TL;DR
Security Analyst / Program Manager (Fintech): Building and scaling security governance, risk, and compliance programs from the ground up for a fintech innovation hub with an accent on designing security roadmaps and managing global regulatory audits. Focus on identifying critical security risks, ensuring compliance, and reinforcing secure engineering practices within a fast-paced startup environment.
Location: Onsite in New York or San Francisco Bridge HQ
Salary: $190,400 - $285,600
Company
hirify.global's Bridge is a fintech innovation hub focused on building a modern, stablecoin-powered cross-border payments network, operating like a startup within hirify.global.
What you will do
- Design and implement Bridge’s security governance, risk, and compliance roadmaps.
- Identify and pragmatically address Bridge’s most important security risks.
- Lead risk assessment, control design, and testing for all Security and Technology Oversight globally.
- Reinforce engineering best practices around secure development and infrastructure.
- Ensure Bridge meets compliance and audit expectations as it scales to more regulated markets.
- Collaborate cross-functionally with engineering, product, and hirify.global’s security organization.
Requirements
- 8+ years of experience in Security GRC, ideally with time spent in fast-paced startup environments.
- Proficiency with NIST CSF, OCC’s Cybersecurity Supervision Work Program, and/or FFIEC IT Examination Handbook or similar global frameworks.
- Proven prior experience with regulatory audits from global auditors across Security domains.
- Ability to thrive in ambiguity and ruthlessly prioritize.
- Strong communication skills across technical and non-technical partners.
- Experience building or scaling security programs.
Culture & Benefits
- Operate like a startup within hirify.global: fast-paced, entrepreneurial, and product-obsessed.
- Opportunity to design security governance, risk, and compliance programs from the ground up.
- Leverage the infrastructure, best practices, and tooling of a mature security organization.
- Be excited about the potential of crypto and stablecoins to power global financial infrastructure.
Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →