information Security Compliance Lead will proactively manage Array's information security risk profile. This is an individual contributor position. You will report to the Vice President of Information Security.

You Have:

  • Degree in business IT, systems engineering, information systems, computer science, or other degree.
  • 6+ years of work experience in IT Compliance, PCI/SOC Auditing, incident response, NIST & ISO 27001 standards.
  • Familiarity with DevSecOps concepts and best practices.
  • Awareness of cybersecurity trends and hacking/exploitation techniques.
  • Interest in securing cloud environments.

You Will:

  • Implement and maintain information security policies, procedures, and protocols, including but not limited to leading our efforts to maintain PCI and SOC 2 compliance.
  • Prepare responses for client, vendor, and partner information security audits, requests, and questionnaires.
  • Conduct information security awareness training for all employees in addition to tabletop exercises with infrastructure, security, and engineering teams.
  • Manage relationships with third-party information security vendors and service firms.
  • Participate in deployment of security technologies and program enhancements.
  • Prepare technical reports for executive management.
  • Oversee the development & implementation of security compliance policies that govern Array's business operations, third-party relationships, privacy, business continuity, and other business activities.
  • Maintain and enhance our security training program.
  • Work with the engineering & IT teams to reduce compliance risks and harden our overall risk posture.
  • Collaborate with the legal & compliance team to integrate information security compliance policies into the broader set of compliance standards.
  • Produce and maintain compliance metrics and prioritize activities.

Pay Transparency:

$170,000 - 200,000

The pay range above represents the current low and high end of the compensation band for this position and may change in the future. Actual compensation may vary depending on factors such as candidate skills, qualifications and experience. Other compensation may include equity options and incentives.

Array Offers All Full Time Employees the following Benefits and Perks:

  • Full medical, dental, and vision, premiums covered at 100% for full-time employees and 70% for dependents
  • Unlimited PTO and sick leave + 14 company holidays to encourage a healthy work-life blend
  • 100% 401k match up to 4% with immediate vesting
  • Generous and competitive parental leave for all parents
  • $1,000 desk setup subsidy to set-up your unique remote office
  • $100/month to subsidize wifi/cell phone expenses
  • Summer Fridays (half-day Fridays) from May to September
  • Arrayaversary Kits for work anniversaries

Not sure if you meet the Qualifications? We know that folks tend to only apply if they check every box. If you think you have the appropriate qualifications, but don’t meet every single one, we encourage you to still apply. We’d love to hear from you.

One of our core values at Array is to care and support one another, and that’s why we strive to create an environment where everyone feels empowered to bring their best selves to work. Diversity, equity, and inclusion foster collaboration, comfort, and confidence. We’re at our collective best when we each feel our best.

We are proud to be an equal opportunity workplace; we are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity or Veteran status.