About OnePay

OnePay is a consumer financial services app with an exceedingly simple mission: to help people achieve financial progress.

Tens of millions of Americans today are unbanked or underbanked, meaning they don’t have enough money in savings to cover a minor emergency. They pay too much in fees, don’t have access to credit at affordable rates, and have little ability to grow their wealth. OnePay’s vision is to create a single app for consumers to save, spend, borrow, and grow their money, bringing our mission to life with simple and accessible banking, credit, and payments products that deliver a best-in-class experience to millions of customers. Our products include:

• Checking and high-yield savings accounts

• Domestic and international peer-to-peer payments

• Credit Builder and credit score monitoring

• Digital wallet / contactless payment solutions

• Buy-now-pay-later installment loans at Walmart

Why do we have a right to win? We have the backing of Walmart (a Fortune 1) and Ribbit Capital (a preeminent fintech investor), are deeply embedded with the distribution of the world’s largest omnichannel retailer, and have an industry-leading multi-product value proposition — all in addition to having some of the best people and talent in the industry.

There’s never been a better time to build a category-defining business and there has rarely been a team better positioned for the opportunity. Join us!

The role

As a GRC Engineer, you will be instrumental in the oversight and operation of OnePay's Information Security program, including its third party risk management program. You will have the opportunity to manage and execute OnePay's information security risk management processes, including performing third party due diligence reviews, managing identified security risks, and working on assessments conducted by other independent parties, such as auditors, partners, and vendors. You will also have opportunities to identify control & process gaps and lead efforts to remediate such gaps.

This role is responsible for: 

• Performing appropriate due diligence on OnePay's third-party vendors and partners’ capabilities around data protection, business continuity, and platform security.

• Review contractual agreements and documents to ensure they meet internal standards and requirements for information security and privacy. 

• Engage with both technology and business teams as a consultant for any security-related issues that affect OnePay's product features and offerings. 

• Identify and track security risks throughout OnePay's environment and drive them to remediation with the appropriate stakeholders. 

• Assist in audits conducted by external parties by performing internal readiness assessments, facilitating walkthroughs with key stakeholders, gathering relevant evidence, and driving remediation of any gaps identified. 

• Assist in reviewing OnePay's compliance with privacy requirements and regulations as part of its product operations.

You bring

• 10+ years of experience in information security, internal and third party risk management, and/or audit management. 

• Strong knowledge of various industry standard frameworks such as NIST, SOC 2, PCI DSS, HiTrust, etc.

• Thorough knowledge of enterprise-scale security architecture, cloud security, and business continuity program best practices.

• The ability to explain security concepts to both technical and non-technical stakeholders.

• Domain knowledge of multiple disciplines including IT systems, networking, security, and compliance. 

• Relevant certifications (such as AWS Certified Solutions Architect, CISSP, etc.) are a plus.

What We Offer

• Competitive salary, stock options, and benefits from Day 1

• Comprehensive health insurance coverage (health insurance, accident and disability insurance, term life insurance), including mental health support and wellness programs

• Hybrid work model (Bengaluru office three days a week), various time off programs (vacation, sick, other paid leaves, and paid regional holidays)

• Monthly transport and work-from-home allowances

• A high-growth, mission-driven, inclusive culture where your work has real impact

Standard Interview Process

• Initial Interview with Talent Partner

• Technical or Hiring Manager Interview

• Team Interview

• Executive Interview

• Offer!

Equal Employment Opportunity

To build technology and products that are used and loved by people and solve real-world problems, we need to build a team with many different perspectives and experiences. We are an equal opportunity employer. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. We encourage candidates from all backgrounds to apply. Applicants in need of special assistance or accommodation during the interview process or in accessing our website may contact us at talent@onepay.com.