Governance, Risk and Compliance Specialist

About Flinks 🚀

Flinks is driven by the belief that data should belong to the consumers.

We enable the open, consent-based exchange of financial data while empowering businesses to connect their consumers with the services they want. Flinks connects to over 250 million financial accounts, and is trusted by hundreds of world-class companies. Flinks helps them to digitize their processes, improve their user experience, and reduce delinquency.

About the Role 🔐

This role will participate in the development, evaluation and implementation of governance, risk and compliance.

The role will lead the corporate-wide risk management function ensuring that all controls are implemented and enforced. The candidate will have the opportunity to define and influence the governance, risk and compliance posture for growing US and Canadian organizations. This is a new role in the organization. This includes optimization of existing processes, development of new processes as appropriate and the selection of appropriate technology tool sets with a view towards scalability via automation and efficient design.

This role will also undertake a number of critical tasks and requests from security projects to successful delivery of projects and the associated resources.

What You'll Be Doing 🔥

● Support development, implementation and maintenance of strong governance, risk & compliance processes

● Continuously improve the security framework, methodology, standards, and system of internal controls

● Govern and report on finding, tracking status, and ensuring corrective actions are complete and sustainable

● Works with external parties to ensure all the desired requirements are delivered by liaising with all the business stakeholders.

● Support operational reporting, management communications, and executive governance committees

● Support risk identification & assessment, response & mitigation, control monitoring and reporting

● Gather and evaluate information, including to support Auditors, and compliance partners

● Develop and perform tests, to evaluate the design and effectiveness of key controls as is necessary for compliance

● Review test findings, identify control weaknesses, present results, and recommend actions to remediate issues

● Support issue management, risk acceptances, and the IT Security corrective actions

● Pro-actively review all gaps found on audits related to systems and types of access controls on various risks like Cyber Threats, Data Security and compliance and communicate for timely actions to mitigate them.

● Delivers Security Assessments projects on time and at the expected quality, have root- cause analysis with clear action plan and obtain sign-off with all relevant parties.

Who You Are 💪

● Experience in various Security Assessments, regulatory requirements but not limited to PCI- DSS, ISO27001, and SOC2.

● Practical understanding of security standards, processes and risk frameworks.

● Has good understanding of audit frameworks and various datasheets involved in preparing for the external audits.

● Knowledge of current industry best practices and standards, local/international security and compliance guidance.

● Strong time management, communication and prioritization skills.

● Ability to work with Technical and Non- Technical business owners.

● Knowledge of current industry best practices and standards, local/international security and compliance guidance.

● Conducting deep dives into specific areas of focus based on Risk and Regulatory priorities as and when needed.

● Proficiency in reviewing and assessing process flows to detect potential risks, deficient controls, duplicated effort, extravagance, and fraud, non-compliance with laws, regulations, and management policies.

● Partners with other Operations Managers to ensure timely and effective delivery for all audit requirements.

● Contribute to the Group ISMS content development, maintenance and maturity.

● Experience driving matrixed project planning and execution to deliver and sustain privacy compliance

Required Qualifications

● Bachelor/Master of Science degree. Computer Science, Engineering, Telecommunications or management degree(would be advantage)

● 6+ years’ experience in audits and compliance management

● Excellent communication skills in English (French would be a nice to have)