Stephen Sun

Stephen Sun is a seasoned professional in information security and compliance, currently serving as Security GRC Team Lead and Security GRC Program Manager at EarnIn since April 2022. With extensive experience across various roles, Stephen has developed and maintained audit readiness and GRC control monitoring programs aligned with industry standards like NIST CSF, PCI 4.0, and SOC2 Type 2. Prior to EarnIn, Stephen held significant positions at CalAmp where a vulnerability management program was established, and Accurate Background, where a security control framework was implemented. Stephen's career also includes key roles in security risk management at Hyundai Capital America, compliance management at Verizon Wireless, and auditing at Allergan and KPMG. Stephen holds multiple certifications, including CISSP, CISA, CISM, CRISC, and CIA, and earned a Bachelor of Science in Computer Information Systems from California State Polytechnic University-Pomona.