Senior Manager, Governance, Risk and Compliance

The RoleWe are seeking a GRC Senior Manager to play a key role in the oversight and coordination of security and compliance-related functions. This individual will interface with all departments and must exhibit an ability to work cross-functionally. Above all other factors, we are looking for smart, driven candidates who want to be part of a culture of innovation and creativity as we develop and define the peer-to-peer lending market.
If you are a passionate GRC professional who is interested in driving our GRC practice, please read on!

Problems You Will Solve

• Develop Prosper’s GRC strategy and manage the day-to-day governance activities related to risk, control, and compliance management
• Establish KPIs and metrics to demonstrate the health of the GRC program
• Lead the PCI-DSS compliance assessment (readiness along with the external attestation)
• Own the Risk Management Program, planning and coordinating the execution of risk assessments (NIST CSF, CIS), monitoring of emerging risks, and maintaining the risk register
• Lead cross-functionally to maintain compliance certifications such as SOC1/SOC2 Type II, and other external IT audits
• Drive remediation of process and control deficiencies and improvements identified internally and externally
• Lead third-party cyber risk assessment/re-assessment tasks; overall responsible for vendor cybersecurity reviews
• Lead the Security Awareness Program (routine phishing simulation campaigns, security awareness trainings, newsletters, etc.)
• Take ownership of documentation processes; assist with the development and maintenance of policies, guidelines, standards, and processes
• Proactively identify opportunities for control automation
• Communicate, develop, and foster strong, collaborative relationships with stakeholders across all levels of the organization
• Assist with responding to privacy and security compliance requests from regulators, partners, and vendors
• Lead a team of senior GRC analysts
• Support the preparation of regular and ad-hoc risk reports for ERM governance, boards, and other relevant stakeholders

All About You

• 4+ years of direct management experience
• 10+ years of progressive and demonstrated expertise in IT compliance and risk management (PCI-DSS, SOC 1/2, NIST CSF, etc.)
• Excellent written, verbal communication skills. Ability to tailor communication style to audience at hand
• Excellent project management and process improvement skills
• Ability to effectively work with technical and non-technical resources
• Self-directed, works with minimal guidance, and recognizes when guidance needed
• Experience with CCPA preferred
• CISSP, CISA, or CRISC (or similar) certifications preferred

#LI-SK1

About Our Technology TeamWe are growing our Technology team to support our various financial products. The ideal candidate is passionate about learning the Fintech domain and delivering cutting-edge, high-quality solutions to solve business problems. We utilize a progressive, test-driven, Agile development methodology that places a high premium on communication, teamwork, sound design and clean implementation. 
About UsFounded in 2005 as the first peer-to-peer marketplace lending platform in the U.S., Prosper was built on a simple idea: connect people who want to borrow money with those who want to invest. Since inception, Prosper has helped more than a million people gain access to affordable credit with over $25 billion in loans originated through its platform. Our mission is to help our customers advance their financial well-being through a variety of products including personal loans, credit, home equity lines of credit (HELOC), and our newest product, HELoan. Our diverse culture rewards accountability and cross functional teamwork because we believe this encourages innovative thinking and helps us deliver on our mission.   We’re on a mission to hire the very best, and we are committed to creating exceptional employee experiences where everyone is respected and has access to equal opportunity. We realize that new ideas can come from everywhere. It is important to us that every hire connects with our vision, mission, and core values. Join a leading fintech company that’s democratizing finance for all!  
Our ValuesDiversity expands opportunitiesCollaboration creates better solutions Curiosity fuels our innovationIntegrity defines all our relationshipsExcellence leads to longevity Simplicity guides our user experience Accountability at all levels drives results
www.prosper.comOur Story & Team  //   Our Blog 
Applicants have rights under Federal Employment Laws.Family & Medical Leave Act (FMLA)Equal Employment Opportunity (EEO)Employee Polygraph Protection Act (EPPA)  
California applicants: please click here to view our California Consumer Privacy Act (“CCPA”) Notice for Applicants, which describes your rights under the CCPA: https://www.prosper.com/plp/legal/privacy-notice-for-applicants/
At Prosper, we're looking for people with passion, integrity, and a hunger to learn. We encourage you to apply even if your experience doesn't precisely match the job description. Your unique skill set and diverse perspective will stand out and set you apart from other candidates. Prosper thrives with people who think outside of the box and aren't afraid to challenge the status quo. We invite you to join us on our mission to advance financial well-being.
Prosper is committed to an inclusive and diverse workplace. All aspects of employment including the decision to hire, promote, discipline, or discharge, will be based on merit, competence, performance, and business needs. We do not discriminate on the basis of race, color, religion, marital status, age, national origin, ancestry, physical or mental disability, medical​​​ condition, pregnancy, genetic information, gender, sexual orientation, gender identity or expression, veteran status, or any other status protected under federal, state, or local law, including the San Francisco Fair Chance Ordinance. Prosper will consider for employment qualified applicants who are non-US citizens and will provide green card sponsorship.