Prosper Logo

Prosper

Sr. GRC Analyst

Posted 22 Days Ago
Remote
Hiring Remotely in United States
136K-169K Annually
Senior level
Remote
Hiring Remotely in United States
136K-169K Annually
Senior level
Lead automation-focused GRC work: monitor and audit controls against PCI-DSS, NIST CSF, and SOC frameworks; automate evidence collection and compliance workflows using scripting and AI; oversee IAM reviews; collaborate with engineering, DevOps, and product to embed compliance into CI/CD and cloud infrastructure.
The summary above was generated by AI
Your role in our mission

Prosper is seeking a detail-oriented, highly motivated, and automation-focused security compliance professional to support, promote, and further mature the company's Governance, Risk, and Compliance program. In this position, you will blend standard GRC practices (PCI DSS, NIST, SOC 1/2) with a technical mindset, leveraging GRC platforms, scripting and AI tools to automate manual compliance workflows, audit trails, and data gathering.

You will use your strong analytical and technical skills to identify security gaps and build efficient, scalable processes. We are looking for self-driven candidates who want to be part of an innovative FinTech company with a mission to improve the financial well-being of its customers.

How you’ll make an impact

  • Automated Compliance Monitoring: Review, audit, and monitor security compliance programs against frameworks like PCI-DSS, NIST CSFv2, and SOC 1/2, leveraging automation tools to continuously assess control health
  • Process Optimization & AI Integration: Identify opportunities to leverage AI tools and LLMs to accelerate risk assessments, summarize complex regulatory requirements, and streamline process improvements
  • Code-Assisted Evidence Collection: Lead and automate evidence collection for external audits (SOC 1, PCI Level 1), reducing manual overhead for engineering and product teams
  • Identity & Access Management (IAM): Oversee user access management and quarterly user access reviews, exploring ways to automate provisioning audits and detect anomalies
  • Cross-Functional Collaboration: Build and cultivate positive working relationships with engineering, DevOps, and product stakeholders to bake compliance directly into the CI/CD pipeline and cloud infrastructure

Skills that will help you thrive

  • Education: B.S. degree in Computer Science, Information Systems, Cyber Security, or a related technical field
  • Experience: 5–7 years of GRC or Security Engineering experience, ideally within a SaaS, FinTech, or Cloud-native company
  • Solid understanding of Cloud Security compliance (AWS/Azure/GCP)
  • Technical & Scripting Skills: Hands-on working experience with command line and scripting languages (Python, Bash, Powershell, etc) to parse logs, query APIs, and automate repetitive GRC tasks
  • AI Savvy: Familiarity with utilizing AI productivity tools, prompt engineering, or LLMs to optimize documentation, drafting, or data analysis
  • Framework Fluency: Experience with security standards/frameworks such as PCI-DSS, NIST (800-53/CSF), and SOC 1/2 Type II
  • Soft Skills: Strong ability to clearly articulate technical risk to non-technical stakeholders and strategically collaborate cross-functionally
  • Certifications: CISSP, CISA, CISM, CCSP, or similar security certifications are a plus

Resources to help you prosper

  • A connected experience: We prioritize high-touch collaboration and flexibility. Whether you are working from our San Francisco or Phoenix offices or joining us as a fully remote team member, we provide the digital-first tools and intentional culture to keep you synced and supported
  • Invested in your future: A competitive salary and a 401(k) with a 5% company match to help you build long-term financial security
  • Holistic well-being: We provide the resources you need to thrive, from flexible time off and paid parental leave to an annual wellness allowance and comprehensive health coverage
  • Professional & personal growth: Take advantage of a suite of premium perks, including Udemy access, childcare assistance, pet insurance, and a bevy of additional savings through Beneplace

Interview process

  • Recruiter Call: A brief screening to discuss your experience and initial questions
  • Department Interview: Deeper dive into technical skills and project alignment with the Hiring Manager or team member
  • Team/Virtual Interview: Meet team members for collaborative discussions, problem-solving, or technical exercises

#LI-RC1#LI-remote

Similar Jobs

9 Days Ago
Easy Apply
Remote
USA
Easy Apply
132K-165K Annually
Senior level
132K-165K Annually
Senior level
Big Data • Healthtech • HR Tech • Machine Learning • Software • Telehealth • Big Data Analytics
Lead GRC efforts to maintain SOC 2, HITRUST, and ISO 27001 compliance. Run internal audits, coordinate external assessments, manage risk register, maintain policies, report to leadership, and drive automation of GRC processes with engineering using scripting and LLMs.
Top Skills: AWSDatadogGitlabHipaaHitrustIso 27001LlmsOktaRetoolSoc 2Vanta
20 Days Ago
In-Office or Remote
Cambridge, MA, USA
106K-222K Annually
Senior level
106K-222K Annually
Senior level
Events • Analytics • Consulting
Conduct research and deliver strategic advice on risk management and cyber risk quantification. Develop and maintain risk artifacts (standards, procedures, appetite, registry), produce 6–8 research projects yearly, consult with clients, collaborate across Forrester teams, advise vendors, publish insights, and present externally. Support C-suite and risk leaders and travel up to 20%.
Top Skills: Grc Platforms
12 Days Ago
Remote
USA
130K-216K Annually
Senior level
130K-216K Annually
Senior level
Consulting
Lead end-to-end ServiceNow initiatives: gather and translate complex business requirements, design solutions across ITSM/SPM/GRC/App Engine, guide development and testing, drive stakeholder workshops, manage UAT and change management, mentor junior analysts, and deliver high-quality documentation and training to ensure successful platform adoption.
Top Skills: DatabricksPower AppsPower AutomatePower BISafeScoped ApplicationsScrumServicenowServicenow App EngineServicenow GrcServicenow ItsmServicenow SpmSharepointTableauUipath

What you need to know about the Boston Tech Scene

Boston is a powerhouse for technology innovation thanks to world-class research universities like MIT and Harvard and a robust pipeline of venture capital investment. Host to the first telephone call and one of the first general-purpose computers ever put into use, Boston is now a hub for biotechnology, robotics and artificial intelligence — though it’s also home to several B2B software giants. So it’s no surprise that the city consistently ranks among the greatest startup ecosystems in the world.

Key Facts About Boston Tech

  • Number of Tech Workers: 269,000; 9.4% of overall workforce (2024 CompTIA survey)
  • Major Tech Employers: Thermo Fisher Scientific, Toast, Klaviyo, HubSpot, DraftKings
  • Key Industries: Artificial intelligence, biotechnology, robotics, software, aerospace
  • Funding Landscape: $15.7 billion in venture capital funding in 2024 (Pitchbook)
  • Notable Investors: Summit Partners, Volition Capital, Bain Capital Ventures, MassVentures, Highland Capital Partners
  • Research Centers and Universities: MIT, Harvard University, Boston College, Tufts University, Boston University, Northeastern University, Smithsonian Astrophysical Observatory, National Bureau of Economic Research, Broad Institute, Lowell Center for Space Science & Technology, National Emerging Infectious Diseases Laboratories

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account