This website uses cookies to ensure you get the best experience.

Paysend and our selected partners use cookies and similar technologies (together “cookies”) that are necessary to present this website, and to ensure you get the best experience of it. If you consent to it, we will also use cookies for analytics purposes.

See our Cookie Policy to read more about the cookies we set.

You can withdraw and manage your consent at any time, by clicking “Manage cookies” at the bottom of each website page.

Select which cookies you accept

On this site, we always set cookies that are strictly necessary, meaning they are necessary for the site to function properly.

If you consent to it, we will also set other types of cookies. You can provide or withdraw your consent to the different types of cookies using the toggles below. You can change or withdraw your consent at any time, by clicking the link “Manage Cookies”, which is always available at the bottom of the site.

To learn more about what the different types of cookies do, how your data is used when they are set etc, see our Cookie Policy.

These cookies are necessary to make the site work properly, and are always set when you visit the site.

Vendors Teamtailor

These cookies collect information to help us understand how the site is being used.

Vendors Teamtailor
Skip to main content
Compliance & Risk · Belgrade · Hybrid

Security GRC Analyst

About The Role:

Reporting to the Security GRC Lead, we are seeking a detail-oriented Information Security GRC Analyst to join our security team and help support and operationalize Governance, Risk, and Compliance processes. In this role, you will be the guardian of our digital supply chain, responsible for evaluating the security posture of our third-party vendors and partners. You will be a risk advisor, helping the business make informed decisions about who we trust with our data. Additionally, you will play a key role in our internal compliance programs, helping us prepare for audits (SOC 2, ISO 27001, PCI DSS, etc.) and driving the remediation of security gaps.


What You'll Do (Responsibilities):

You should be enthusiastic about:

  • Security risk and controls management alongside a team of outstanding colleagues in the FinTech industry sector

  • Thriving and growing in a fast-paced FinTech environment and being able to pivot priorities to adapt
    quickly to a constantly evolving & demanding Security GRC landscape

  • Staying up-to-date on current emerging cybersecurity trends


As a Security GRC Analyst, you will be responsible for:

  • Supplier Due Diligence: Manage the end-to-end vendor risk assessment lifecycle. Review "due
    diligence packages" including SOC 2 Type 2 reports, ISO 27001 certificates, questionnaires, and
    penetration test summaries to validate vendor security controls against Paysend Supplier Security Policy.

  • Continuous Monitoring: Maintain the organization’s Vendor Inventory and Risk Register.
    Conduct periodic reassessments of critical vendors to ensure ongoing compliance, particularly
    in alignment with DORA requirements for ICT service providers.

  • Evidence Collection: Assist with audit activities by collecting and validating evidence from
    stakeholders (IT, HR, Engineering). Ensure evidence is accurate, complete, and mapped to the
    relevant controls (e.g., NIST 800-53, ISO 27001).

  • Support periodic internal reviews (mock audits) to identify non-compliance issues. Document
    findings and work with control owners to implement remediation solutions.

  • Assist with the development and annual review of policies, standards, procedures, and
    guidelines.

  • Maintain Security Confluence pages and ensure they are kept up to date with relevant
    information

  • Assist with the design and operational execution of employee training curricula required for
    GRC/compliance requirements

  • Support the response to customer security questionnaires, RFPs, and inquiries about our
    Security & Compliance program.

  • Support ongoing activities related to Paysend DORA compliance.

What You’ll Need To Be Successful In This Role:

  • Bachelor's degree in IT, Cybersecurity, Business, or equivalent experience.

  • 3-5 years working in GRC, IT Audit, or TPRM roles.

  • Familiarity with at least two of the following cybersecurity frameworks or regulations including:
    ISO 27001, PCI-DSS, SOC 2 Type II, NIST CSF and/or DORA.

  • Experience drafting and revising global cybersecurity policies and standards.

  • Team player and motivated self-starter who is resourceful and has the ability to work
    collaboratively with multiple stakeholders across different products, business lines, and regions

  • Excellent written communication skills with the ability to document, communicate, and report
    on cybersecurity risks as well as the status of the implementation and effectiveness of
    cybersecurity controls with product and business leaders

  • Excellent verbal communication skills with the ability to translate complex technical concepts
    into business language

  • Excellent command of the English language (written and spoken)


Nice To Have:

  • Basic understanding of cloud infrastructure (AWS/Azure) to better evaluate cloud vendors.

  • Hands-on experience configuring workflows in ServiceNow Vendor Risk Management, Vanta,
    Drata, or OneTrust.

Why Join Paysend?

  • Make a Global Impact: Directly impact millions of users worldwide

  • Accelerate Your Career: Benefit from internal mobility, mentoring programs, and continuous learning opportunities

  • Thrive in a Connected, Global Organization: Collaborate with colleagues across our international hubs and more

  • Embrace a Principle-Driven & Focused Culture: Work in an organization guided by strong principles and values that actually help you achieve more than you thought possible

  • Enjoy Competitive Compensation and Benefits: Receive a competitive salary, benefits, and flexible work arrangements

Department
Compliance & Risk
Locations
Belgrade
Remote status
Hybrid

About Paysend

At Paysend, we’re on a mission to simplify cross-border payments for everyone by creating the world’s biggest open, instant digital payment network.

As a next-generation integrated global payment platform, we connect consumers and businesses to pay and send money online anywhere, anyhow, and in any currency.

Founded in 2017 with the introduction of card-to-card transfers, we now offer a comprehensive suite of financial solutions that go beyond traditional money transfers.With a global reach and offices in London, Belgrade, Dublin, and Miami, we’re proud to serve millions of customers in over 170 countries. 

Our platform delivers interoperability across major card networks like Mastercard, Visa, and China UnionPay, as well as local payment schemes, connected by the largest digital payment network. We provide access to over 20 billion endpoints to make cross-border payments simple and accessible for everyone.But we’re not just about technology; we’re about people.

At Paysend, you’ll thrive in a connected, principle-driven culture that empowers you to solve complex challenges in the world of global finance. Join our talented global team and revolutionize the world of global payments while accelerating your career growth.

Paysend: Simplifying Cross-Border Payments for Everyone.

Compliance & Risk · Belgrade · Hybrid

Security GRC Analyst

Loading application form

Already working at Paysend?

Let’s recruit together and find your next colleague.

Applicant tracking system by Teamtailor