loanDepot

Information Security GRC Analyst, Sr

loanDepot$99K — $136K *
Irvine, CA 92620In-Person
Information Technology
5 - 7 years of experience
Reposted Today
Be an Early Applicant
Job Overview by Ladders

Qualifications

  • 6+ years in Cybersecurity GRC or risk management.
  • Familiarity with GRC tools such as Archer, ServiceNow, or OneTrust.
  • Proficient in data analysis tools like Excel or Power BI.
  • Relevant certifications (CISM, CISA) preferred.
  • Bachelor's Degree in Information Security or related field.
  • On-site work four days a week for local employees.

Responsibilities

  • Leads development of cybersecurity policies and guidelines.
  • Regularly updates policies to ensure effectiveness and compliance.
  • Ensures policies align with laws and industry standards (NIST, FFIEC, etc.).
  • Collaborates with IT and legal teams for policy alignment with business needs.
  • Simplifies complex security information for end-user comprehension.
  • Conducts risk assessments and recommends actionable solutions.
  • Stays updated on cybersecurity threats and maintains documentation.

Benefits

  • Competitive compensation package.
  • Inclusive and diverse workplace culture.
  • Opportunities for professional development and tuition reimbursement.
  • Comprehensive medical, dental, and vision coverage.
  • Wellness program for mental and physical health.
  • Generous paid time off for all employees.
Full Job Description
Description

Position at loanDepot

Position Summary:

Responsible for driving the development, implementation, communication, and maintenance of loanDepot's technology policies, standards and procedures that are aligned to industry standards and regulatory requirements. Ensures that loanDepot technology processes adheres to regulatory requirements, manages risks effectively, and establishes strong governance practices. Develops and implements controls, monitors compliance, and supports risk management activities.

Responsibilities:

  • Leads the development and implementation of comprehensive cybersecurity and IT policies, standards, and guidelines.
  • Continuously evaluates and updates cybersecurity and IT policies to ensure they remain current and effective.
  • Ensures policies comply with relevant laws, regulations, and industry standards (e.g., NIST, FFIEC, GLBA, NYDFS, SOX and PCI-DSS).
  • Collaborates with teams, working closely with IT, legal, compliance, and other departments, to gain a deep understanding of business needs to ensure cybersecurity policies align with business objectives.
  • Transforms complex information and documentation into simple concepts that are easy to understand by the end-users.
  • Offers specialized expertise and consultation to cross-functional teams to perform framework-oriented risk assessments, identify deficiencies, generate reports, and recommends prioritized, actionable solutions to mitigate risks and enhance loanDepot's overall security posture.
  • Stays informed about the latest cybersecurity threats, trends, and best practices. Ensures accurate and up-to-date records of policy reviews, risk assessments, training activities, and incident responses.
  • Benchmarks the organization's policies against industry standards and best practices.
  • Develops and implements governance frameworks for cybersecurity policy management.
  • Monitors key performance indicators, conducts gap analysis, risk assessments and implements frameworks, as needed. Tests and monitors effectiveness of controls.
  • Establishes a feedback loop and analyzes metrics to continuously improve cybersecurity policies based on audit findings, incident reviews, and emerging threats.
  • Actively leads and supports on internal and external audits and assessments of cybersecurity policies and practices. Accountable for ensuring identified audit and assessment findings and actions are tracked to closure.
  • Maintains comprehensive documentation of all cybersecurity policies, procedures, and related activities. Communicates policy requirements and updates to all relevant stakeholders.
  • Identifies opportunities for innovation and improvement in cybersecurity policy and practice. Proposes suitable mitigation strategies and verifies the effectiveness of remediation plans

Requirements:

  • Minimum of six (6) + years' experience working in Cybersecurity GRC, policy development, risk management, or a similar field.
  • Experience with GRC tools (e.g., Archer, ServiceNow, OneTrust).
  • Proficiency in using data analysis and reporting tools (e.g., Excel, Power BI).
  • Relevant certifications such as CISM and/or CISA are highly desirable.
  • Bachelor's Degree in Information Security, Computer Science, Information Technology, or a related field preferred.
  • Employees located within a commutable distance of our hub offices (Irvine, Scottsdale, Chandler, Southfield, or Plano) are expected to work on-site four days per week.

Why work for #teamloanDepot:

  • Competitive compensation package based on experience, skillset and overall fit for #TeamloanDepot.
  • Inclusive, diverse, and collaborative culture where people from all backgrounds can thrive
  • Work with other passionate, purposeful, and customer-centric people
  • Extensive internal growth and professional development opportunities including tuition reimbursement
  • Comprehensive benefits package including Medical/Dental/Vision
  • Wellness program to support both mental and physical health
  • Generous paid time off for both exempt and non-exempt positions

Base pay is one part of our total compensation package and is determined within a range. This provides the opportunity to progress as you grow and develop within a role. The base pay for this role is between $99,000 and $136,500. Your base pay will depend on multiple individualized factors, including your job-related knowledge/skills, qualifications, experience, and market location.

About loanDepot

LoanDepot, sometimes stylized as loanDepot, is a Lake Forest, California-based holding company which sells mortgage and non-mortgage lending products. In 2015, the company claimed to be the second largest non-bank provider of direct-to-consumer loans in the United States. LoanDepot was founded in 2010 by entrepreneur Anthony Hsieh, who had previously founded mortgage companies LoansDirect.com which he sold to E*Trade, and HomeLoanCenter.com, which he sold to LendingTree. The company's products at the time included fixed rate, jumbo, FHA and home equity loans, in addition to more controversial adjustable-rate mortgages and negative amortization products. In November 2015, the company postponed a planned IPO, citing poor market conditions. In March 2017, the company introduced technology to automate the loan process, allowing customers to apply for a mortgage without talking to a loan officer. In January 2018, the company announced two products as part of its technology platform, now called Mello, a home improvement unit to allow contractors to offer financing to customers, and Mello Home, a platform to connect pre-approved buyers to realtors. In September 2019, the company partnered with Century 21 Redwood Realty to form a new mortgage platform for the mid-Atlantic area, Day 1 Mortgage. loanDepot went public on the New York Stock Exchange on February 11, 2021 under the ticker symbol LDI.
Learn more about loanDepot
Market Cap
$453.5 million
Industry
Finance & Insurance
Founded
2010
5 Year Trend
+26.8%
NASDAQ
LDI
* Ladders Estimates

Similar Jobs

Ad banner background

Get Ready For Your
Next Interview

More Jobs at loanDepot

More Information Technology Jobs

Find similar Information Security GRC Analyst, Sr jobs:

NationwideIrvine, CA