At Beyond Finance, we've made it our mission to help everyday Americans escape the endless cycle of crippling debt and step into a brighter financial future. Through compassionate, individualized care, a culture focused on compliance and ethics, supportive user-centric technology, and customized financial solutions, we've helped over 700,000 clients on their path to a brighter future.
While we're proud of what we've already accomplished, we're searching for new collaborators to help us get to the next level! If you're looking to join a forward-thinking, rapidly growing organization with helping people as its number one goal, we want to hear from you.
Job Summary:
We are seeking a detail-oriented and experienced Information Security Auditor to join our growing IT security and compliance team. The ideal candidate will support the organization in ensuring adherence to regulatory standards, maintaining compliance frameworks, lead audits and assessments related to PCI DSS and other IT security policies. This role involves collaborating with multiple departments to enhance security and compliance measures effectively.
What You’ll Do:- Lead and manage internal and external audit engagements, serving as the primary point of contact for auditors and ensuring timely and accurate completion of audit requests.
- Ensure the organization's compliance with PCI DSS and SOC 2 standards by implementing controls, conducting assessments, and managing remediation plans.
- Policy and Procedure Development: Assist in the creation, review, and updating of IT security and compliance policies to align with regulatory requirements.
- Risk Assessment & Mitigation: Identify compliance risks, conduct risk assessments, and recommend corrective actions to minimize security vulnerabilities.
- Audit Support & Documentation: Prepare and maintain audit documentation, facilitate internal and external audits, and coordinate responses to compliance inquiries.
- Training & Awareness: Conduct training sessions and awareness programs to educate employees on compliance requirements and best practices.
- Vendor Compliance Management: Assess third-party vendors for compliance with PCI DSS and other relevant security standards.
- Regulatory Monitoring: Stay updated on regulatory changes and emerging compliance trends to ensure the organization remains compliant with evolving requirements.
- Collaboration: Work closely with IT, Security, Legal, and Business units to integrate compliance measures into daily operations.
- Internal Security Assessor (ISA), Qualified Security Assessor (QSA), PCI Professional (PCIP), Certified Information Systems Auditor (CISA), Certified Information Security Manager (CISM), or other relevant certifications.
- Bachelor's degree in Information Technology, Cybersecurity, Business, etc. or equivalent years of experience.
- 5+ years of experience in IT compliance, IT security, or a related field.
- Hands-on experience with PCI DSS compliance. Familiarity with other compliance frameworks such as ISO 27001, SOC 2, HIPAA, GDPR is a plus.
- Understanding of IT security controls and best practices. Experience with compliance assessment tools and audit methodologies. Knowledge of network security, encryption, and data protection practices.
- Strong analytical and problem-solving abilities. Excellent communication and interpersonal skills. Ability to work independently and manage multiple projects simultaneously. Detail-oriented with a strong commitment to accuracy and compliance.
#LI-SB1
The base annual salary range is listed below. This role is eligible for additional incentives, including an annual bonus.
Why Join Us?
While you make a difference for others, we’ll work to make a difference for you, providing an uplifting, collaborative work environment and benefits that reflect your value to us. For eligible full-time employees, we offer:
- Considerable employer contributions for health, dental, and vision programs
- Generous PTO, paid holidays, and paid parental leave
- 401(k) matching program
- Merit advancement opportunities
- Career development & training
And finally, our team spirit and culture! We cultivate an environment of community, connection, and belonging across our entire organization.
Beyond Finance does not accept unsolicited resumes from individual recruiters or third-party recruiting agencies in response to job positions. No fee will be paid to their parties who submit unsolicited candidates directly to Beyond Finance employees or the Beyond Finance HR team. No placement fee will be paid to any third party unless such a request has been made by the Beyond HR team.
Top Skills
Beyond Finance Chicago, Illinois, USA Office
Our Chicago offices overlook the river and its historic surrounding architecture; the Houston offices offer beautiful views of the city and provide a space for our Texas employees to come together; and our San Diego location allows employees to spend their downtime on the hammocks and putting green.
Similar Jobs at Beyond Finance
What you need to know about the Chicago Tech Scene
Key Facts About Chicago Tech
- Number of Tech Workers: 245,800; 5.2% of overall workforce (2024 CompTIA survey)
- Major Tech Employers: McDonald’s, John Deere, Boeing, Morningstar
- Key Industries: Artificial intelligence, biotechnology, fintech, software, logistics technology
- Funding Landscape: $2.5 billion in venture capital funding in 2024 (Pitchbook)
- Notable Investors: Pritzker Group Venture Capital, Arch Venture Partners, MATH Venture Partners, Jump Capital, Hyde Park Venture Partners
- Research Centers and Universities: Northwestern University, University of Chicago, University of Illinois Urbana-Champaign, Illinois Institute of Technology, Argonne National Laboratory, Fermi National Accelerator Laboratory
