Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Join our team to enhance compliance and security in the exciting world of digital finance.
- Company: MoonPay, a leader in the decentralised economy and digital currency payments.
- Benefits: Competitive salary, equity options, unlimited holidays, and remote work flexibility.
- Why this job: Make a real impact on financial freedom and help shape the future of payments.
- Qualifications: 3-5 years in Governance, Risk, and Compliance with strong analytical skills.
- Other info: Diverse team culture with excellent growth opportunities and commitment to inclusion.
The predicted salary is between 36000 - 60000 £ per year.
About MoonPay
We’re here to onboard the world to the decentralized economy by making digital money move as universally and effortlessly as the internet. We power the entire flow between fiat and crypto end to end, with compliance, identity checks, fraud prevention, and settlement all built in.
About the Opportunity
The Information Security Audit team at MoonPay is dedicated to verifying the security and integrity of MoonPay’s internal systems and data in an increasingly complex digital landscape. The GRC Analyst’s mission is to provide independent, objective assurance and consulting principles to improve MoonPay’s regulatory compliance program by using critical thinking skills to evaluate the effectiveness of our risk management, control, and governance program.
What you will be working with/on…
In this role, you will report to the Director, Information Security Audit & ISMS Program, and work primarily with the TSS and Engineering teams to collect and review evidence in support of MoonPay’s compliance audits. Additionally, you will work with People Ops, Compliance, Legal, and Procurement teams to obtain and review audit-related evidence required from each of these teams.
Key responsibilities:
- Providing assurance: Assessing the company’s internal control structure, risk management, and governance processes to confirm each is working as intended.
- Improve operations: Looking for ways to improve MoonPay’s efficiency and effectiveness by identifying issues and recommending solutions to management.
- Protect organizational value: Safeguarding assets, ensuring compliance with laws and policies, and identifying potential fraud or other concerns.
- Offering assistance: Act as an advisor to team members, providing insight and helping to enhance the overall control environment and operational performance.
- Promoting governance and ethics: Helping to create and promote a culture of integrity and accountability throughout the organization.
What you will do
As a Security Operations Engineer at MoonPay, you will take on a multifaceted role focused on enhancing our compliance posture. Your responsibilities will include:
- Become fully knowledgeable with compliance frameworks, e.g., SOC2, ISO 27001, 27701, 27018, PCI-DSS, NIST 800-171, MiCA, and DORA.
- Become familiar with the scheduling intervals for each framework.
- Assist team members in gathering evidence in support of our compliance program.
- Use your critical thinking skills to review the evidence provided.
- Identify methods and means to manage risks identified during investigations and evidence collections.
- Advise internal teams on any findings identified, allowing time for remediations before formal review by external auditors.
- Safeguard assets wherever possible by ensuring the team is aware of the security requirements.
- Use your skills to evaluate and escalate risks identified to identify appropriate counter-measures or process revisions required to address the risk to the company.
About You
Experience: Minimum of 3-5 years in Governance, Risk, and Compliance Focus on IT Operations, Secure Development, Change Management, Access Control, and Information Security.
Security Frameworks: Performed reviews under at least two of the following: ISO 27001, SOC 2, SOX 404a/b, or PCI-DSS. Responsible for implementing key security controls.
Cybersecurity Principles: Strong understanding of cybersecurity principles and best practices.
Analytical Skills: Excellent critical thinking, analytical, and problem-solving skills.
Organization Skills: Ability to demonstrate completeness and accuracy when providing evidence to audit teams.
Crisis Management: Ability to work effectively under pressure. Capable of handling multiple audit reviews simultaneously.
Communication: Strong communication and interpersonal skills are needed to collaborate with teams across the company.
Bonus Qualifications
Certifications: CISSP, CISM, or equivalent certifications are a plus.
Technical Proficiency: Proven experience with tools such as Google Workspace, Mac OS, SharePoint/GRC Platforms, Okta/Active Directory, Jira/Linear.
BLOCK Values: We’re looking for people who live our core values, those who strive for excellence and want to leave a lasting legacy on the global financial system.
Benefits & Perks:
- Competitive salary package.
- Equity package.
- Pay for performance equity bonus.
- Unlimited holidays.
- Hybrid working schedule.
- Private Healthcare benefits.
- Enhanced parental leave.
- Annual training budget.
- Home office setup allowance.
- Remote working allowance.
- Monthly budget to spend on our products and zero fee crypto transactions.
- Employee referral programme.
- Regular remote company offsites.
Commitment To Diversity: At MoonPay we believe that every voice matters. We strive to create a mindful and respectful environment where everyone can bring their authentic self to work, and experience a culture that is free of harassment, racism, and discrimination.
InfoSec GRC Analyst employer: MoonPay
Contact Detail:
MoonPay Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land InfoSec GRC Analyst
✨Tip Number 1
Network like a pro! Reach out to folks in the InfoSec and GRC space on LinkedIn or at industry events. A friendly chat can open doors that a CV just can't.
✨Tip Number 2
Show off your skills! If you’ve got experience with compliance frameworks, don’t just mention it—bring it up in conversations. Share examples of how you've tackled challenges in past roles.
✨Tip Number 3
Prepare for interviews by researching MoonPay’s values and mission. Think about how your experience aligns with their goals, especially around security and compliance. It’ll show you’re genuinely interested!
✨Tip Number 4
Apply through our website! It’s the best way to ensure your application gets seen. Plus, we love seeing candidates who take that extra step to connect directly with us.
We think you need these skills to ace InfoSec GRC Analyst
Some tips for your application 🫡
Tailor Your Application: Make sure to customise your CV and cover letter for the InfoSec GRC Analyst role. Highlight your experience with compliance frameworks and any relevant projects you've worked on. We want to see how your skills align with what we're looking for!
Show Off Your Skills: Don’t hold back on showcasing your analytical and problem-solving skills. Use specific examples from your past experiences that demonstrate your ability to assess risks and improve operations. We love seeing how you think critically about security!
Be Clear and Concise: When writing your application, keep it clear and to the point. Avoid jargon unless it's necessary, and make sure your key achievements stand out. We appreciate straightforward communication, especially in a role focused on governance and compliance.
Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way to ensure your application gets into the right hands. Plus, it shows us you're keen on joining our team at MoonPay!
How to prepare for a job interview at MoonPay
✨Know Your Compliance Frameworks
Familiarise yourself with key compliance frameworks like SOC2, ISO 27001, and PCI-DSS. Be ready to discuss how you've applied these in your previous roles, as this will show your understanding of the regulatory landscape MoonPay operates in.
✨Showcase Your Analytical Skills
Prepare to demonstrate your critical thinking and problem-solving abilities. Think of specific examples where you've identified risks or inefficiencies and how you proposed solutions. This will highlight your proactive approach to governance and risk management.
✨Communicate Effectively
Practice articulating your thoughts clearly and concisely. Since you'll be collaborating with various teams, being able to communicate complex ideas simply is crucial. Consider mock interviews to refine your communication style.
✨Emphasise Team Collaboration
MoonPay values a collaborative culture, so be prepared to discuss how you've worked with cross-functional teams in the past. Share examples that illustrate your ability to foster a culture of security awareness and integrity within an organisation.
