Security Compliance Analyst at Zip

San Francisco, California, United States

Apply Now

Not SpecifiedCompensation

Mid-level (3 to 4 years)Experience Level

Full TimeJob Type

UnknownVisa

Technology, Procurement, Enterprise SoftwareIndustries

Requirements

Bachelor’s degree in a related field
2+ years of experience in GRC, information security consulting, cybersecurity risk, audits, or similar roles
Strong written and verbal communication skills with both technical and non-technical stakeholders
Familiarity with and participation in one or more of the following frameworks: ISO 27001, SOC 1, SOC 2, FedRAMP, PCI DSS
Familiarity with information security fundamentals for cloud software systems
Professional certifications in information security (nice to have)

Responsibilities

Drive and perform periodic compliance-related activities, such as user access reviews, internal audits, and third party risk management
Develop, implement, and improve core compliance projects, such as leading security awareness training initiatives and helping drive adoption of best practices across the company
Curate responses for customer due diligence and security questionnaires and maintain our security knowledge base
Collaborate with internal stakeholders and external auditors to support third party audits including SOC 1, SOC 2, and ISO 27001
Develop, maintain, and lead the adoption of security policies, standards, and guidelines to ensure compliance with applicable regulatory requirements

Skills

Key technologies and capabilities for this role

GRCComplianceSecurity AssuranceRisk ManagementUser Access ReviewsCertificationsAI Security

Questions & Answers

Common questions about this position

Is this a remote or hybrid role?

This is a hybrid position.

What salary or compensation is offered for this role?

This information is not specified in the job description.

What qualifications and skills are required for the Security Compliance Analyst position?

Candidates need a Bachelor’s degree in a related field, 2+ years of experience in GRC, information security consulting, cybersecurity risk, audits, or similar roles, strong written and verbal communication skills, and familiarity with frameworks like ISO 27001, SOC 1, SOC 2, FedRAMP, or PCI DSS.

What is the company culture like at Zip?

Zip has a world-class team from companies like Airbnb, Meta, Stripe, Salesforce, Apple, and Google, with a focus on developing cutting-edge technology, expanding into new global markets, and driving incredible value for customers in a fast-growing environment.

What makes a strong candidate for this GRC Analyst role?

A strong candidate will have 2+ years in GRC or related fields, experience with compliance frameworks like SOC 2 or ISO 27001, and excellent communication skills to collaborate with stakeholders and drive compliance programs.

Zip

Provides buy now, pay later services

About Zip

Zip Co offers buy now, pay later (BNPL) services that allow consumers to make purchases and pay for them over time without interest. Its main products, Zip Pay and Zip Money, cater to different spending needs, with Zip Pay for everyday purchases and Zip Money for larger expenses. The service works by enabling users to shop at partnered retailers and manage their payments through a clear and transparent system, where they can see how much they owe and when payments are due. Unlike many competitors, Zip focuses on providing flexible payment options and a straightforward fee structure, generating revenue through merchant fees, late fees, and interest on select products. The company's goal is to simplify the purchasing process for consumers while expanding its market presence across various countries.

Sydney, AustraliaHeadquarters

2013Year Founded

$972.7KTotal Funding

IPOCompany Stage

Fintech, Consumer GoodsIndustries

1,001-5,000Employees

Benefits

Parental leave - Enjoy up to 20 weeks paid leave and return part-time on a full-time salary for 3 months!

Bonus scheme - We give you skin in the game through our various share incentive programs.

Family support - We support our ZipFam on their life journey through people policies and programs.

Volunteer leave - Use your paid volunteer leave to Zip it forward and create change in your community.

Reward & recognition - We love celebrating your wins and giving you the freedom to choose how you're rewarded.

Career growth - You'll be given clear progression pathways and transparent coaching so you can truly flourish.

Risks

Increased competition from tech giants like Apple could threaten Zip's market share.

Regulatory changes in Australia may impact Zip's profitability and operations.

Reliance on partners like Stripe ties Zip's success to their platform stability.

Differentiation

Zip offers interest-free BNPL services, enhancing consumer financial flexibility.

The company operates in diverse markets, including Australia, the US, and the UK.

Zip's partnerships with retailers improve shopping experiences and financial management for consumers.

Upsides

Zip's potential partnership with Apple could significantly boost its US market presence.

Integration with Stripe allows easy BNPL access for US merchants, expanding Zip's reach.

The rise of in-store BNPL usage in the US shows growing consumer adoption.

Land your dream remote job 3x faster with AI

Try Jobo Free