Fintech Appsec And Infosec Senior Analyst

Please note that although all positions at Synctera are remote, candidates must be located and authorized to work in the US or Canada as a precondition of employment. Synctera does not sponsor applicants for work visas.

What We're Doing

At Synctera, we’re powering the future of FinTech. We help companies create new revenue streams and enhance their value proposition with FinTech apps and embedded banking products. With APIs, compliance support, and bank partners in one end-to-end Banking as a Service platform, Synctera is the fastest and easiest way to build, launch, and scale bank accounts, debit cards, charge cards, lending, and more.

We are looking for interesting, curious, wickedly smart people who are ready to jump in and run with our fast-growing team. If you want to have fun at work, collaborate with some of the sharpest people in the industry, grow the FinTech and Banking as a Service ecosystem, and love to win, read on!

If being on the ground floor of an exciting new startup working within the BaaS space seems interesting to you, keep reading!

As a Fintech AppSec and InfoSec Senior Analyst, you will be responsible for working closely with our Fintech clients to assess and advise on infosec, appsec, and business resiliency related policies and processes to enable Fintech clients to launch financial products and solutions. This role is hands-on and client facing. You must be able to work efficiently in a fast-paced, dynamic environment and communicate directly with Fintech clients in a clear and professional manner.

What You’ll Do:

• Review and assess Fintech clients’ third party classification and tiering, third party risk management program development, and recommend plan for third party risk reviews
• Support internal third party risk management efforts
• Drive remediation of any identified security issues to conclusion to meet deadlines
• Review Fintech client’s penetration testing and vulnerability scan reports to help establish a mutually agreeable time frame towards remediation and mitigation
• Review and assess Fintech clients’ application security, information security, business resiliency related documentation and policies
• Consult Fintech clients’ on topics including cybersecurity, information and data security strategy and governance, IT regulatory and compliance requirements, business continuity, and disaster recovery
• Help maintain and improve existing assessment templates and security, operational resiliency, and third party risk management-related policy and plan templates
• Review Fintech clients' processes and controls against industry frameworks and communicating recommendations to clients

What You Will Bring:

• At least four (4) years of experience with information security audit, third party risk management, data security, or cybersecurity roles
• Casual yet professional appearance is required
• Ability to work in a fast-paced environment with ambiguity
• A passion for financial technology and working with startups
• At least four (4) years of experience providing expert guidance in identifying and communicating program gaps and recommending remediation steps tied to deviations in the materials detailed previously highlighted above
• At least four (4) years of experience in analyzing materials such as policies, standards, independent assessments, business continuity plans, vulnerability scans, penetration tests, and remediation plans
• Prior vendor management, third party risk management, supplier oversight and/or security risk assessment experience preferred
• Prior financial institution, financial services, or banking experience preferred
• Ability to handle the uncertainty and remain composed in high-pressure situations
• Bachelor’s degree in management/computer information systems, computer science, accounting information systems, computer engineering, industrial engineering, business development, business administration, business management, or related program
• CISA, CISSP, CISM, CIA, or CPA certifications preferred
• Self-driven and self-motivated requiring minimal daily supervision
• Strong communication, collaboration, and time management skills

Diversity & Inclusion

Synctera is committed to having a workforce that is reflective of the diversity within the United States and Canada. As an equal opportunity employer, we encourage applications from candidates from underrepresented communities, Indigenous persons, persons with disabilities, persons of diverse sexual orientation and gender identity, and all those who can provide different perspectives and contribute to the diversification of Synctera.

Benefits

• Employer contribution to HSA for US employees
• Growth potential and opportunity to have a significant impact at an early stage of our company's journey
• Unlimited paid time off
• Working with a team of rockstars (+ a monthly happy hour with the team!)
• Home office setup stipend
• Annual HCSA and generous extended health care coverage for Canadian employees and dependents
• Stock options program for all employees
• 401(k) for US employees and RRSP for Canadian employees
• Generous paid new parent leave program
• Mental health resources available for all employees
• 100% employer paid medical, dental, and vision benefits for US and Canadian employees and dependents

The salary range for this full-time position (USD: $80,000- $105,000, CAD: $90,000-$110,000 ) is determined by role, level, and location. The range informed in this job posting reflects the minimum and maximum target for new hire salaries across all US and Canadian locations. Within the range, individual pay will be determined by work location, job-related skills, experience, relevant training, and other factors.

To all recruiters and recruitment agencies: Synctera does not accept unsolicited resumes. Please do not forward resumes to our jobs alias or to Synctera employees without an active vendor agreement in place. Synctera is not responsible for any fees related to unsolicited resumes.