Sr. Information Security GRC Analyst

2 weeks ago

Irvine, CA, United States loanDepot Full time
Description

Position at loanDepot

Position Summary:

Responsible for driving the development, implementation, communication, and maintenance of loanDepot's technology policies, standards and procedures that are aligned to industry standards and regulatory requirements. Ensures that loanDepot technology processes adheres to regulatory requirements, manages risks effectively, and establishes strong governance practices. Develops and implements controls, monitors compliance, and supports risk management activities.

Responsibilities:
  • Leads the development and implementation of comprehensive cybersecurity and IT policies, standards, and guidelines.
  • Continuously evaluates and updates cybersecurity and IT policies to ensure they remain current and effective.
  • Ensures policies comply with relevant laws, regulations, and industry standards (e.g., NIST, FFIEC, GLBA, NYDFS, SOX and PCI-DSS).
  • Collaborates with teams, working closely with IT, legal, compliance, and other departments, to gain a deep understanding of business needs to ensure cybersecurity policies align with business objectives.
  • Transforms complex information and documentation into simple concepts that are easy to understand by the end-users.
  • Offers specialized expertise and consultation to cross-functional teams to perform framework-oriented risk assessments, identify deficiencies, generate reports, and recommends prioritized, actionable solutions to mitigate risks and enhance loanDepot's overall security posture.
  • Stays informed about the latest cybersecurity threats, trends, and best practices. Ensures accurate and up-to-date records of policy reviews, risk assessments, training activities, and incident responses.
  • Benchmarks the organization's policies against industry standards and best practices.
  • Develops and implements governance frameworks for cybersecurity policy management.
  • Monitors key performance indicators, conducts gap analysis, risk assessments and implements frameworks, as needed. Tests and monitors effectiveness of controls.
  • Establishes a feedback loop and analyzes metrics to continuously improve cybersecurity policies based on audit findings, incident reviews, and emerging threats.
  • Actively leads and supports on internal and external audits and assessments of cybersecurity policies and practices. Accountable for ensuring identified audit and assessment findings and actions are tracked to closure.
  • Maintains comprehensive documentation of all cybersecurity policies, procedures, and related activities. Communicates policy requirements and updates to all relevant stakeholders.
  • Identifies opportunities for innovation and improvement in cybersecurity policy and practice. Proposes suitable mitigation strategies and verifies the effectiveness of remediation plans
Requirements:
  • Bachelor's Degree in Information Security, Computer Science, Information Technology, or a related field preferred.
  • Minimum of six (6) + years' experience working in Cybersecurity GRC, policy development, risk management, or a similar field.
  • Experience with GRC tools (e.g., Archer, ServiceNow, OneTrust).
  • Proficiency in using data analysis and reporting tools (e.g., Excel, Power BI).
  • Relevant certifications such as CISM and/or CISA are highly desirable.
Why work for #teamloanDepot:
  • Competitive compensation package based on experience, skillset and overall fit for #TeamloanDepot.
  • Inclusive, diverse, and collaborative culture where people from all backgrounds can thrive
  • Work with other passionate, purposeful, and customer-centric people
  • Extensive internal growth and professional development opportunities including tuition reimbursement
  • Comprehensive benefits package including Medical/Dental/Vision
  • Wellness program to support both mental and physical health
  • Generous paid time off for both exempt and non-exempt positions

About loanDepot:

loanDepot (NYSE: LDI) is a digital commerce company committed to serving its customers throughout the home ownership journey. Since its launch in 2010, loanDepot has revolutionized the mortgage industry with a digital-first approach that makes it easier, faster, and less stressful to purchase or refinance a home. Today, as the nation's second largest non-bank retail mortgage lender, loanDepot enables customers to achieve the American dream of homeownership through a broad suite of lending and real estate services that simplify one of life's most complex transactions. With headquarters in Southern California and offices nationwide, loanDepot is committed to serving the communities in which its team lives and works through a variety of local, regional, and national philanthropic efforts.

Base pay is one part of our total compensation package and is determined within a range. This provides the opportunity to progress as you grow and develop within a role. The base pay for this role is between $99,000 and $136,500. Your base pay will depend on multiple individualized factors, including your job-related knowledge/skills, qualifications, experience, and market location.

We are an equal opportunity employer and value diversity in our company. We do not discriminate based on race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status.

  • SAP Security Lead

    1 day ago

    Irvine, CA, United States Kaav Inc. Full time

    #Hiring For SAP Security Lead Location: IRVINE, CA Remote Work: 100% W2 OR 1099 Exp: 8+ Job Description : The SAP Security Lead is responsible for leading SAP security administration. This position involves providing guidance and technical support to SAP functional teams and business users on security-related matters. Required Skills - SAP, Security Job...

  • SAP Security Lead

    2 weeks ago

    Irvine, CA, United States Kaav Inc. Full time

    #Hiring For SAP Security Lead Location: IRVINE, CA Remote Work: 100% W2 OR 1099 Exp: 8+ Job Description : The SAP Security Lead is responsible for leading SAP security administration. This position involves providing guidance and technical support to SAP functional teams and business users on security-related matters. Required Skills - SAP, Security Job...

  • Information Security Architect

    1 day ago

    Irvine, CA, United States Masimo Full time

    Job Description Job Summary The Information Security Architect is responsible for designing, implementing, and maintaining the organization's information security strategy and architecture. This role ensures that security controls are integrated into systems, applications, and infrastructure, aligning with business objectives while protecting against...

  • Information Security Architect

    7 days ago

    Irvine, CA, United States Masimo Full time

    Job Description Job Summary The Information Security Architect is responsible for designing, implementing, and maintaining the organization's information security strategy and architecture. This role ensures that security controls are integrated into systems, applications, and infrastructure, aligning with business objectives while protecting against...

  • Information Security Architect

    5 days ago

    Irvine, CA, United States Masimo Full time

    Job Description Job Summary The Information Security Architect is responsible for designing, implementing, and maintaining the organization's information security strategy and architecture. This role ensures that security controls are integrated into systems, applications, and infrastructure, aligning with business objectives while protecting against...

  • Information Security Architect

    2 weeks ago

    Irvine, CA, United States Masimo Full time

    Job Description Job Summary The Information Security Architect is responsible for designing, implementing, and maintaining the organization's information security strategy and architecture. This role ensures that security controls are integrated into systems, applications, and infrastructure, aligning with business objectives while protecting against...

  • Senior Cyber Security Operations Analyst

    2 weeks ago

    Irvine, CA, United States loanDepot Full time

    Description Position at loanDepot Position Summary: loanDepot's Security Operations team is at the forefront of cyber defense for the organization. We are seeking a Senior Security Analyst who will act as both a technical authority and front-line commander within our Security Operations Center. This is a strategic, high-impact role for a seasoned...

  • Senior Cyber Security Operations Analyst

    7 days ago

    Irvine, CA, United States loanDepot Full time

    Description Position at loanDepot Position Summary: loanDepot's Security Operations team is at the forefront of cyber defense for the organization. We are seeking a Senior Security Analyst who will act as both a technical authority and front-line commander within our Security Operations Center. This is a strategic, high-impact role for a seasoned...

  • Sr. Oracle ERP Systems Analyst

    21 hours ago

    Irvine, CA, United States 1872 Consulting Full time

    Sr. Oracle ERP Systems Analyst - Finance Irvine, CA - Onsite 2-3 days per week Position Summary: The Sr. Finance Systems Analyst is involved with the setup, configuration, support and maintenance of our newly implemented Oracle Cloud ERP system. This role is responsible for the support of accounting applications, and the position will conduct system testing...

  • Sr. Oracle ERP Systems Analyst

    1 week ago

    Irvine, CA, United States 1872 Consulting Full time

    Sr. Oracle ERP Systems Analyst - Finance Irvine, CA - Onsite 2-3 days per week Position Summary: The Sr. Finance Systems Analyst is involved with the setup, configuration, support and maintenance of our newly implemented Oracle Cloud ERP system. This role is responsible for the support of accounting applications, and the position will conduct system testing...