Forward Financing is a Boston-based financial technology company with an operational hub in the Dominican Republic, providing fast, flexible working capital to US small businesses that have been underserved by traditional financing options. It is our mission to build a world-class fintech company so our customers and our people can reach their full potential. Forward has been recognized as a Best Place to Work by the Boston Business Journal and Built In Boston and is certified as a Great Place to Work.® We’re investing in our employees, technology, and customer experience – with long-term success in mind every step of the way.
As a GRC Analyst, you'll play a vital role in developing, implementing, and maintaining Forward Financing’s Governance, Risk, and infosec Compliance program. You'll create/maintain Policies and Standards, Track Risks, and manage SOC2 audits.
In This Role You Will:
- Lead the development, implementation, and maintenance of the organization's GRC program, ensuring its alignment with strategic objectives and evolving regulatory landscape.
- Collaborate with subject matter experts to create and update policies, standards, and procedures that provide clear guidance and promote compliance.
- Design and conduct realistic incident response drills, evaluate the organization's response capabilities, and identify areas for improvement.
- Perform comprehensive risk assessments using quantitative models, analyze risk exposure, and develop actionable risk mitigation plans.
- Serve as a key point of contact for SOC2 audits, facilitating the audit process and ensuring timely remediation of any identified gaps.
- Establish and manage a robust third-party risk management program, including conducting due diligence, ongoing monitoring, and performance reviews.
- Foster a culture of compliance and risk awareness through training, communication, and collaboration with stakeholders across the organization.
Role Requirements:
(Even if you don’t check every box, but see yourself contributing, please apply.)
- Bachelor's degree in a related field such as information security, computer science, or business administration.
- 5+ years of experience in a GRC role, preferably in a technology-driven or regulated industry.
- Proven experience in creating, implementing, and maintaining policies, standards, and procedures that align with industry frameworks and regulatory requirements.
- Demonstrated ability to design, conduct, and document incident response drills to assess and enhance the organization's preparedness for security incidents.
- Strong analytical skills with experience in performing risk assessments using quantitative models such as FAIR, identifying and evaluating risks, and working with engineers to develop mitigation strategies.
- Hands-on experience in supporting SOC2 audits, including gathering evidence, coordinating with auditors, and addressing findings.
- Proficiency in third-party risk management, including conducting due diligence assessments, monitoring vendor performance, and ensuring compliance with contractual obligations.
#LI-MH1 #LI-Remote
Forward Financing Core Values:
- Drive the Mission - We believe in financial opportunity for underserved small businesses. We say “yes” when others say “no.”
- Keep It Real - We value direct communication, candid feedback, and authenticity. We are an open book.
- Act With Kindness - We create an environment where caring is cool and helping is the norm. We do the right thing.
- Shoot for Extraordinary - We are inspired by innovative thinking and continuous improvement. We never settle for yesterday’s best.
About Us:
Forward is a fintech company headquartered in Boston, Massachusetts with an affiliate office in Santiago, Dominican Republic, providing fast, flexible working capital to small businesses across the US. Forward offers revenue-based financing – delivering an upfront sum of working capital in exchange for a set amount of the business’s future revenue. By simplifying the requirements, streamlining the process, and using advanced proprietary technology, Forward is often able to deliver approvals within hours and funds that same day — giving more businesses the financial opportunity they need to thrive. Plus, with their dedicated teams and award-winning service, customers get personalized support when they need it most.
Since 2012, Forward has expanded access to capital by providing over $3 billion in funding to nearly 63,000 small businesses. The company is A+ rated by the Better Business Bureau with an Excellent / 4.8 stars rating on Trustpilot.com. Forward is also recognized as a Best Place to Work by Built In Boston, certified as a Great Place to Work®, and is committed to helping their people and the small businesses they serve to achieve their full potential.
Forward actively promotes a focus on diversity, equity, and inclusion in all we do. We encourage a workplace where trust and respect are paramount and all employees feel valued, heard, and accepted. Our diverse and driven group of about 450 people, with approximately 200 based in the US, and 250 in the Dominican Republic, is a 100% employee-owned company. Our people are excited about their work, knowing they are helping thousands of small businesses while advancing their own careers.
Perks & Benefits:
At Forward, our team members are at the heart of our company, and we are committed to taking care of them as people, not just employees. We offer a comprehensive benefits package, including but not limited to: medical, dental, vision, and commuter benefits, a flexible time-off policy, paid parental leave, 401k match for US employees, wellness reimbursement, volunteering days, annual professional development budget, and charitable donation match.
Workplace flexibility is a top priority at Forward too. Our Employee Choice policy means that almost all of our employees get to decide where they work. As a business, we are focused on impact; we are more concerned with your contributions to the success of the company than where you get your work done. If face-to-face time is desired, people managers are empowered to find a cadence that works for their team.
When we aren’t collaborating to drive business and support our customers, we’re finding virtual and in-person ways to get to know our colleagues, celebrate team wins, and have fun together!
