Cybersecurity Jobs List logo

Cybersecurity Jobs List

  1. Home
  2. Jobs
  3. Compliance
  4. Security GRC Analyst
PA

Security GRC Analyst

Paysend
Posted onFeb 20, 2026
LocationWorldwide (Remote)
Employment typeFull-time

About The Role:

Reporting to the Security GRC Lead, we are seeking a detail-oriented Information Security GRC Analyst to join our security team and help support and operationalize Governance, Risk, and Compliance processes. In this role, you will be the guardian of our digital supply chain, responsible for evaluating the security posture of our third-party vendors and partners. You will be a risk advisor, helping the business make informed decisions about who we trust with our data. Additionally, you will play a key role in our internal compliance programs, helping us prepare for audits (SOC 2, ISO 27001, PCI DSS, etc.) and driving the remediation of security gaps.


What You'll Do (Responsibilities):

You should be enthusiastic about:

  • Security risk and controls management alongside a team of outstanding colleagues in the FinTech industry sector

  • Thriving and growing in a fast-paced FinTech environment and being able to pivot priorities to adapt
    quickly to a constantly evolving & demanding Security GRC landscape

  • Staying up-to-date on current emerging cybersecurity trends

As a Security GRC Analyst, you will be responsible for:

  • Supplier Due Diligence: Manage the end-to-end vendor risk assessment lifecycle. Review "due
    diligence packages" including SOC 2 Type 2 reports, ISO 27001 certificates, questionnaires, and
    penetration test summaries to validate vendor security controls against Paysend Supplier Security Policy.

  • Continuous Monitoring: Maintain the organization’s Vendor Inventory and Risk Register.
    Conduct periodic reassessments of critical vendors to ensure ongoing compliance, particularly
    in alignment with DORA requirements for ICT service providers.

  • Evidence Collection: Assist with audit activities by collecting and validating evidence from
    stakeholders (IT, HR, Engineering). Ensure evidence is accurate, complete, and mapped to the
    relevant controls (e.g., NIST 800-53, ISO 27001).

  • Support periodic internal reviews (mock audits) to identify non-compliance issues. Document
    findings and work with control owners to implement remediation solutions.

  • Assist with the development and annual review of policies, standards, procedures, and
    guidelines.

  • Maintain Security Confluence pages and ensure they are kept up to date with relevant
    information

  • Assist with the design and operational execution of employee training curricula required for
    GRC/compliance requirements

  • Support the response to customer security questionnaires, RFPs, and inquiries about our
    Security & Compliance program.

  • Support ongoing activities related to Paysend DORA compliance.

What You’ll Need To Be Successful In This Role:

  • Bachelor's degree in IT, Cybersecurity, Business, or equivalent experience.

  • 3-5 years working in GRC, IT Audit, or TPRM roles.

  • Familiarity with at least two of the following cybersecurity frameworks or regulations including:
    ISO 27001, PCI-DSS, SOC 2 Type II, NIST CSF and/or DORA.

  • Experience drafting and revising global cybersecurity policies and standards.

  • Team player and motivated self-starter who is resourceful and has the ability to work
    collaboratively with multiple stakeholders across different products, business lines, and regions

  • Excellent written communication skills with the ability to document, communicate, and report
    on cybersecurity risks as well as the status of the implementation and effectiveness of
    cybersecurity controls with product and business leaders

  • Excellent verbal communication skills with the ability to translate complex technical concepts
    into business language

  • Excellent command of the English language (written and spoken)


Nice To Have:

  • Basic understanding of cloud infrastructure (AWS/Azure) to better evaluate cloud vendors.

  • Hands-on experience configuring workflows in ServiceNow Vendor Risk Management, Vanta,
    Drata, or OneTrust.

Why Join Paysend?

  • Make a Global Impact:Directly impact millions of users worldwide

  • Accelerate Your Career:Benefit from internal mobility, mentoring programs, and continuous learning opportunities

  • Thrive in a Connected, Global Organization:Collaborate with colleagues across our international hubs and more

  • Embrace a Principle-Driven & Focused Culture:Work in an organization guided by strong principles and values that actually help you achieve more than you thought possible

  • Enjoy Competitive Compensation and Benefits:Receive a competitive salary, benefits, and flexible work arrangements

Compliance
Governance, Risk, and Compliance (GRC)
Information Security
IT Audit
Vendor Risk Management
AWS
Azure
Confluence
DORA
Governance, Risk, and Compliance (GRC)
ISO 27001
IT Audit
NIST 800-53
NIST CSF
PCI-DSS
ServiceNow
SOC 2
Third-Party Risk Management (TPRM)
Vanta
Vendor Risk Management

Paysend

View company profile

Paysend is a global fintech company building the world's largest open, instant digital payment network, enabling people and businesses to send money to over 170 countries with simple, secure, and low-cost transfers.

Similar jobs

You might also be interested in...

CR2w

Staff GRC Risk Specialist

Crusoe

San Francisco, California, United States (On-site)

$130k – $170k Yearly

LA3w

Senior Security GRC Analyst

Lambda

San Francisco, California, United States (Hybrid)

$154k – $200k Yearly

TW2w

Cybersecurity GRC Manager

Talent Worx

Mumbai, Maharashtra, India (On-site)

AL3w

GRC Analyst

Acrisure LLC

Oklahoma City, Oklahoma, United States (On-site)

MI2w

Senior Associate, IT, Information Security - Governance, Risk & Compliance (GRC) Analyst

MUFG Investor Services

Dublin, County Dublin, Ireland (Hybrid)

Apply now