Staff Security Engineer, GRC

Bengaluru, Karnataka
Security /
Full Time /
Hybrid
Greenlight is the leading family fintech company on a mission to help parents raise financially smart kids. We proudly serve more than 6 million parents and kids with our award-winning banking app for families. With Greenlight, parents can automate allowance, manage chores, set flexible spend controls, and invest for their family’s future. Kids and teens learn to earn, save, spend wisely, and invest. 

At Greenlight, we believe every child should have the opportunity to become financially healthy and happy. It’s no small task, and that’s why we leap out of bed every morning to come to work. Because creating a better, brighter future for the next generation depends on it.

We are looking for a Staff Security Engineer, GRC that will have a huge impact on the Security Governance, Risk, Compliance & Trust program of Greenlight at our Bengaluru, Karnataka, India office. This critical position offers the opportunity to make a significant and lasting impact on Greenlight's cybersecurity program.

What you will be doing:

    • Lead and execute security projects, that are identified by the Security leadership, from start to finish
    • Develop and maintain documentation relevant to the IT SOX Program, including IT Risk Control Matrix (RCM), process narratives, flowcharts, and more.
    • Develop and deliver security awareness programs, including security awareness training, phishing simulations, to educate employees on best practices and security threats
    • Perform internal security assessments with industry best practices/frameworks (i.e. PCI DSS, SOC 2, ISO 27001, NIST CSF, NIST 800-53, CIS, etc.) to identify, prioritize, and mitigate vulnerabilities and process improvement opportunities across Greenlight's systems and infrastructure.
    • Implement and configure toolings for continuous security compliance monitoring
    • Implement and configure toolings for data security, vulnerability management, privacy security, etc
    • Utilize tooling to automate Security GRC & Trust team’s tasks
    • Support and lead other Security GRC & Trust projects (i.e. Infosec Policies, Security Awareness, security risk management, third-party risk management, data and privacy security, etc) when necessary
    • Foster a culture of trust and accountability by collaborating with internal stakeholders (Engineering, Security Operations, IT, Legal, etc) to ensure alignment and effectiveness of the Security GRC & Trust program
    • Develop, implement, and oversee a comprehensive Security GRC & Trust program aligned with industry best practices and regulatory requirements (e.g., SOC 1, SOC 2, ISO, PCI, NIST CSF, IT SOX)

What you should bring:

    • Must be a team player 
    • 7+ years of information security, security governance, risk management, and compliance, security engineering
    • Experience with implement and configure Security GRC relevant tools
    • Knowledge of scripting languages, such as Python
    • Knowledge of Java and Javascript is a plus
    • In-depth knowledge of industry best practices and security frameworks (e.g., NIST CSF, ISO 27001, SOC 2, SOC 1, PCI DSS, IT SOX).
    • Strong understanding of relevant privacy security regulations (e.g., GDPR, CCPA, etc.)
    • Knowledge of AWS, CI/CD process, Containers/Kubernetes, Netsuites and common Security tooling stack for enterprise technology companies
    • Excellent communication, collaboration, and influencing skills.
    • Ability to manage multiple priorities and deadlines in a fast-paced environment.
    • Strong analytical and problem-solving skills.

Work perks at Greenlight:

    • Health Insurance of 8 Lacs per annum, family floater
    • Term Life Insurance
    • Amazing Flexible benefits basket to structure and optimize tax
    • Paid company holidays and pop-up bonus holidays 
    • 1:1 financial planners
    • Hybrid working model
    • Fully stocked kitchen, catered lunches, and occasional happy hours parties
    • Employee resource groups



Who we are:
It takes a special team to aim for a never-been-done-before mission like ours. We’re looking for people who love working together because they know it makes us stronger, people who look to others and ask, “How can I help?” and then “How can we make this even better?” If you’re ready to roll up your sleeves and help parents raise a financially smart generation, apply to join our team.

Greenlight is an equal opportunity employer and will not discriminate against any employee or applicant based on age, race, color, national origin, gender, gender identity or expression, sexual orientation, religion, physical or mental disability, medical condition (including pregnancy, childbirth, or a medical condition related to pregnancy or childbirth), genetic information, marital status, veteran status, or any other characteristic protected by federal, state or local law.