Cyber Governance and Education Manager R12615

ABOUT OPORTUN

Oportun (Nasdaq: OPRT) is a mission-driven fintech that puts its 2.0 million members' financial goals within reach. With intelligent borrowing, savings, and budgeting capabilities, Oportun empowers members with the confidence to build a better financial future. Since inception, Oportun has provided more than $16.6 billion in responsible and affordable credit, saved its members more than $2.4 billion in interest and fees, and helped its members save an average of more than $1,800 annually. Oportun has been certified as a Community Development Financial Institution (CDFI) since 2009.

WORKING AT OPORTUN

Working at Oportun means enjoying a differentiated experience of being part of a team that fosters a diverse, equitable and inclusive culture where we all feel a sense of belonging and are encouraged to share our perspectives. This inclusive culture is directly connected to our organization's performance and ability to fulfill our mission of delivering affordable credit to those left out of the financial mainstream. We celebrate and nurture our inclusive culture through our employee resource groups.

Working at Oportun means enjoying a differentiated experience of being part of a team that fosters a diverse, equitable and inclusive culture where we all feel a sense of belonging and are encouraged to share our perspectives. This inclusive culture is directly connected to our organization's performance and ability to fulfill our mission of delivering affordable credit to those left out of the financial mainstream. We celebrate and nurture our inclusive culture through our employee resource groups and our Diversity, Equity, Inclusion and Belonging Council.

POSITION SUMMARY

The Security Policy Manager will have two principle responsibilities 1) management and maintenance of all policies, standards, and procedures related to technology and cyber security and 2) building security education materials and demonstrating workforce engagement related to best practices, emerging threats, and critical thinking to inoculate our workforce and assets against scams, attacks, and misuse.

This role is fully remote.

RESPONSIBILITIES

• Develop and maintain information security policies, standards, and procedures, in alignment with company requirements, making recommendations and driving changes as needed.
• Effectively facilitate discovery meetings with technical leads to understand documentation requirements about system processes/ procedures and translate technical information into well-organized and concise content.
• Maintain continual awareness of developments and incorporate industry best practices and regulatory guidelines including but not limited to FFIEC, NIST CSF 2.0, …