Logo for Prosper Marketplace

Sr. GRC Analyst

Role overview

Qualifications

  • B.S. degree in Computer Science, Information Systems, Cyber Security, or related technical field
  • 5–7 years of GRC or Security Engineering experience, ideally within a SaaS, FinTech, or Cloud-native company
  • Solid understanding of Cloud Security compliance (AWS/Azure/GCP)
  • Technical Scripting Skills: Hands-on working experience with command line and scripting languages (Python, Bash, Powershell, etc)

Responsibilities

  • Review, audit, and monitor security compliance programs against frameworks like PCI-DSS, NIST CSFv2, and SOC 1/2
  • Identify opportunities to leverage AI tools and LLMs to accelerate risk assessments and streamline process improvements
  • Lead and automate evidence collection for external audits (SOC 1, PCI Level 1)
  • Oversee user access management and quarterly user access reviews

About the company

Prosper Marketplace logo

Prosper Marketplace

Financial Services

Prosper Marketplace, a fintech pioneer with a mission to advance financial wellbeing by providing affordable financial solutions to consumers across the credit spectrum, Prosper's product offering includes personal loans, credit cards, and home equity lines of credit. All personal loans made by WebBank. NMLS #111473 (https://www.nmlsconsumeraccess.org/) Prosper Marketplace is an equal housing lender. The Prosper® Card is an unsecured credit card issued by Coastal Community Bank, Member FDIC pursuant to a license by Mastercard International. (Notes by Prospectus: https://prosper.com/prospectus/)

Company details

Company typeSME
IndustryFinancial Services
Company size501 - 1000

Your match analysis

See how your profile stacks up against this role.

We compared the job requirements to your profile to show where you're strong and where you fall short.

Job description

Your role in our mission

Prosper is seeking a detail-oriented, highly motivated, and automation-focused security compliance professional to support, promote, and further mature the company's Governance, Risk, and Compliance program. In this position, you will blend standard GRC practices (PCI DSS, NIST, SOC 1/2) with a technical mindset, leveraging GRC platforms, scripting and AI tools to automate manual compliance workflows, audit trails, and data gathering.

You will use your strong analytical and technical skills to identify security gaps and build efficient, scalable processes. We are looking for self-driven candidates who want to be part of an innovative FinTech company with a mission to improve the financial well-being of its customers.


How you’ll make an impact
  • Automated Compliance Monitoring: Review, audit, and monitor security compliance programs against frameworks like PCI-DSS, NIST CSFv2, and SOC 1/2, leveraging automation tools to continuously assess control health
  • Process Optimization & AI Integration: Identify opportunities to leverage AI tools and LLMs to accelerate risk assessments, summarize complex regulatory requirements, and streamline process improvements
  • Code-Assisted Evidence Collection: Lead and automate evidence collection for external audits (SOC 1, PCI Level 1), reducing manual overhead for engineering and product teams
  • Identity & Access Management (IAM): Oversee user access management and quarterly user access reviews, exploring ways to automate provisioning audits and detect anomalies
  • Cross-Functional Collaboration: Build and cultivate positive working relationships with engineering, DevOps, and product stakeholders to bake compliance directly into the CI/CD pipeline and cloud infrastructure

  • Skills that will help you thrive
  • Education: B.S. degree in Computer Science, Information Systems, Cyber Security, or a related technical field
  • Experience: 5–7 years of GRC or Security Engineering experience, ideally within a SaaS, FinTech, or Cloud-native company
  • Solid understanding of Cloud Security compliance (AWS/Azure/GCP)
  • Technical & Scripting Skills: Hands-on working experience with command line and scripting languages (Python, Bash, Powershell, etc) to parse logs, query APIs, and automate repetitive GRC tasks
  • AI Savvy: Familiarity with utilizing AI productivity tools, prompt engineering, or LLMs to optimize documentation, drafting, or data analysis
  • Framework Fluency: Experience with security standards/frameworks such as PCI-DSS, NIST (800-53/CSF), and SOC 1/2 Type II
  • Soft Skills: Strong ability to clearly articulate technical risk to non-technical stakeholders and strategically collaborate cross-functionally
  • Certifications: CISSP, CISA, CISM, CCSP, or similar security certifications are a plus

  • Resources to help you prosper
  • A connected experience: We prioritize high-touch collaboration and flexibility. Whether you are working from our San Francisco or Phoenix offices or joining us as a fully remote team member, we provide the digital-first tools and intentional culture to keep you synced and supported
  • Invested in your future: A competitive salary and a 401(k) with a 5% company match to help you build long-term financial security
  • Holistic well-being: We provide the resources you need to thrive, from flexible time off and paid parental leave to an annual wellness allowance and comprehensive health coverage
  • Professional & personal growth: Take advantage of a suite of premium perks, including Udemy access, childcare assistance, pet insurance, and a bevy of additional savings through Beneplace
  • #LI-RC1
    #LI-remote

    Apply once. Then go straight to the hiring manager.

    After you apply, unlock the direct contact details of the people who actually make the call. A quick follow-up makes you 5x more likely to land an interview.

    MR

    Marcus Rivera

    Chief Revenue Officer

    m.rivera@company.com
    linkedin.com/in/marcusrivera
    Unlocked after you apply
    ·

    Related jobs

    Other jobs at Prosper Marketplace

    Premium

    Reach out to the hiring manager directly.

    Gain access to the contact details of the hiring managers who actually decide, and reach out to network with them directly. That, plus more when you upgrade:

    • Full match report with fit score and gaps
    • Career diagnostics on how recruiters read you
    • Curated company matches and warm intros
    • 48h early access to new roles

    Cancel anytime.