PitchMeAI
Payoneer

GRC Security Specialist

Payoneer · Herzliya, Tel Aviv District, Israel

This listing has closed — view similar roles below.

  • On site
  • Full-time
  • $100,000 / year
  • Herzliya, Tel Aviv District, Israel

Job highlights

  • Protect financial platform with GRC expertise.
  • Develop compliance strategies and controls.
  • Identify and manage regulatory requirements.
  • Conduct internal reviews and audits.
  • Lead security awareness initiatives.

About the role

About Payoneer

Founded in 2005, Payoneer is the global financial platform that removes friction from doing business across borders, with a mission to connect the world’s underserved businesses to a rising global economy. We’re a community with over 2,500 colleagues all over the world, working to serve customers, and partners in over 190 countries and territories.

By taking the complexity out of the financial workflows–including everything from global payments and compliance to multi-currency and workforce management, to providing working capital and business intelligence–we give businesses the tools they need to work efficiently worldwide and grow with confidence.

Israel

Hybrid

Full-time

Cyber Security Governance

Protects the security of an organization’s information systems and data by setting policies, monitoring compliance, and following defined procedures to identify, assess, and manage risks from external and internal threats.

GRC Security Specialist at Payoneer

We are seeking a GRC Security Specialist to join our Cyber GRC Team in Payoneer. You will be joining a tight-knit and highly respected team of GRC experts who are central to Payoneer's security strategy. In this role, you will be at the heart of protecting our global financial platform, directly influencing the trust and safety of millions of users worldwide.

What You'll Do

  • Directly responsible for policies, procedures, and controls to assure compliance with applicable regulatory, legal, and audit requirements as well as good business practices.
  • Develop a Cyber security compliance strategy and approach and ensure compliance with contractual requirements and globally recognized standards and guidelines.
  • Identify regulatory, legislative, and industry-specific compliance requirements and define controls that can be used to meet those requirements.
  • Conduct and participate in periodic internal reviews or audits to ensure that compliance procedures are followed.
  • Oversee and evaluate compliance systems to ensure they function effectively.
  • Compile and present reports to management on compliance activities and progress.
  • Stay updated on industry developments, regulatory trends, and best practices to evaluate their potential impact on the organization.
  • Design and implement enhancements in compliance communication, monitoring, and enforcement mechanisms.
  • Develop and execute a compliance awareness program, including the creation and distribution of materials for all employees.
  • Partner with Legal and IT teams to manage data protection agreements and compliance initiatives.
  • Lead the development and execution of company-wide security awareness and training initiatives.
  • Assist in incident response planning and investigations when necessary.

Who You Are

  • 4+ years of experience in GRC, information security, or compliance within SaaS, cloud, or enterprise IT environments.
  • Strong understanding of regulatory frameworks and security standards such as SOC 2, PCI-DSS, NIST, and cloud security frameworks.
  • Knowledge and experience in AI Governance, including AI risk management, ethical AI principles, and alignment with frameworks such as EU AI Act, NIST AI RMF, and ISO/IEC 42001.
  • Strong knowledge of SDLC methodology.
  • Strong knowledge of IT systems and security controls.
  • Experience conducting security risk assessments and working with auditors or regulatory bodies.
  • Strong project management skills with the ability to manage multiple compliance initiatives.
  • Experience working with IT teams and business stakeholders to enhance security measures.
  • Excellent communication and collaboration skills, with the ability to translate compliance requirements into actionable business processes.
  • Ability to effectively interface with technical staff and senior management.
  • Proficiency in English and Hebrew, both written and spoken, to effectively communicate with local and global teams and stakeholders.
  • Strong interpersonal skills with the ability to engage effectively.
  • Excellent teamwork and interpersonal communication abilities.

Advantage

  • Certifications such as CISM, CISA, CISSP.
  • CISO certification from a recognized institution.
  • Master’s degree in information security, Business Administration, or related field.
  • Experience in the fintech or financial services industry.

The Payoneer Ways of Working

  • Act as our customer’s partner on the inside
  • Do it. Own it.
  • Continuously improve
  • Build Each Other Up

If this sounds like a business, a community, and a mission you want to be part of, apply today.

We are committed to providing a diverse and inclusive workplace. Payoneer is an equal opportunity employer, and all qualified applicants will receive consideration for employment no matter your race, color, ancestry, religion, sex, sexual orientation, gender identity, national origin, age, disability status, protected veteran status, or any other characteristic protected by law. If you require reasonable accommodation at any stage of the hiring process, please speak to the recruiter managing the role for any adjustments. Decisions about requests for reasonable accommodation are made on a-case-by-case basis.

Key skills/competency

  • GRC Security Specialist
  • Information Security
  • Compliance
  • SaaS
  • Cloud Security
  • Regulatory Frameworks
  • Security Standards
  • Risk Management
  • Security Audits
  • Security Awareness

Skills & topics

  • GRC Security Specialist
  • Information Security
  • Compliance
  • SaaS
  • Cloud Security
  • Regulatory Frameworks
  • SOC 2
  • PCI-DSS
  • NIST
  • AI Governance
  • Risk Management
  • Security Audits
  • Security Awareness
  • Fintech
  • Financial Services
  • Israel

How to get hired

  • Tailor your resume: Highlight GRC, information security, and compliance experience. Emphasize SaaS, cloud, or enterprise IT environments.
  • Showcase AI Governance knowledge: Detail experience with AI risk management and ethical AI principles. Mention relevant frameworks like EU AI Act.
  • Quantify achievements: Use numbers to demonstrate impact in managing compliance initiatives and risk assessments.
  • Prepare for interviews: Be ready to discuss your understanding of regulatory frameworks (SOC 2, PCI-DSS, NIST) and your collaboration skills with IT and business stakeholders.

Technical preparation

Master regulatory frameworks: SOC 2, PCI-DSS, NIST, AI Act.,Understand AI governance, risk, and ethical principles.,Review IT systems and security control knowledge.,Practice security risk assessment methodologies.

Behavioral questions

Describe a time you ensured compliance.,How do you handle conflicting priorities?,Explain translating technical to business terms.,How do you stay updated on regulations?

Frequently asked questions

What are the key responsibilities for a GRC Security Specialist at Payoneer?
As a GRC Security Specialist at Payoneer, you will be responsible for developing and implementing cyber security compliance strategies, ensuring adherence to regulatory and legal requirements, conducting internal reviews and audits, managing compliance systems, and leading security awareness programs. You'll also partner with Legal and IT teams on data protection and compliance initiatives.
What experience is required for the GRC Security Specialist role at Payoneer?
The role requires 4+ years of experience in GRC, information security, or compliance within SaaS, cloud, or enterprise IT environments. A strong understanding of regulatory frameworks like SOC 2, PCI-DSS, NIST, and AI Governance is essential. Experience with SDLC methodology, IT systems, security controls, risk assessments, and project management is also necessary.
What makes the GRC Security Specialist role at Payoneer unique?
This role places you at the heart of protecting Payoneer's global financial platform, directly influencing the trust and safety of millions of users. You'll join a highly respected team of GRC experts central to the company's security strategy and work on cutting-edge AI Governance aspects.
What are the 'Advantage' qualifications for the GRC Security Specialist position?
Advantageous qualifications include certifications such as CISM, CISA, CISSP, or a CISO certification. A Master’s degree in information security or Business Administration, and experience in the fintech or financial services industry are also considered beneficial for this GRC Security Specialist role.
What are the typical work arrangements and location for this GRC Security Specialist role at Payoneer?
This GRC Security Specialist position is a full-time, hybrid role located in Israel. The hybrid model allows for a blend of on-site and remote work, offering flexibility while maintaining team collaboration.
How does Payoneer approach diversity and inclusion for the GRC Security Specialist role?
Payoneer is committed to a diverse and inclusive workplace. They are an equal opportunity employer and encourage applications from all qualified individuals, regardless of background. They also provide reasonable accommodation during the hiring process.