Senior Analyst II

May 1, 2024

Job Description

As a prominent financial technology platform, OppFi empowers banks to extend credit access to millions of ordinary consumers excluded from mainstream financial options. Our commitment goes beyond merely assisting individuals in rebuilding financial health; we prioritize placing the customer at the forefront of all our endeavors. We are fostering a customer-centric culture, where “Customer” is capitalized to underscore its significance.

This cultural emphasis starts with our team. Comprising caring, innovative, and inclusive individuals, we thrive on diverse talents, expertise, perspectives, and backgrounds. Our team members approach each challenge with a forward-looking perspective, constantly striving for improvement rather than settling for the status quo. We welcome individuals eager to make a positive impact in the financial system by developing straightforward, transparent products that facilitate credit access, encourage savings, and foster wealth creation.

Here are a few noteworthy facts about us: OppFi has consecutively ranked as an Inc. 5000 company for six years, earned a spot on Deloitte’s Technology Fast 500™ list, recognized as the seventh fastest-growing company in the Chicagoland area by Crain’s Chicago Business, and featured on Built In’s 2022 Best Places to Work in Chicago list.

Your Responsibilities:

  • Oversee the Information Security & Risk Management process and tools, including handling IT due-diligence requests and ensuring adherence to policies, procedures, and regulations.
  • Serve as a central subject matter expert on third-party risk management, facilitating the involvement of third parties in processes involving data.
  • Maintain a comprehensive inventory of third-party relationships involving data, including key risk information, data attributes, and regulatory compliance.
  • Monitor and oversee the resolution of security issues and control gaps related to third-party relationships.
  • Educate and promote cybersecurity awareness across the organization.
  • Identify and assess new policy requirements, updating policies, procedures, and guidelines accordingly.
  • Enhance compliance with security standards and policies throughout the organization.
  • Lead security risk management activities, including analyzing, quantifying, and tracking information security risks, as well as reviewing and documenting risk exception requests.
  • Collaborate with Technology Process Owners to develop, modify, validate, and decommission policies and procedures.
  • Develop dynamic dashboards and scorecards for enhanced visibility into Information Security Governance activities.


  • Proficiency with security and control frameworks such as FFIEC, NIST, COBIT, ITIL, and ISO control framework.
  • Background in Information Security, IT Risk Management, or third-party risk management.
  • 8+ years of experience supporting Information Technology compliance programs to meet regulatory or compliance requirements.
  • Ability to identify potential IT control risks and opportunities and provide sustainable recommendations addressing root causes.
  • Familiarity with information security standards and best practices, as well as relevant laws and regulations.
  • Experience with Governance Risk & Compliance (GRC) tools and procedure development.
  • Previous experience in a regulated industry, particularly financial services or healthcare.

Reporting to: Senior Manager, Information Security Governance

Job Level: Lead

The minimum salary for this role is $120,000, with additional eligibility for performance-based bonuses and a one-time equity grant based on level. The final offer, inclusive of total compensation and benefits, will be determined by the company based on various factors such as experience and business needs.

Define Your Career at OppFi:

OppFi is dedicated to providing an exceptional employee experience from day one. Our onboarding process includes Day 1 Orientation, training sessions with your manager and team, lunches with our CEO and President, and an educational summit featuring presentations by senior leaders. Throughout your first year and beyond, you’ll have access to various events focused on culture, inclusion, connection, and education, ensuring you feel welcomed, informed, and valued for your contributions.

Day 1 – Month 3: Define Your Mission During this phase, you’ll familiarize yourself with OppFi’s mission, values, and vision, aligning your goals with our organizational objectives with guidance from your manager.

Months 3 – 6: Define Your Belonging You’ll integrate into OppFi’s culture, understanding how to engage with and contribute to our vibrant workplace environment.

Months 6 – 12: Define Your Journey By this stage, you’ll be confident in your role, empowered to execute tasks effectively, and equipped to explore further opportunities for career development within OppFi.

Compensation and Benefits:

OppFi offers a flexible remote work environment, a 401(k) matching program, and flexible paid vacation. Additional benefits include medical, dental, and vision coverage, as well as tuition reimbursement. To support your well-being and growth, we provide monthly meditation and yoga classes, access to LinkedIn Learning courses, and Fringe, a lifestyle benefits platform allowing you to choose rewards from various vendors like Uber, Doordash, and Urban Sitter. Our dress code is casual.

EEOC Statement:

OppFi is an equal opportunity employer committed to building an equitable workplace that actively dismantles systems of oppression in our processes, procedures, and interactions. We aim to create an environment where all employees thrive professionally and personally.

OppFi provides reasonable accommodations for qualified individuals with disabilities. If you require accommodation during the job application or interview process, or to perform essential job functions and receive other employment benefits, please contact our People team at

In compliance with the California Consumer Privacy Act, OppFi provides the “OppFi California Employee Privacy Policy,” detailing the categories of personal information collected and your rights under the policy. California residents can review the policy here: [Link to the privacy policy].