Security Analyst at Blend

| San Francisco
Sorry, this job was removed at 12:52 p.m. (PST) on Wednesday, May 13, 2020
Find out who's hiring in San Francisco.
See all Operations jobs in San Francisco
Apply now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.
Blend makes the process of getting a loan simpler, faster, and safer. With its digital lending platform, Blend helps financial institutions including Wells Fargo and U.S. Bank increase productivity and deliver exceptional customer experiences. The company processes nearly $2 billion in loans daily, helping millions of consumers gain access to the capital they need to lead better lives.
As a Security Analyst, you’ll focus on our new business partnerships and third-party risk at Blend. You’ll collaborate with peers across departments to build out the structure for a scalable third party risk management system. This means that you’ll exercise your problem solving skills to answer tough questions about risk tolerance and figure out right approaches to mitigating partnership risk.
Additionally, you will enable the business to move into new areas of focus by providing broad-ranging security guidance to our Product and Engineering teams. We’ll lean on you to give the Security team a clear outlook on how much risk we are exposed to outside the bounds of the company, and you’ll help communicate that message to leadership. Our responsibility is to keep a finger on the pulse of Blend security, and your role is essential for ensuring that we can do that effectively!

How you'll contribute:

  • Own the pipeline for new partnerships and vendor risk assessments at Blend
  • Review agreements with third parties, and flag obligations or missing provisions that could expose the company to more risk
  • Develop new approaches to quantify risk, and make recommendations on how and when to address risk while supporting business initiatives
  • Drive improvements to the third-party risk management program, and build up a methodology for asking tough questions to our partners in the fintech space
  • Identify opportunities for automation, and help spec out efficient solutions for improving security controls that currently require manual effort to maintain
  • Keep key security collateral up-to-date, draft procedural documentation, perform deep dive assessments, and stay up-to-date with new business opportunities so that the team is prepared to adapt to changes to our risk landscape

Who you are:

  • Experience running due diligence assessments with third-parties (either as the assessor or the third party being assessed)
  • Strong working knowledge of SOC, PCI, NIST, and other relevant security frameworks
  • Demonstrated ability to apply rigorous tests to key security controls at an arm's length, in order to identify potential weaknesses in partner security programs
  • Exposure to cloud-based technologies such as AWS, Hashicorp, and Kubernetes
  • Strong time management skills and the ability to prioritize among multiple projects

Bonus Points!

  • BA/BS degree in relevant field preferred (e.g., Information Systems, Computer Science)
  • 2+ years of information security experience implementing and leading security controls and policies
  • Security industry certifications (CISA, CISSP, Security+, SSCP, etc.)
  • Exposure to governance frameworks such as COBIT, NIST, ITIL, ISO, FISMA, FedRAMP, HIPAA or HITRUST
  • Working proficiency in Python, Javascript, Go, or other programming languages

Benefits and Perks:

  • Meaningful equity and a 401(k) plan
  • Comprehensive health benefits
  • Sponsored gym memberships, ClassPass credits, or wellness stipend.
  • Lunch, dinner, snacks, and Pizza Fridays
  • On-site meditation, yoga, and massages
  • Flexible work schedule, with open vacation policy
  • 4 months of paid parental or personal leave
  • Convenient location, with parking programs, and flexible commuter options

Blend is an equal opportunity employer that values diversity, inclusion and belonging. We do not discriminate on the basis of race, religion, color, national origin, gender, gender identity or expression, sexual orientation, age, marital status, veteran status disability status, or any other characteristic protected by law. We will consider for employment all qualified applicants with arrest and conviction records in a manner consistent with applicable law, including the San Francisco Fair Chance Ordinance.
Notice at Collection for California Applicants 

Read Full Job Description
Apply now
By clicking continue you agree to Built In’s Privacy Policy and Terms of Use.

Technology we use

  • Engineering
    • GolangLanguages
    • JavascriptLanguages
    • PythonLanguages
    • SqlLanguages
    • ReactLibraries
    • AngularJSFrameworks
    • Node.jsFrameworks
    • MongoDBDatabases

Location

415 Kearny Street, San Francisco, CA 94108

What are Blend Perks + Benefits

Culture
Volunteer in local community
Partners with Nonprofits
Friends outside of work
Eat lunch together
Intracompany committees
Daily stand up
Open door policy
Team owned deliverables
Team based strategic planning
Group brainstorming sessions
Open office floor plan
Diversity
Dedicated Diversity/Inclusion Staff
Unconscious bias training
Diversity manifesto
Someone's primary function is managing the company’s diversity and inclusion initiatives
Health Insurance & Wellness Benefits
Flexible Spending Account (FSA)
Disability Insurance
Dental Benefits
Vision Benefits
Health Insurance Benefits
Life Insurance
Wellness Programs
Team workouts
Acme Co.'s team fitness initiatives include In-office yoga.
Retirement & Stock Options Benefits
401(K)
Company Equity
Employee Stock Purchase Plan
Child Care & Parental Leave Benefits
Generous Parental Leave
Flexible Work Schedule
Family Medical Leave
Company sponsored family events
Acme co. sponsors family oriented events Semi-annually.
Vacation & Time Off Benefits
Unlimited Vacation Policy
Paid Volunteer Time
Paid Holidays
Perks & Discounts
Beer on Tap
Casual Dress
Commuter Benefits
Company Outings
Free Daily Meals
Stocked Kitchen
Pet Friendly
Acme Co.'s pet policy is dog friendly daily.
Recreational Clubs
Relocation Assistance
Fitness Subsidies
Professional Development Benefits
Job Training & Conferences
Diversity Program
Lunch and learns
Acme Co. hosts lunch and learn meetings on occasion.
Promote from within
More Jobs at Blend25 open jobs
All Jobs
Finance
Data + Analytics
Design + UX
Dev + Engineer
Legal
Marketing
Operations
Product
Sales
Design + UX
new
San Francisco
Operations
new
San Francisco
Finance
new
San Francisco
Developer
new
San Francisco
Sales
new
San Francisco
Developer
new
San Francisco
Operations
new
San Francisco
Data + Analytics
new
San Francisco
Developer
new
San Francisco
Developer
new
San Francisco
Product
new
San Francisco
Marketing
new
San Francisco
Finance
new
San Francisco
Developer
new
San Francisco