Unlock the Future of Finance with Valon: Information Security Analyst
Valon isn't just another fintech company; we're rebuilding the infrastructure of regulated finance from the ground up, starting with mortgage servicing. We're a Series C company, backed by a16z, tackling challenges others deem too complex. We didn't just build software; we built and operate our own mortgage servicing business, managing over $110 billion in loans, to truly understand the problems we're solving.
Imagine transforming a 0% margin business into a 60%+ margin powerhouse, all while dramatically improving customer experience. That's Valon. Now, we're scaling our security team to protect our innovative platform and the sensitive data entrusted to us.
The Mission
As an Information Security Analyst at Valon, you'll be a critical player in safeguarding our organization's systems, cloud infrastructure, products, and data. Working directly with the CISO and the broader Security team, you'll be responsible for ensuring our technical controls meet compliance requirements, proactively managing risks, supporting operational and monitoring efforts, and driving program management activities. If you thrive in a fast-paced, collaborative environment and are passionate about protecting critical assets, this is your chance to make a real impact.
What You'll Do
Help implement and maintain compliance with industry-standard frameworks (SOC 2, NIST CSF, CIS) and regulatory requirements (NYDFS, GLBA, Safeguards, CCPA, etc.).
Support internal and external security audits and exams, including gathering evidence and tracking remediation efforts.
Review, manage, and monitor security policies to ensure ongoing compliance.
Manage and coordinate remediation efforts for vulnerabilities, security incidents, and compliance issues across various teams.
Conduct security risk assessments and implement continuous monitoring strategies.
Participate in on-call and operational security activities, including monitoring security alerts, investigating incidents, performing vendor security reviews, and contributing to security awareness and training initiatives.
Develop and track key security metrics (KPIs) and generate insightful reports.
Develop and maintain comprehensive security policies, standards, and procedures.
Maintain up-to-date customer-facing security documentation and informational assets.
What You'll Bring
Proven experience (2-3 years minimum) in a security analyst or security program management role, with a focus on security compliance, issue management, vulnerability management, and/or security program management.
Solid understanding of security and compliance frameworks and requirements (OWASP, SOC 2, NIST, ISO, CIS, etc.).
Fundamental knowledge of cloud security and public cloud environments.
A self-motivated and agile approach, capable of balancing multiple projects and operational tasks independently.
A proactive mindset, eager to learn and contribute across diverse security domains.
Exceptional interpersonal skills, enabling you to build strong relationships and collaborate effectively with stakeholders to drive results.
Excellent communication skills, with the ability to clearly explain complex security concepts to both technical and non-technical audiences.
Strong organizational and project management abilities.
Bonus points for experience in a startup environment or within the financial services/fintech industry.
Minimum Qualifications
Bachelor's degree in Computer Science, Information Security, Technology, or a related field.
Relevant security certifications (CompTIA Security+, CC, SSCP, CISSP, CISM, CRISC, or equivalent).
Hands-on experience with security compliance frameworks and risk assessments.
Experience with operational security activities, including issue management, security reviews, control monitoring, incident management, and reporting.
Perks & Benefits
Compensation: Competitive salary ($100,000 - $125,000 base salary range for NYC location, adjusted based on experience, skills, and location) with a meaningful stake in the company via equity, and 401k plan.
Health & Well-being: Comprehensive medical, dental, & vision benefits to support your physical and mental health.
Commuter Benefits: Pre-tax deductions for public transportation, rideshare services, and parking expenses.
Growth Opportunities: Company-wide orientation and ongoing learning & development opportunities, including regular 360-degree feedback cycles.
Team Fun: Quarterly budgets for team and company outings – from team swag to cooking classes!
Time Off: Flexible paid time off, sick days, and 11 company holidays.
Parental Leave: 12 weeks of fully paid leave for both birthing and non-birthing parents.
Location: US (Remote) or NYC office (Hybrid - onsite)
Please note: Throughout the interview process, all emails will originate from @valon.com. We will never request personally identifiable information during the interview process. For any concerns, please contact [email protected] to verify outreach authenticity.
Valon is an equal opportunity employer committed to diversity and inclusion. We prohibit discrimination and harassment of any kind.