Apply on Employer Site

Oportun · 5 hours ago

Security GRC Specialist, Audit & Assurance (R13698)

United States

Full-time

Remote

Mid, Senior Level

$114K/yr - $183K/yr

6+ years exp

Oportun is a mission-driven fintech that empowers members to achieve their financial goals. The Security GRC Specialist, Audit & Assurance will lead audit readiness and assurance initiatives, ensuring compliance with security and regulatory frameworks while collaborating with internal teams and external auditors.

Consumer LendingDebit CardsFinancial ServicesFinTech

H1B Sponsor Likely

Responsibilities

Lead the planning, coordination, and execution of internal and external audits across SOC 2, PCI DSS, and partner assurance programs

Maintain Oportun’s control framework within AuditBoard, ensuring timely updates, documentation accuracy, and evidence completeness

Collaborate with control owners and cross-functional teams to prepare audit artifacts, track remediation activities, and communicate progress to leadership

Develop and refine audit procedures, evidence collection methodologies, and reporting standards using Microsoft Excel, PowerPoint, and SharePoint

Support development and maintenance of policies, standards, and procedures aligned to regulatory and industry frameworks (NIST CSF, ISO 27001, AICPA/SOC, PCI DSS)

Conduct internal readiness assessments and gap analyses to proactively identify compliance risks and improvement opportunities

Manage auditor and partner requests, providing timely and professional responses

Serve as a mentor and escalation point for junior GRC analysts

Qualification

SOC 2PCI DSSAuditBoardInformation Security FrameworksCISACIACRISCCISSPMicrosoft OfficeCommunicationMentorshipRelationship Building

Required

Bachelor's degree in Information Systems, Cybersecurity, Business, or related field

6–8 years of experience in IT audit, security governance, risk, and compliance, or related functions

Hands-on experience supporting or leading SOC 2 and PCI DSS audits

Proficiency with AuditBoard, Microsoft Office (Excel, Word, PowerPoint), and collaboration tools

Strong understanding of information security frameworks (NIST, ISO 27001, AICPA/SOC, PCI DSS, FTC)

Excellent written and verbal communication skills, with the ability to translate technical topics into business terms

Proven ability to manage multiple concurrent audits or assurance initiatives in a dynamic environment

Preferred

Certifications such as CISA, CIA, CRISC, or CISSP

Experience coordinating SOC 1, FTC Safeguards, or SOX ITGC programs

Experience in the financial services or fintech industry

Demonstrated ability to build relationships across technical and non-technical teams

Company

Oportun

Glassdoor3.3

Oportun is a digital banking platform that offers personal loans and financial services to people with limited credit history.

Founded in 2005

San Carlos, California, USA

1001-5000 employees

https://oportun.com

H1B Sponsorship

Oportun has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)

Distribution of Different Job Fields Receiving Sponsorship

Represents job field similar to this job

Trends of Total Sponsorships

2025 (23)

2024 (25)

2023 (27)

2022 (84)

2021 (52)

2020 (41)

Funding

Current Stage

Public Company

Total Funding

$3.2B

Key Investors

CastlelakeNeuberger BermanWebBank

2025-10-14Post Ipo Debt· $247M

2025-08-21Post Ipo Debt· $538M

2025-06-05Post Ipo Debt· $439M

Leadership Team

Raul Vazquez

CEO

Recent News

Greylock

Greylock Portfolio - Oportun

2025-12-30

CRV

Portfolio- Oportun

2025-12-18

Oportun, Inc.

MULTIMEDIA UPDATE - Holiday Savings Surge: Oportun Reports $6.5 Million Saved for 2025, Up 30% From 2024

2025-11-20

Company data provided by crunchbase