SoFi
Financial Services
StaffCybersecurityControlsSpecialist
Neural analysis suggests this role is
optimal for Senior candidates.
“Staff Cybersecurity Controls Specialist at SoFi. Document risks and controls. Manage risk mitigation progress”
What You'll Achieve.
Achieve risk mitigation; Meet deadlines for mitigating issues; Exceed timeliness goals
Industry & Context.
Analytical skills; Problem-solving skills
What They're Looking For.
Must Have
Experience with interacting with information security teams, Experience solutioning with information security teams, Experience documenting control effectiveness, Experience measuring control effectiveness, External audit experience, Internal audit experience, 2LOD information security risk experience, Experience collaborating across multiple teams, Enterprise-wide collaboration ability, Ability to promote ownership culture, Ability to promote accountability culture, Ability to promote collaboration culture, Verbal communication skills, Written communication skills, Understanding of risk management frameworks, Understanding of risk management best practices, Analytical skills, Problem-solving skills, Excellent communication skills, Excellent presentation skills, Ability to balance multiple priorities, Ability to build process from ground up, Ability to drive engagement, Experience in fast paced environments, Experience in highly-matrixed environments
What You'll Do.
Document risks and controls
Manage risk mitigation progress
Evaluate risks and control posture
Identify emerging risks
Facilitate control identification
Monitor information security issues
Manage issue lifecycle
Coordinate with 2LOD partners
Coordinate with auditors
Promote security risk awareness
Oversee information security risks
Oversee information security controls
Partner with security leaders
Partner with security staff
Identify information security risks
Document information security risks
Execute Risk and Control Self-Assessments
Coordinate monitoring activities
Coordinate monitoring objectives
Prepare committee materials
Prepare summary reports
Prepare executive documentation
Assist with training materials
Drive accountability with process owners
Ensure timely identification of issues
Ensure timely remediation of issues
Meet issue mitigation deadlines
Provide subject matter guidance
Adhere to risk policies
Adhere to compliance policies
Maintain understanding of regulatory requirements
Maintain understanding of operational processes
Maintain understanding of inherent risks
Maintain understanding of internal policies
Manage first line of defense activity
Manage second line of defense activity
Interact with information security teams
Solution with information security teams
Measure control effectiveness
Coordinate monitoring activities
Coordinate monitoring objectives
How You'll Work.
Team & Collaboration
Work with 2LOD partners; Collaborate across teams; Promote ownership culture; Promote accountability culture; Promote collaboration culture
Communication Scope
Executive presentations; Verbal communication; Written communication
Full Job Description
Employee Applicant Privacy Notice Who we are: Shape a brighter financial future with us. Together with our members, we’re changing the way people think about and interact with personal finance. We’re a next-generation financial services company and national bank using innovative, mobile-first technology to help our millions of members reach their goals. The industry is going through an unprecedented transformation, and we’re at the forefront. We’re proud to come to work every day knowing that what we do has a direct impact on people’s lives, with our core values guiding us every step of the way. Join us to invest in yourself, your career, and the financial world. The role: The Staff Cybersecurity Controls Specialist is responsible for working with information security partners to document, manage, and monitor progress toward achieving risk mitigation. This person will work very closely with process owners to evaluate risks and control posture related to information security objectives; identify emerging risks; facilitate identification of control weaknesses; and monitor and manage the lifecycle of information security-related issues. This position is within the first line-of-defense (1LOD) and requires coordination with second line-of-defense (2LOD) partners and auditors in support of their activities. Additionally, this role will promote and support security risk awareness activities. What you’ll do: Management and oversight of risks and controls for information security objectives across the enterprise Partner with security leaders and staff to identify and document risks related to information security objectives Execute formal Risk and Control Self-Assessment (RCSA) activities in coordination with security risk owners Work with 2LOD and audit teams to coordinate monitoring activities and objectives Prepare committee materials, briefings, summary reports, and other documentation for executive-level audiences Assist with preparation of training materials related t
Applying for this Staff Cybersecurity Controls Specialist role?
Most applicants get filtered before a human reads their resume. See if yours makes the cut.
ANONYMOUS · UNFILTERED
What do employees actually say about SoFi?
Real rants from real employees. Read before you apply.