Senior Security Risk Governance Analyst

| Chicago, IL, USA | Hybrid
Sorry, this job was removed at 11:14 a.m. (CST) on Tuesday, May 14, 2024
Find out who's hiring in Chicago.
See all Data + Analytics jobs in Chicago
Easy Apply
By clicking Apply Now you agree to share your profile information with the hiring company.

About the Role

You are a fearless, seasoned security professional with an interest in new and emerging technology. You can work on tight deadlines with little guidance and are well-versed in risk, security, and controls. You can get to the root of a problem and you are familiar with frameworks such as SOC2, ISO27001, and PCI-DSS.  You are adept at documenting vendor reviews, procedures, and exceptions in a rapidly changing company environment, and are comfortable leading risk workshops, vendor interviews, and managing reviews and assessments through to completion.

For Colorado based roles:
In accordance with applicable law, this role has an annual starting salary of 119,000.00 - 165,300.00 plus bonus, a competitive equity package, and benefits (see below). The actual pay may be higher depending on your location, skills, qualifications, and experience. 


In this role, you can expect to

  • Deliver high-quality third party security reviews and evidence
  1. Due diligence requests
  2. Ongoing monitoring 
  • Help drive joint Security, Risk, and Compliance initiatives 
    1. PCI-DSS compliance
    2. SOC2 and ISO27001 certifications
  • Conduct risk assessments, gap analyses, and controls testing for critical areas
  • Help define KPIs, KRIs, and dashboards for reporting to management
  • Develop or source training content and ensure training of employees and contractors using a learning management system (LMS)
  • Create operational runbooks and establish security baselines and standards
  • Cross-collaborate to formalize the Security Architecture Review process with Security Engineering, Application, and Infrastructure Security

  • To thrive in this role, you have

    • Experience conducting third party audits, risk assessments, and controls testing
    • Experience using a vulnerability management tool and managing risk exceptions
    • The ability to document procedures and runbooks for the security program
    • Experience in a position focused primarily on information security and/or security program management
    • Familiarity with frameworks like SOC2, NIST 800/NIST CSF, ISO 27001, and PCI-DSS
    • A security certification such as CISSP, CISA, CISM or equivalent


    A little about us

    At Chime, we believe that everyone can achieve financial progress. We’re passionate about developing solutions and services to empower people to succeed. Every day, we start with empathy for our members and stay motivated by our desire to support them in ways that make a meaningful difference. 

    We created Chime—a financial technology company, not a bank*-- founded on the premise that basic banking services should be helpful, transparent, and fair. Chime helps unlock the access and ability our members need to overcome the systemic barriers that block them from moving forward. By providing members with access to liquidity, rewards, and credit building, our easy-to-use tools and intuitive platforms give members the ability to have more control over their money and to take action toward achieving their financial ambitions.

    So far, we’re well-loved by our members and proud to have helped millions of people unlock financial progress, whether they started a savings account, bought their first car or home, opened a business, or went to college. Every day, we’re inspired by our members’ dreams and successes, big and small. 

    We’re uniting everyday people to unlock their financial progress—will you join us? 

    *Chime partners with The Bancorp Bank and Stride Bank, N.A., Members FDIC, that power the bank accounts used by Chime Members.


    What we offer

    • 🏢 A thoughtful hybrid work policy that combines in-office days and trips to team and company-wide events depending on location to ensure you stay connected to your work and teammates, whether you’re local to one of our offices or remote
    • 💻 Hybrid work perks, like UrbanSitter and Kinside for backup child, elder and/or pet care, as well as a subsidized commuter benefit
    • 💰 Competitive salary based on experience
    • ✨ 401k match plus great medical, dental, vision, life, and disability benefits
    • 🏝 Generous vacation policy and company-wide Take Care of Yourself Days 
    • 🫂 1% of your time off to support local community organizations of your choice
    • 🧠 Mental health support with therapy and coaching through Modern Health
    • 👶 16 weeks of paid parental leave for all parents and an additional 6-8 weeks for birthing parents
    • 👪 Access to Maven, a family planning tool, with up to $10k in reimbursement for egg freezing, fertility treatments, adoption, and more.
    • 🎉 In-person and virtual events to connect with your fellow Chimers—think cooking classes, guided meditations, music festivals, mixology classes, paint nights, etc., and delicious snack boxes, too!
    • 💚 A challenging and fulfilling opportunity to join one of the most experienced teams in FinTech and help millions unlock financial progress

    We know that great work can’t be done without a diverse team and inclusive environment. That’s why we specifically look for individuals of varying strengths, skills, backgrounds, and ideas to join our team. We believe this gives us a competitive advantage to better serve our members and helps us all grow as Chimers and individuals.

    We hire candidates of any race, color, ancestry, religion, sex, national origin, sexual orientation, gender identity, age, marital or family status, disability, Veteran status, and any other status. Chime is proud to be an Equal Opportunity Employer and will consider qualified applicants with criminal histories in a manner consistent with the San Francisco Fair Chance Ordinance, Cook County Ordinance, and consistent with Canadian provincial and federal laws. If you have a disability or special need that requires accommodation, please let us know. To learn more about how Chime collects and uses your personal information during the application process, please see the Chime Applicant Privacy Notice.

    Read Full Job Description
    Easy Apply
    By clicking Apply Now you agree to share your profile information with the hiring company.

    Technology we use

    • Engineering
    • Product
    • Sales & Marketing
      • C++Languages
      • JavaLanguages
      • JavascriptLanguages
      • KotlinLanguages
      • PHPLanguages
      • PythonLanguages
      • RLanguages
      • RubyLanguages
      • ScalaLanguages
      • SqlLanguages
      • React NativeLanguages
      • ReactLanguages
      • RailsLanguages
      • GraphQLLanguages
      • React.jsLanguages
      • ElixerLanguages
      • HTMLLanguages
      • CSSLanguages
      • jQueryLibraries
      • jQuery UILibraries
      • ReactLibraries
      • ReduxLibraries
      • DjangoFrameworks
      • Ember.jsFrameworks
      • Ruby on RailsFrameworks
      • CassandraDatabases
      • MySQLDatabases
      • PostgreSQLDatabases
      • AWSDatabases
      • Google AnalyticsAnalytics
      • MixpanelAnalytics
      • OptimizelyAnalytics
      • LookerAnalytics
      • SnowflakeAnalytics
      • IllustratorDesign
      • PhotoshopDesign
      • FigmaDesign
      • Adobe After EffectsDesign
      • AsanaManagement
      • ConfluenceManagement
      • JIRAManagement
      • TrelloManagement
      • WordpressCMS
      • MailChimpEmail
      • BrazeEmail

    Location

    333 N. Green Street, Chicago, IL 60607

    An Insider's view of Chime

    How would you describe the company’s work-life balance?

    Chime understands that when they hire someone, they support the whole person, which means fantastic perks to help balance work and life, like talking to a professional career coach or a financial planner, family planning, legal services, and more.

    Mike

    Senior People Partner

    How does the company support your career growth?

    Developing internal talent is a major component of Chime’s culture, and it’s allowed me the flexibility to define my career path and shift from Talent to People Ops. Chimers are given an annual stipend for professional development, and there are company-led programs for goal setting and internal mobility – all of which supported my career growth.

    Mary

    People Operations Specialist

    What’s the vibe like in the office?

    The vibe at the office can be described in three words: A good time. The mix of food pop-up events, meaningful developmental talks, and a ping pong tournament here and there make people come together driving a sense of purpose and belonging that I've only experienced at Chime.

    Maurizio

    Fraud Investigator

    What are Chime Perks + Benefits

    Chime Benefits Overview

    Our benefits philosophy is guided by supporting Chimers’ wellbeing in four key areas - physical, emotional, financial, and social. This encompasses everything from physical and mental health services for you and your family to a matching 401k plan with access to financial advisors and legal advice. We team up to offer inclusive events where Chimers can connect and grow, thoughtfully choose food vendors and office accommodations (including a flexible work model), and schedule company-wide Take Care of Yourself Days that give all Chimers at least one extra paid day off each month. We continuously add and enhance these benefits year-round.

    Culture
    Volunteer in local community
    Chimers volunteer their time, talent, and energy to support causes they care about using our volunteer portal. Activities are also organized through our Chimer Resource Group Program.
    Partners with nonprofits
    Chime supports nonprofits year-round, focusing on financial literacy, economic empowerment, social justice, and disaster relief. Chimer Resource Groups also partner with nonprofits that matter to them
    Open door policy
    OKR operational model
    Team based strategic planning
    Open office floor plan
    Flexible work schedule
    Remote work program
    Diversity
    Dedicated diversity and inclusion staff
    Highly diverse management team
    Mandated unconscious bias training
    We partner with ReadySet for company-wide equity training, with a focus on allyship and anti-racism.
    Diversity manifesto
    Mean gender pay gap below 10%
    Diversity employee resource groups
    CRGs (Chimer Resource Groups) include AfroChime, PacifiChime, Chimigos, ChimeHers, Chimmigrants, OutChime, and DiversiChime. Chimers are compensated for their work as leads of these CRGs!
    Hiring practices that promote diversity
    Recruiting team members and hiring managers complete training on inclusive hiring practices with ModelExpand.
    Health Insurance + Wellness
    Flexible Spending Account (FSA)
    Chime employees can contribute annually to their FSA.
    Disability insurance
    Dental insurance
    Vision insurance
    Health insurance
    Life insurance
    Wellness programs
    Team workouts
    Join Chimers in a daily plank challenge! Chimers also ride together on Peloton and have Slack channels to coordinate rides and other workouts.
    Mental health benefits
    Chime is partnering with ModernHealth to provide Chimers with mental and behavioral health resources.
    Financial & Retirement
    401(K)
    401(K) matching
    Company equity
    Child Care & Parental Leave
    Childcare benefits
    Generous parental leave
    We provide up to 16 weeks of parental leave for the primary caretaker. Chime also provides 16 weeks of leave for the secondary caretaker.
    Family medical leave
    Adoption Assistance
    Chime offers both adoption and fertility assistance through Maven, reimbursing Chimers up to $10k each year.
    Restricted work hours
    Almost every month, Chime provides Chimers with a day off to take care of themselves.
    Company sponsored family events
    Vacation + Time Off
    Unlimited vacation policy
    Paid volunteer time
    Paid holidays
    Paid sick days
    Office Perks
    Commuter benefits
    Company-sponsored outings
    Free daily meals
    Free snacks and drinks
    Some meals provided
    Company-sponsored happy hours
    Recreational clubs
    Home-office stipend for remote employees
    $500 when you initially start with Chime, and $250 per quarter after.
    Professional Development
    Job training & conferences
    Lunch and learns
    Promote from within
    Continuing education stipend
    Continuing education available during work hours
    Online course subscriptions available

    More Jobs at Chime

    Easy Apply
    By clicking Apply Now you agree to share your profile information with the hiring company.
    Learn more about ChimeFind similar jobs like this