Information Security Lead at Earned Wealth | Hybrid Hired

About the role

Information Security Lead responsible for security posture and compliance initiatives at Earned Wealth. Collaborating across teams to enhance policies and manage risk assessments effectively.

Responsibilities

Lead and support SOC 2 Type I & II, SEC S-P, ISO 27001, and CCPA initiatives, including leading engagements with external firms and consultants as necessary.
Maintain and enhance core security and compliance policies (WISP, CDISP, Access, Privacy, Intercompany Agreements).
Inform and lead the implementation of data and other access permissions consistent with security and compliance policies in close partnership with engineering.
Develop scalable, repeatable processes to unify acquired firms into Earned’s security and compliance program.
Conduct risk assessments and maintain a shared risk register with remediation tracking.
Support identity and access governance (MFA/SSO reviews, onboarding/offboarding, quarterly access reviews).
Run vendor risk assessments for new and renewing vendors.
Manage evidence collection, asset inventory, and security compliance platforms such as Vanta or Drata.
Assist with incident documentation, timelines, and corrective actions.

Requirements

Bachelor’s degree in relevant field
5+ years in GRC, IT audit, security operations, or compliance
Experience in organizations scaling through both organic and inorganic (M&A) growth
Familiarity with HITRUST, SOC 2, SEC S-P, NIST CSF, ITGC, and vendor risk frameworks
Experience designing and implementing scalable evidence systems, compliance workflows, metrics pipelines, and exception processes
Ability to integrate GRC systems with cloud and SaaS environments for automated evidence collection and continuous monitoring
Strong documentation, organization, and communication skills
Ability to work independently in a fast-paced, small-team environment

Benefits

An attractive total compensation package
Employer-sponsored health insurance (medical, dental, vision)
401k + **5%** match

Similar roles

Browse all Security Engineer jobs

40 minutes ago

BO

Senior Product Security Engineer

Boeing

Senior Product Security Engineer at Boeing responsible for leading product security engineering initiatives and advancing security capabilities across the enterprise. Driving consistency in engineering practices and fostering secure design culture.

Hybrid Role

United States Security Engineer

$221,000 - $345,000 per year

1 hour ago

U.

Adjoint RSSI – Expert cybersécurité

U.Neat

Consultant specializing in cybersecurity overseeing the implementation and operational monitoring of cybersecurity projects. Focused on securing IT infrastructures and liaising with various stakeholders.

Hybrid Role

Paris France Security Engineer

2 hours ago

US

Enterprise Account Executive – Eastern Canada

Upwind Security

Enterprise Account Executive responsible for building customer relationships and driving sales for Upwind’s Cloud Security solutions in Eastern Canada.

Onsite Role

Toronto Canada Security Engineer

2 hours ago

BG

Senior IoT Security Consultant

Bureau Veritas Group

Senior IOT Security Consultant advising clients on OT and IoT security infrastructures for various projects. Supporting digital transformation and Industrie 4.0 initiatives.

Onsite Role

Ratingen Germany Security Engineer

2 hours ago

CI

Security Manager

Cookie Information

Security Manager responsible for operational security and compliance at DSV. Collaborating with law enforcement and ensuring safety in Swedish transport operations.

Onsite Role

Landskrona Sweden Security Engineer

3 hours ago

MA

Becario en Seguridad

MAPFRE

Intern in Security at MAPFRE working on SCA security platform development and team collaboration for international projects.

Onsite Role

Majadahonda Spain Security Engineer

€700 per month

3 hours ago

SI

Physical Security Coordinator

Sicredi

Coordination of Physical Security for Sicredi's Monitoring Operations, managing teams and overseeing operational procedures. Focused on electronic security and risk management for assets and personnel.

Hybrid Role

Porto Alegre Brazil Security Engineer

3 hours ago

KU

Senior Security Architect

KUBRA

Senior Security Architect at KUBRA designing and implementing security solutions across cloud environments. Overseeing security in application and database platforms with a focus on AWS.

Hybrid Role

Mississauga Canada Security Engineer

CA$130,000 - CA$160,000 per year

3 hours ago

NE

Food Safety and Quality Support Officer

Nestle

Internship in food safety and quality support at Nestlé in Dieppe, France. Responsibilities include developing quality standards and supporting quality culture initiatives.

Onsite Role

Dieppe France Security Engineer

3 hours ago

AT

Safety, Physical Security & Data Protection Officer

Atos

Safety, Physical Security & Data Protection Officer structuring safety policies in a multi - site environment at Eviden. Focused on data protection and compliance in France.

Onsite Role

Bezons France Security Engineer