IT TPRM and BCP Analyst

Lead is a fintech building banking infrastructure for embedded financial products and services. We operate an FDIC-insured bank headquartered in Kansas City, Missouri.  Additionally, we have offices in San Francisco, Sunnyvale, and New York City, where our technical, product, design, and legal teams operate. We are built for a constantly evolving financial landscape, where new ventures and technological advancements emerge daily. Guided by a team of entrepreneurs and technologists with decades of experience navigating intricate banking and payments regulations, Lead blends regulatory and technological expertise to help our fintech partners scale their operations with compliance and creativity.
Simply put, Lead offers the essential attributes that every fintech seeks in a partner bank. First, unparalleled technical expertise from a distinguished team of developers with an extensive understanding of the banking and payments systems. Second, oversight expertise, automated compliance systems, and bespoke program management to navigate the ever-shifting regulatory landscape. Finally, a commitment to transparency and operational rigor to ensure everyone’s money does what it’s supposed to do. 
Role Description: We are looking for a skilled and proactive IT TPRM and BCP Analyst to join our Information Security team. This role is pivotal in ensuring our business continuity and managing risks associated with third-party relationships. The ideal candidate will bring experience from a start-up environment and possess a strong understanding of business continuity planning (BCP) and third-party risk management (TPRM).

In this role you will:

• Develop and implement business continuity plans, conducting risk assessments and Business Impact Analysis (BIA) to ensure operational resilience.
• Evaluate and monitor third-party risks, performing due diligence, ongoing monitoring and risk assessments for vendors and partners.
• Prepare detailed risk assessments and reports for senior management, providing actionable recommendations and tracking key risk indicators (KRIs).
• Work with internal stakeholders to develop and organize the execution of tabletop exercises and test business continuity plans (BCP). Work with the security team to ensure that Disaster Recovery Plans are designed and tested as well as incident response. 
• Conduct third-party reviews and ensure 3rd party resiliency plans have been developed and are adequate for compliance. 
• Ensure compliance with relevant regulations and industry standards and integrate risk management practices into business processes.
• Facilitate training and awareness programs on business continuity and third-party risk management, communicating effectively with all levels of the organization.
• Handle ad-hoc responsibilities as needed and manage special projects 

What we are looking for:

• Bachelor’s degree in Business Administration, Risk Management, Finance, or a related field. Relevant certifications (e.g., CBCP, CRMP) are a plus.
• 3-5 years of experience in business resiliency, risk management, or a related field, with specific experience in a start-up environment.
• Experience with audit processes and compliance reviews, including internal and external audits.
• Strong knowledge of business continuity planning, disaster recovery, and third-party risk management. 
• Excellent analytical and communication skills, with the ability to manage multiple tasks in a fast-paced environment. Startup and consulting/contracting experience is a plus. 
• Advanced knowledge of ISO 22301, FFIEC, NIST, FedRAMP, and SOC 2 Type 2. 
• Experience auditing on-premises IT infrastructure, cloud Infrastructure, SaaS applications, and managed service providers. 
• Proficiency in risk management software and tools, with a track record of effective risk assessment and mitigation.

What we offer:

• At Lead, we design our benefits to support company culture and principles, to foster an efficient and inspiring work environment, and to create the conditions for our team to give their best in both work and life
• Competitive compensation, including opportunities for equity grants and cash bonus, based on experience, geographic location, and role
• Medical, Dental, Vision, Life, 401k Matching, and other wellness benefits, including FSA, HSA and HRA
• Paid parental leave
• Flexible vacation policy, including PTO and paid holidays
• A fun and challenging team environment in a dynamic industry with ample opportunities for career growth 

*Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. 
*Pursuant to the San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.
*Pursuant to the Los Angeles County Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.
**Our compensation reflects the cost of labor across several US geographic markets. Pay is based on a number of factors and may vary depending on geographical market location, job-related knowledge, skills, and experience. These ranges may be modified in the future.
Zone 1: $83,770 - $126,000 (SF/Bay Area, NYC, Seattle, LA)Zone 2: $70,000 - $105,434 (Austin, Boston, Chicago, Denver, San Diego, DC)Zone 3: $62,586 - $93,880 (Other US Metros) Apply