Lead and evolve the third-party risk management program while fostering a security-conscious culture and managing internal and external audits.
Small businesses are the backbone of the economy, and we’re here to help them win. We’ve built a platform that uses clever data to get them the funding they need in minutes, not weeks.
At Funding Circle, we have the restless energy of a fintech start-up with the stability of a public company. It’s a unique mix that gives Circlers the autonomy to take ownership and the scale to make an impact that truly counts.
We’re a high-performing team that chooses to lift each other up. We challenge, we champion, and we have each other’s backs - because we know that when we stand together, we move faster and build better.
The impact is real: Last year alone, the businesses on our platform generated £7.2bn for the UK economy 📈 Come and join a mission that matters!
[Read our Impact Report] | [See our Trustpilot]
📍 London (Hybrid) | 🤝 2 days in the office | 💰 Competitive Salary + Benefits
You’ll make a real difference for our customers and your team from day one. We believe the fastest way to grow is by doing, so we give you the ownership to run with things and see real-time results.
Lead and continue to evolve our third-party risk management (TPRM) programme, performing security risk assessments for new and existing vendors to identify and mitigate potential risks.
Manage and enhance our company-wide security awareness programme, delivering engaging training and identifying new ways to foster a strong security-conscious culture.
Act as a key contributor during internal and external security audits, helping to gather evidence and formulate clear, concise responses for auditor and regulator inquiries.
Analyse and report on key security metrics and risk indicators (KRIs), identifying trends to measure the effectiveness of our security programme and inform strategic decisions.
Provide hands-on support on Security Operations, assisting with tasks such as incident triage, analysis, and other operational security duties.
Support the incident response process by providing crucial risk context and ensuring activities align with our overall risk posture.
Stay current with the evolving threat landscape, industry trends, and new regulations to proactively manage and mitigate emerging cyber risks.
We value deep expertise, but a growth mindset and good energy are what really make our team click. We’re a group that chooses to lift each other up and think smart every day.
Significant (4+ years) hands-on experience in a Cyber Risk, GRC, or Information Security role with a demonstrable focus on risk management and compliance.
Deep, demonstrable expertise in operating within an Information Security Management System (ISMS) and applying security frameworks (e.g., ISO 27001, NIST CSF, SOC 2) to practical scenarios.
Proven, hands-on experience conducting comprehensive risk assessments using established methodologies and managing risks throughout their lifecycle.
Experience applying and advising on security policies and standards to ensure effective control implementation across the organisation.
Experience managing or significantly contributing to a third-party risk management (TPRM) program.
Proven experience managing and responding to internal and external audits.
Excellent communication and influencing skills, with the ability to articulate complex security and risk concepts clearly to both technical and non-technical audiences.
Ability to work collaboratively across multiple teams and build strong relationships with stakeholders in Procurement,, Legal, and Compliance.
A pragmatic and business-focused approach to risk management.
Skills we’d love to see:
Relevant industry certifications (e.g., CISM, CRISC, CISA, CISSP).
Experience with GRC and TPRM tooling.
Familiarity with security operations tools, such as a SIEM and Endpoint Detection & Response (EDR) platforms.
Experience in automating compliance evidence collection and reporting.
Experience working in FinTech or other highly regulated environments.
We’re building a place where everyone truly feels they belong. Even if your past experience doesn't align perfectly with every requirement, we'd still love to hear from you.
We back you to build an incredible career. As a flexible-first employer, we use a "best of both" approach. We’ll see you in our London office to collaborate – with barista coffee and subsidised Just Eat lunches on us!
Our Circler Proposition focuses on five areas:
Flexibility: We provide a benefit allowance you can tailor to your own life and family.
Health: This includes private medical and dental, health assessments, and access to a digital GP.
Wealth: We offer life assurance, share schemes, and financial coaching.
Development: You get a dedicated annual learning allowance to help you level up.
Lifestyle: We have electric car and cycle-to-work schemes, plus season ticket loans.
We also have award-winning parental leave policies. We're here to support you through the big life moments, from fertility treatments to new additions to the family.
Health Insurance
This includes private medical and dental, health assessments, and access to a digital GP.
Learning Budget
You get a dedicated annual learning allowance to help you level up.
Electric car and cycle-to-work schemes
We have electric car and cycle-to-work schemes, plus season ticket loans.
Paid Parental Leave
We also have award-winning parental leave policies.
Funding Circle is a lending platform designed specifically for small businesses, connecting them with investors for fast and affordable financing. By leveraging data analysis, it streamlines the funding process, enabling businesses to secure loans in as little as 48 hours, combining the agility of a startup with the reliability of a public company.
Please mention you found this job on AI Jobs. It helps us get more startups to hire on our site. Thanks and good luck!
Understand the required skills and qualifications, anticipate the questions you may be asked, and study well-prepared answers using our sample responses.
Security Engineer Q&A's