$80K — $100K *
Current Employees of LendingClub: Please apply via your internal Workday Account
LendingClub Corporation (NYSE: LC) is the parent company of LendingClub Bank, National Association, Member FDIC, and the only full-spectrum fintech marketplace bank. Members can gain access to a broad range of financial products and services through a technology-driven platform, designed to help them pay less when borrowing and earn more when saving. Since 2007, more than 3 million members have joined the Club to help reach their financial goals. We’re leading the governance of a new industry by developing ethical, responsible ways to bring greater value and better opportunities to our members. Everyone deserves a better financial future and our team is committed to making that a reality. Come join us!
About the Role
The Sr Information Security Engineer is responsible for the proactive monitoring of information technology assets for potential security concerns, as well as the application of security best practices to identify and mitigate risks within the organization. The Sr. Information Security Analyst will perform a variety of functions including assessments of enterprise wide information technology and security systems and standards, the proactive monitoring of internal and third-party network connections, testing and evaluating new and existing vendors and technologies, aimed at spotlighting security threats, and gathering data and other required information as directed for regular metric review and reporting.
What You'll Do
Become an expert in the Lending Club technology stack to understand points of weakness and opportunities for security solutions
Assist in monitoring LendingClub’s IT control environment to identify key risks, related controls and gaps; document and report results to management
Assist with third party vulnerability testing process; document and report results to management
Collaborate with internal stakeholders on addressing systemic security issues
Perform monitoring of security tools and oversee remediation of items identified
Proactively identify threats and vulnerabilities, and collect, correlate, and analyze data to detect actual or potential security related incidents, and ensure timely remediation by the applicable party.
Identify, implement, and maintain the controls and procedures required to cost effectively and uniformly protect Lending Club’s information system assets
Monitor, track and document information security related incidents to ensure a prompt and efficient resolution
Provide support and evidence collection for internal and external audits and risk assessments
Consults with management to assist with developing corrective action plans for identified audit, risk, Information Security, and IT findings
Research, design, and participate in or lead the implementation of security initiatives
Stay current on the latest information technology and security trends; recommend corrective actions as identified and needed through Information Security initiatives
Assist in developing Lending Club-wide best practices for IT and Information security
Brief management on the status of security initiatives and effectiveness of controls
Other related duties
Bachelor’s degree with a concentration in computer science, or similar combination of education and experience;
3+ years of experience in information security;
Ability to identify and mitigate network and system vulnerabilities and explain how to remediate them;
Understanding of the following: OWASP Top 10 Security Risks, NIST cybersecurity framework and other related frameworks, knowledge of FFIEC IT examination handbooks preferred but not required
Strong interpersonal, communication and customer service skills;
Ability to think critically;
Ability to work independently or in a group setting;
Understanding of vulnerability and penetration testing methodologies
Prior penetration and vulnerability testing experience, a plus
LendingClub is an equal opportunity employer and dedicated to diversity, equity, and inclusion in the workplace. We do not discriminate on the basis of race, religion, color, national origin, sex (including pregnancy, childbirth, reproductive health decisions, or related medical conditions), gender, gender identity, gender expression, sexual orientation, age, marital status, veteran status, disability status, political views or activity, or other applicable legally protected characteristics. We believe that a variety of perspectives will make our teams and business stronger as we work together to transform the traditional banking system.
Valid through: 7/13/2021