Senior IT Security SOC Analyst

Metaprise, one of the most innovative online banking and financial institutions in the US, offers innovative financial solutions to millions of consumers, small businesses, and many of the worlds most prominent corporate, institutional, and government And today we are a leader in consumer and small business banking, commercial banking, and financial transaction We re looking for someone to join our team who can support Metaprise as an SOC

The primary focus of the SOC Analyst role will be in identifying, monitoring, and managing IT risks in support of the team s business strategies and This role will support and lead the companys programs for information security and cybersecurity, business continuity, and vendor risk The SOC Analyst will perform & expedite risk and control self-assessments, act as the IT liaison for regulatory and audit requests, and coordinate across the platform to prepare IT-driven solutions and drive IT compliance initiatives throughout our

Responsibilities:

• Establish and oversee monitoring of applications, systems and networks to ensure compliance with security policies, practices and
  
• Evaluate product, compliance, or operational risks, and develop risk management strategies
  
• Perform quarterly IT risk and control assessments, report testing results, develop and track remediation, and coordinate risk-acceptance if needed
  
• Establish and manage security, privacy, and compliance programs and projects end-to-end, from design phase to project closures including information security, vulnerability management, vendor risk management, incident response, and business
  
• Work cross-functionally with Engineering, Product, and Operations teams on the planning, design, and implementation of changes throughout our cloud-based platform to support risk and ensure compliance-based
  
• Ensure Metaprise maintains an effective risk management and internal control framework
  
• Serve as the subject matter expert for ISO-27001, SOC 1, SOC 2/3, NIST, PCI DSS, GDPR, and other compliance frameworks and programs, and in relation to information security risk and information security risk mitigation techniques
  
• Identify and document IT security, operational and process issues, internal control deficiencies, risks, and opportunities for improvement
  
• Provides support to auditors and compliance with respect to audit information requests
  
• Partner with engineering on our technology security posture and roadmap across application security, cloud and infrastructure security, including our incident management and disaster recovery procedures
  
• Support business development team to answer security questionnaires and contract requirements from prospective and current clients
  
• Manage relevant GRC, IT, and cloud security tooling to support programs
  
• Establish and maintain strong customer relationships with internal and external customers, managers, and employees
  
• Audit policies and controls on an ongoing basis
  
• Other responsibilities and duties as assigned
  

Requirements

• A Bachelor s degree in Computer Science or Risk Management is preferred
  

• 2-3+ years of relevant experience in Risk Management, Technology Risk, IT Audit, or other similar risk consulting or internal control functions ( internal audit, compliance, fraud mitigation, )
  

• Solid understanding of IT risks and controls, regulatory and compliance requirements, and financial/banking industry is required
  

• Experience of familiarity with security related activities such as: penetration testing, vulnerability scans, security boundary reviews, etc
  

• Experience leveraging IT frameworks, such as ISO27001, NIST, SOC1, SOC2, etc
  

• Familiarity with complex third party risk management
  

• Highly organized, superb problem solving & reasoning skills
  

• Experience in AWS
  

• Experience with GRC tools (such as Archer, ServiceNow, etc)
  

• Attention to detail, accurate, analytical and strong written and verbal communication skills; write high-level reports for and communicate with senior management
  

• Proficient in Microsoft Office, Slack, Trello, and GSuite
  

Company Mission:

We recognize that our people are our strength and the diverse talents they bring to our global workforce are directly linked to our We are an equal-opportunity employer and place a high value on diversity and inclusion at our We do not discriminate on the basis of any protected attribute, including race, religion, color, national origin, gender, sexual orientation, gender identity, gender expression, age, marital or veteran status, pregnancy or disability, or any other basis protected under applicable In accordance with applicable law, we make reasonable accommodations for applicants and employees religious practices and beliefs, as well as any mental health or physical disability

The health and safety of our colleagues, candidates, clients and communities has been a top priority in light of the COVID-19 maintenance protocols, stakeholder engagement and emergency plans to address a post-COVID-19

As a part of our commitment to health and safety, we have implemented various COVID-related health and safety requirements for our Employees are expected to follow the Firms current COVID-19 or other infectious disease health and safety requirements, including local Requirements include sharing information including your vaccine card in the firms vaccine record tool, and may include mask Requirements may change in the future with the evolving public health Metaprise will consider accommodation requests as required by applicable

We offer a competitive total rewards package including base salary determined based on the role, experience, skill set, and For those in eligible roles, discretionary incentive compensation which may be awarded in recognition of individual achievements and We also offer a range of benefits and programs to meet employee needs, based on These benefits include comprehensive health care coverage, on-site health and wellness centers, a retirement savings plan, backup childcare, tuition reimbursement, mental health support, financial coaching and Additional details about total compensation and benefits will be provided during the hiring

Company Website