Information Security Program Analyst

Apex Fintech Solutions (AFS) powers innovation and the future of digital wealth management by processing millions of transactions daily, to simplify, automate, and facilitate access to financial markets for all. Our robust suite of fintech solutions enables us to support clients such as Stash, Betterment, SoFi, and WeBull, and more than 20 million of our clients' customers. 

Collectively, AFS creates an environment in which companies with the biggest ideas in fintech are empowered to change the world. We are based in Dallas, TX and also have offices in Austin, New York, Chicago, Los Angeles, Portland, and Belfast. 

If you are seeking a fast-paced and entrepreneurial environment where you'll have the opportunity to make an immediate impact, and you have the guts to change everything, this is the place for you. 

AFS has received a number of prestigious industry awards, including:

• 2021, 2020, 2019, and 2018 Best Wealth Management Company - presented by Fintech Breakthrough Awards
• 2021 Most Innovative Companies - presented by Fast Company
• 2021 Best API & Best Trading Technology - presented by Global Fintech Awards

Information Security Program Analyst

Who are we looking for:

We are seeking to recruit an Information Security Program Analyst to guide, enable and continuously improve key Information Security program functions. 

What will you be responsible for:

• Management and enhancement of administrative tools – incident and work tickets (track investigations), knowledge management (run-books, policy, standards, guidelines, wiki) and workload management (project and task tracking) systems. 
• Providing enablement services for the threat teams – onboarding, training, development and project management.
• Project management – work with teams and project managers to deliver enhanced functionality and resolve issues. 
• Track key initiatives and provide program level status updates.
• Ensuring new team members have timely and complete access.
• Identify and manage job specific training paths for all job roles.
• Managing requests for information from regulators, clients, auditors and internal stakeholders
• Responsible for tracking ongoing expenditures to ensure timely receipt of invoices, accuracy, and payment submission
• Support RFI/RFP and other procurement related processes working with leadership to manage supplier relationships as well as develop new ones.
• Responsible for managing interdependencies between groups and projects and gaining alignment of relevant stakeholders
• Responsible for providing visibility to all work streams across the program to the leadership team
• Responsible for tracking ongoing expenditures to ensure timely receipt of invoices, accuracy, and payment submission
• Responsible for ensuring both documentation and operationalization is accounted for in project plans
• Generate ideas and critically evaluate future scenarios for consideration into the Information Security strategic plan
• Coordination of non-incident Information Security wide projects and or programs like Security Awareness campaigns.

What we value:

• Experience with administrative technologies for ticketing, workloads and knowledge.
• Experience creating and analyzing metrics.
• Strong technical writing and documentation experience.
• Governance and reporting experience.
• Project management or product ownership experience.
• Knowledge of IT architecture and operations (computing, network, storage & cloud)
• Knowledge of security control technologies.

Education & Preferred Qualifications

• BS in Cyber Security, Information Technology, Computer Science or relevant experience
• +2 -4 years in a role that has supported the maturation of a technology or security function. Examples include business analysis, technical project management, metrics or IT experience.
• Project management certification (PMP) through PMI or similar (PRINCE2) preferred
• Understanding of cybersecurity standards and best practices
• Understanding of cybersecurity risks, threats, and prevention measures
• Familiarity with Cybersecurity concepts and issues
• Must have experience with NIST Risk Management Framework & NIST-SP-800-53 and understanding of requirements related to cyber security
• Excellent written and verbal communication skills
• Must be comfortable with public speaking and developing relationships across all levels of the enterprise
• Effective leadership and delegation abilities
• Outstanding time management skills
• Should be able to multitask and handle multiple projects simultaneously

Apex currently requires all employees as a condition of employment to either be fully vaccinated for COVID-19 or submit to regular testing. The CDC defines "fully vaccinated" as two weeks after the second dose for Pfizer and Moderna, and two weeks after the single dose of Johnson & Johnson. Apex will also require proof of vaccination and/or testing. Apex will also consider requests for exemption from these requirements as a reasonable accommodation for medical reasons or sincerely held religious beliefs. *Please note this requirement is ONLY for US Offices.