About SoFi
Your all-in-one personal finance platform
Key Highlights
- Raised $2.7 billion in funding to date
- Headquartered in The East Cut, San Francisco, CA
- Offers a wide range of products including loans, mortgages, and investments
- Over 1,000 employees with a focus on global expansion
SoFi, headquartered in The East Cut, San Francisco, CA, is a leading provider of mobile and online personal finance services. With over 1,000 employees, SoFi offers a comprehensive suite of products including bank accounts, loans, mortgages, and investment opportunities. The company has raised $2.7 ...
🎁 Benefits
SoFi provides a range of benefits including flexible time off, paid parental leave, and a monthly contribution of up to $200 towards student loan repa...
🌟 Culture
SoFi's culture is centered around financial empowerment, aiming to provide a one-stop solution for all personal finance needs. The company's focus on ...
Overview
SoFi is seeking a Third Party Information Security Assessment Lead Assessor to conduct ongoing assessments of third-party information security. This role requires expertise in information security key controls and a strong understanding of data risk management.
Job Description
Who you are
You have extensive experience in information security, particularly in assessing third-party service providers. Your expertise in information security key controls allows you to evaluate and ensure compliance with various legal and operational standards. You understand the importance of data risk management and can navigate complex scenarios involving data ownership and usage. Your attention to detail ensures that all critical process steps are adhered to, and you are skilled in collaborating with various business units to resolve issues effectively.
Desirable
Experience in financial services or a related industry is a plus, as is familiarity with regulatory requirements surrounding data security. You are comfortable working with cross-functional teams and have a proven track record of driving security initiatives to successful completion. Your ability to communicate complex security concepts to non-technical stakeholders is essential for this role.
What you'll do
In this role, you will be responsible for conducting thorough assessments of third-party information security practices. You will work closely with Third Party Relationship Managers to identify and resolve any security issues that arise during the assessment process. Your role will involve reviewing documentation and evidence provided by third parties to ensure that their control designs and operational effectiveness meet SoFi's standards. You will also be tasked with maintaining an ongoing book of assessments, ensuring that all evaluations are completed in a timely manner and in accordance with predefined service level agreements.
You will collaborate with various teams within the organization to ensure that security assessments align with business objectives and regulatory requirements. Your insights will help shape SoFi's approach to third-party risk management, contributing to the overall security posture of the organization. You will also participate in the development of security policies and procedures related to third-party engagements, ensuring that they are comprehensive and effective.
What we offer
At SoFi, we are committed to fostering a culture of innovation and collaboration. You will have the opportunity to work with a talented team dedicated to transforming the financial services industry. We offer competitive compensation and benefits, along with opportunities for professional growth and development. Join us in shaping a brighter financial future for our members and making a meaningful impact in the world of personal finance.
Interested in this role?
Apply now or save it for later. Get alerts for similar jobs at SoFi.
Similar Jobs You Might Like
Based on your interests and this role
Risk Manager
SoFi is hiring a Third Party Information Security Assessment Lead Assessor to conduct ongoing third party information security assessments. This role requires expertise in information security key controls and data risk management.
Application Security Lead
Wayve is hiring an Application Security Lead to define and lead their application security program. You'll be responsible for building security measures to protect their advanced AI technology. This role requires strong leadership and expertise in application security.
Security Engineer
Flo Health is seeking a Lead Security Specialist to oversee HIPAA compliance and SOC 2 certification. You'll collaborate with Engineering and Legal to ensure a secure platform for millions of users. This role requires expertise in security policies and risk management.
Security Engineer
HubSpot is hiring a Lead Security Analyst to oversee and enhance their global physical security program. You'll manage physical security systems and coordinate with various teams to ensure safety and efficiency. This role requires strong technical skills in security systems administration.
Information Security Auditor
Nextiva is hiring an Information Security Auditor to ensure compliance with global security and privacy regulations. You'll work closely with system and control owners to develop security policies and conduct audits. This role requires knowledge of IT infrastructure and compliance standards.