Orion · 9 hours ago
Security Governance, Risk & Compliance Analyst
Lehi
Full-time
Hybrid
Mid, Senior Level
$87K/yr - $134K/yr
5+ years expOrion is a company that values collaboration and innovation, and they are seeking a Security Governance, Risk & Compliance Analyst to support their Security and Governance department. The role involves maintaining and enforcing security and privacy policies, ensuring compliance with regulatory requirements, and managing information security risk assessments.
AccountingFinancial ServicesTrading Platform
Responsibilities
Assist the Deputy Information Security Officer with policy enforcement and procedures review throughout the organization, including general security policies, manuals, and associated exception processes
Manage the Information Security Management System (ISMS) policy. Review and make updates as appropriate. Perform and maintain records of the review processes contained therein to achieve ISO 27001 compliance
Assist in the development and maintenance of any information security polices ancillary to the ISMS
Ensure Information Security SOC Controls are effectively managed and completed appropriately
Complete due diligence requests from both internal and external sources
Manage SaaS solutions utilized by the GRC team
Perform information security risk assessments on third party partners (eg. vendors, suppliers, etc.)
Participate in all information security audit initiatives (e.g. ISO, SOC, etc.)
Assist in enterprise-wide regulatory compliance initiatives
Engage business units to ensure governance and compliance policies and practices are followed and documented
Assist in the development, maintenance, and use of organizational-level security frameworks for incident response, business continuity and disaster recovery
Support the GRC program and promote a culture of security awareness throughout the organization
Qualification
Required
5 years of experience in Information Technology, with at least 3 years in Information Security required
Knowledge of security frameworks and compliance regulations. (ISO, SOC, NIST, GDPR, CCPA)
Ability to work with various departments to develop controls and procedures which meet the security and regulatory requirements of the organization
Knowledge of enterprise security programs and the ability to support the business needs and balance them with security and regulatory requirements
One of the following certifications or the ability to obtain within twelve months: CISSP, CCSP, CISA, CISM
Ability to interface and collaborate with all areas of the organization
Owns and manages relationships with stakeholders directly and work effectively with people at all levels in an organization
Benefits
Health, dental, vision, and disability coverage on day one
401(k) plan with employer match
Paid parental leave
Pet benefits including pawternity leave and pet insurance
Student loan repayment
Company
Orion
Orion is a wealthtech powerhouse delivering an integrated suite of fully connected, disruptive technology and investment solutions on an open architecture platform.
1001-5000 employees
H1B Sponsorship
Orion has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2020 (1)
Funding
Current Stage
Late StageLeadership Team
Chad Boyer
Chief Technology Officer
Mustapha Baassiri
Chief Technology Officer
Recent News
GlobalFinTechSeries
2025-09-12
Company data provided by crunchbase