Associate Grc Specialist

We're Littlepay - a growing fintech headquartered in Melbourne with operations in the UK, EU, LATAM, USA, and more recently, Australia. Our payments platform enables our customers to pay for public transport using any payment card, mobile wallet, or wearable device. Processing over 100 million transactions in 13 countries and continuing to expand globally, we're proud to move more people through better payment experiences.

Our Littlepay values:

- Trust and be trustworthy
- Embrace challenge
- Solve problems, together
- Deliver with speed and agility
- Be candid and kind

**About the opportunity**

Littlepay is looking for an Associate GRC Specialist to support us in fulfilling our security goals and to contribute to broader compliance needs. As we grow, we are developing our compliance posture and capacity to support and sustain the trust of our customers. A critical part of this delivery is ensuring that all of our work is viewed through a security lens at every stage.This new role will engage with a broad cross section of the business, and with external partners, to ensure that we have relevant and credible information to shape decision making internally and to support our customers' confidence in us. The GRC Associate will:

- assist with the development and management of our policy documents
- assist with maintaining the registers of due diligence activities on existing and new vendors from both a security and compliance perspective
- assist with maintaining our ESG compliance registries
- support the security team in our PCI compliance regime
- support the security team's research on tooling risk assessments and assist to identify best practices
- collaborate with relevant teams to train and guide colleagues on our compliance obligations
- stay up to date with compliance news and trends

**Requirements**:
To flourish at Littlepay, these skills are essential:

- Communication - strong written and verbal communication skills will enable you to build relationships across the organisation and externally
- Empathy - we're a service provider, so having high empathy for our internal stakeholders is a crucial skill
- A love of learning - we take learning and growth seriously
- Compliance management or compliance frameworks, particularly PCI-DSS and ISO27001
- Knowledge of other information related frameworks like NIST CSF, GDPR, CCPA
- Knowledge of ESG frameworks like United Nations Global Compact and ISO 26000
- Writing and managing policies
- Any kind of security work not related to infrastructure or programming

**Our recruitment process**

If you've been shortlisted for the role, you'll first have a chat with a member of the Talent team, who will set up an interview if the stars align. A short workplace preferences questionnaire will also be sent to help us learn more about the way you prefer to work. Following a successful first interview, you'll be sent a coding challenge. If we like what we see, we'll invite you to interview with a second set of Littlepay folks before presenting an offer.

Ultimately, being part of our small but mighty team means you'll have the opportunity to learn about micropayments, and have a hand in the provision of services that impact millions of people. You'll help us deliver on our revolutionary product roadmap and help scale our platform as we continue to expand across the globe.If this opportunity interests you, hit apply We look forward to learning about you.

**Benefits**

We love to look after our people. At Littlepay, you'll be part of an inclusive and diverse team that celebrates the differences and unique gifts we each bring to work.

You'll have access to:

- A high trust working environment, with access to cloud collaboration tools like Notion, Slack, Miro, Google Workspace, and Jira to help us work together effectively
- Paid professional development (including conferences, courses, learning subscriptions, etc.)
- Harrison Assessments - our talent management provider that facilitates continuous professional development
- A variety of flexible leave options (including annual, personal, volunteer, parental, grandparental, gender affirmation, and more)
- Superannuation contributions on all paid parental leave payments
- A company-wide paid day off
- Our flexible public holiday program
- Flexible (hybrid) working conditions
- Wellbeing support
- including a free School of Life subscription for all employees, and counselling via the School of Life (UK) or our EAP program (Australia)
- Our generous employee referral program
- Mid-year, quarterly, and end-of-year corporate and team events and workshops
- Short-term remote working arrangements
- International travel opportunities (dependent on role)

You'll also be able to take up the numerous other benefits that working at Littlepay affords you - including being part of a growing community of innovators at Stone and Chalk, where we enjoy lunch 'n' learns, summertime barbeques, ping pong tournaments, fortnightly drinks,