Symple Lending

www.symplelending.com

1 Job

70 Employees

About the Company

Symple Lending is an innovative fintech company that delivers sustainable solutions to consumers at various milestones in their lives. Financial freedom is the ultimate destination, but the road to get there is a long and winding one, marred with uneven pavement and unexpected detours. Our customers know that when they face a last-minute surprise, we can provide a fast injection of capital to help them keep moving along life's journey.

Listed Jobs

Company Name: Symple Lending
Job Title: Security Specialist (Junior CISO) – SOC 2 & PCI Compliance
Job Description: **Job Title** Security Specialist (Junior CISO) – SOC 2 & PCI Compliance **Role Summary** Security professional responsible for leading SOC 2 Type II and PCI DSS compliance programs, managing audits, enforcing security policies, and partnering with engineering to ensure secure cloud architecture and operations within a fast‑growing fintech environment. **Expectations** - 2–6 years of experience in security, GRC, compliance, or security engineering. - Proven ability to drive audit readiness, remediation, and continuous compliance. - Strong communication and cross‑functional collaboration skills. - Commitment to advancing toward a CISO leadership role. **Key Responsibilities** - Own SOC 2 Type II and PCI DSS audit preparation, control testing, and remediation. - Develop, maintain, and enforce security policies, standards, and documentation. - Partner with engineering to design and review secure AWS cloud architectures and system deployments. - Conduct vulnerability management, secure SDLC monitoring, and incident response coordination. - Manage penetration testing activities and vendor risk assessments. - Deliver employee security awareness training. - Influence and contribute to the security roadmap and overall posture improvement. **Required Skills** - Hands‑on experience with SOC 2 and PCI compliance frameworks. - In‑depth knowledge of AWS security (IAM, encryption, cloud security tools). - Ability to assess security risks in integrations and deployments. - Proficiency in vulnerability management and incident response processes. - Excellent written and verbal communication; effective stakeholder engagement. **Required Education & Certifications** - Bachelor’s degree in Computer Science, Information Security, or related field (or equivalent experience). - Relevant certifications are a plus: Security+, CISA, CCSP, CISM, CISSP (Associate acceptable).