Sr. GRC Specialist, Information Security

Are you ready to join a growing team that puts a premium on productivity and has an award-winning culture centered around transforming talented employees into effective business leaders? Then BHG Financial is the place for you. 

In 2001, we started with an idea, an opportunity, and $25,000. Back then, our focus was strictly on serving those in the medical industry. With healthcare in our heritage, we soon expanded to serve high-earning professionals in many other industries, providing all with leading-edge financial solutions, including our extensive network of community banks.

Today, BHG Financial has firmly established its legacy as a leader in the financial services space. Founded on the philosophy of a better way to borrow, we are dedicated to helping accomplished professionals, small businesses, and institutions build upon their success through innovative financial solutions, a hassle-free process, and personalized concierge service.

Our relentless commitment to the success of our customers is part of what has made BHG Financial thrive. We take a 360-degree view of our customers to tailor the best solutions for their financial aspirations. Today's professionals have multiple sources of income, not just their paycheck. Therefore, it is essential to factor those in when making responsible lending decisions. Our continued focus on data, analytics, and proprietary modeling has enabled faster funding for our customers.

From business to personal loans to relationships with community banks, the country’s top professionals and business owners rely on us for our exceptional financial solutions and concierge service to continue their success and legacy.

You are motivated and passionate about governance, risk, and compliance (GRC). You are great at producing results and are an energetic, highly motivated individual who thrives in a fast-paced environment where you can help BHG ensure its governance, risk, and compliance needs are met.

What You'll Do

• Coordinate and manage BHG’s SOC 2 Type 2 audit engagement.
• Support the implementation of GRC strategies.
• You will be responsible for assisting with multiple GRC activities, including, but not limited to:

Information Security Metrics

Security awareness training

Policies, standards, and procedures

Exceptions to policies and standards

Audit and compliance frameworks (GLBA, FFIEC, PCI, NIST, etc.), such as:

- User access reviews for applications, databases, and operating systems.

- Control assessments

Risk assessments of systems and third parties, including developing treatment plans

Business continuity and disaster recovery

Privacy principles

• Develop enterprise and functional team-specific presentations to promote a security mindset.
• Support executive committees by developing agendas, documenting meeting minutes, and maintaining relevant documentation.
• Identify opportunities for automation and process efficiencies and assist with the implementation of GRC toolsets.
• Collaborate with other BHG teams such as Architecture, Infrastructure, Enterprise Risk Management (ERM), Product, Legal, People Development (PD), etc. to ensure BHG is complying with policies, standards, and regulatory requirements.
• Stay abreast of new regulatory, legal, compliance, and security requirements. 
• Collaborate with team members within and outside of GRC.
• Perform other duties as required.

What You'll Need

• Prior experience managing complex audit engagements, such as SOC 2.
• 5+ years of experience in the IS GRC field or a combination of experience and education in related disciplines.
• Bachelor’s Degree, ideally in Computer Engineering, Computer Science, Cybersecurity, or Information Systems Management.
• Possess current relevant certifications (e.g., CISA, CISM, CRISC, etc.) or be willing to obtain within 1 year of assignment.
• Familiar with compliance requirements such as FFIEC, PCI, GLBA, CCPA, SOX, etc.
• Familiar with IS frameworks such as SOC 2, NIST, ISO, FISMA, etc.
• Familiar with IS risk frameworks such as OCTAVE, FAIR, ISACA Risk IT, ISO 27005, NIST 800-30, etc.
• The ability to manage multiple priorities and navigate complex issues.
• Strong documentation skills.
• Excellent interpersonal and communication skills.
• Ability to analyze information.
• Proficiency in tackling mid-sized problems.
• Creative problem-solving abilities.

Life at BHG Financial

At BHG Financial, we work hard and aren’t afraid to take risks. Since the beginning, our core values of PMA (positive mental attitude), team player, and loyalty have been the driving force behind every interaction we have between each other and our customers. We have a healthy respect for the daily grind, yet we value work/life balance. We believe that all employees should have the opportunity to lead and that good ideas can come from anyone. From the top down, our leaders are actively involved not only in strategic oversight and running the business, but also in the well-being and growth of all employees. We consider people our #1 asset, and help employees realize their full potential, set and exceed their goals, and explore new opportunities for personal and professional development.

Why You Should Join BHG Financial

We strive to offer amenities, opportunities, events, and programming that support the interests of our teams, while furthering the culture that makes us Great Place to Work® certified. Some of the benefits you can expect when you join BHG Financial include:

•Medical/Rx/Dental/Vision coverage for employees and their eligible family members

•Competitive PTO and vacation policies

•1 Friday off each month for Wellness Weekends

•Company 401(k) plan with employer contributions after one year

•Company-sponsored training and certification opportunities

•Quarterly award ceremonies where top achievers are celebrated and receive additional bonuses

•Ongoing volunteer opportunities to give back to the community through our BHG Cares program

If you’re ready for a career where you can exercise your passions, be surrounded by co-workers who are relentlessly committed to service, and have a team-player mindset, apply today!

BHG Financial is committed to equal treatment and opportunity in all aspects of recruitment, selection, and employment without regard to gender, race, religion, national origin, ethnicity, disability, gender identity/expression, sexual orientation, veteran or military status, or any other category protected under the law. BHG Financial is an equal opportunity employer; committed to a community of inclusion, and an environment free from discrimination, harassment, and retaliation.