WHO WE ARE
Apex Fintech Solutions (AFS) powers innovation and the future of digital wealth management by processing millions of transactions daily, to simplify, automate, and facilitate access to financial markets for all. Our robust suite of fintech solutions enables us to support clients such as Stash, Betterment, SoFi, and Webull, and more than 20 million of our clients' customers.
Collectively, AFS creates an environment in which companies with the biggest ideas in fintech are empowered to change the world. We are based in Dallas, TX and also have offices in Austin, New York, Chicago, Portland, Belfast, and Manila.
If you are seeking a fast-paced and entrepreneurial environment where you'll have the opportunity to make an immediate impact, and you have the guts to change everything, this is the place for you.
AFS has received a number of prestigious industry awards, including:
1. 2021, 2020, 2019, and 2018 Best Wealth Management Company - presented by Fintech Breakthrough Awards
2. 2021 Most Innovative Companies - presented by Fast Company
3. 2021 Best API & Best Trading Technology - presented by Global Fintech Awards
ABOUT THIS ROLE
Apex Fintech Solutions (AFS) is seeking an InfoSec GRC Analyst who will serve as a member of our InfoSec Governance, Risk & Compliance (GRC) team responsible for implementing and maintaining the risk and control self-assessment capability for all current and future Information Technology and Cybersecurity related audit readiness requirements. This is a fantastic opportunity to join the front lines of our cybersecurity defense working in the Financial Technology (FinTech) industry, learning leading practice techniques to secure our systems and data.
Duties/Responsibilities
1. Assist in the development, implementation, and maintenance of a governance, risk, and compliance framework.
2. Collaborate with internal stakeholders to identify compliance requirements and develop processes to ensure adherence.
3. Prepare reports and present findings to management, highlighting areas of non-compliance and recommending corrective actions.
4. Coordinate and facilitate the IT & Cybersecurity portion of all risk and compliance audits with the business units annually, and work with external audits performing the independent audits.
5. Monitor changes in regulatory requirements and industry best practices and make recommendations for adjustments to policies and procedures.
6. Provide support to internal and external auditors and execute remediation plans when audit issues and concerns are raised.
7. Support vendor due-diligence process, respond adeptly to client questionnaires and help to lead and define overall third-party risk management efforts.
8. Support the InfoSec GRC team in implementing and maintaining the necessary control frameworks to support IT Control self-assessments across the organization.
9. Support various Apex departments in their annual IT Control self-assessment in the role of an IT risk and control SME.
10. Communicate and report to the InfoSec leadership team regarding control testing status, audit issues and deadlines.
11. Champion transparency through the deployment of insightful operational metrics and KPIs.
12. Execute User Access Reviews (UARs) to evaluate and correct user access, ensuring it aligns with job roles and the principle of least privilege.
13. Leverage learning management system(s) (e.g. LinkedIn Learning) to stay current with IT and security technologies, trends, vulnerabilities, and threats to be a value-added member of the team.
14. Provide a timely response to third-party and client's security due diligence questionnaires. Ensure that security requirements are met and documented.
Education and/or Experience
1. Bachelor's degree in computer science, Information Technology, Cybersecurity or equivalent combination of education and experience.
2. 2+ years of professional experience in the information security or information risk management field.
3. Experience in collaborating with engineering teams and external agencies, serving as a critical liaison or auditor.
Required Skills/Abilities
1. Demonstrated ability to think critically, proactively manage assigned tasks, handle multiple tasks concurrently and adhere to tight deadlines.
2. Intermediate knowledge of the IT risk and control assessment or the IT audit process of relevant systems.
3. Intermediate knowledge of IT control requirements for regulations such as Financial Statement, Sarbanes-Oxley (SOX) and Service & Organizational Controls (SOC).
4. Intermediate knowledge of IT risk and control frameworks such as NIST CSF.
5. Strong presentation, communication, and writing skills with a demonstrated ability to present analysis and findings in a cohesive, understandable, and actionable format.
6. Self-motivated with a strong desire to learn new skills.
Work Environment
1. This job operates in a Hybrid office environment.
2. Our flexible work arrangements support a healthy work-life balance.
3. We provide opportunities for growth through training and a dynamic professional development program.
Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties, or responsibilities required of the employee for this job. Duties, responsibilities, and activities may change at any time with or without notice.
Our Rewards
We offer a robust package of employee perks and benefits, including a market-leading salary with an annual bonus, 28 days of annual leave plus 10 Northern Ireland national holidays, a training and development budget, and a pension matched up to 7%. Our benefits also cover private health insurance for medical, dental, and optical care, and life insurance. We emphasize work-life balance with flexible working hours, parental leave, a modern city center office, and a hybrid work schedule that allows for greater flexibility by partially working from home. Additional perks include monthly catered lunches, unlimited drinks and snacks, hackathon events, poker tournaments, and a charitable matching gift program.
EEO Statement
Apex Fintech Solutions is an equal opportunity employer that does not discriminate on the basis of race, color, religion, sex (including pregnancy, sexual orientation, and gender identity), national origin, age, disability, veteran status, marital status, or any other protected characteristic. Our hiring practices ensure that all qualified applicants receive fair consideration without regard to these characteristics.
Disability Statement
Apex Fintech Solutions is committed to creating an inclusive and accessible workplace for all candidates, including those with disabilities. We are dedicated to ensuring equal employment opportunities and providing reasonable accommodations to qualified individuals with disabilities. If you require reasonable accommodations to participate in the application or interview process, please submit your request via the Candidate Accommodation Requests Form. We will work with you to provide the necessary accommodations to ensure your full participation in our hiring process. #J-18808-Ljbffr