Compliance & Security Engineer (AI)

TL;DR

Compliance & Security Engineer (AI): Building and standing up the security and compliance foundation for a high-scale media and fintech ecosystem with an accent on PCI DSS, SOC 2, and COPPA compliance. Focus on automating evidence collection, threat modeling, and defining secure-by-default patterns for a zero-to-one AI-first engineering rebuild.

Location: Must be based in or able to relocate to the San Francisco Bay Area or NYC. Role is hybrid (expected ~3 days per week in-office).

Company

A multifaceted media and entertainment company founded by Jimmy Donaldson, operating across digital media, philanthropy, and consumer products.

What you will do

• Own the security architecture and technical compliance posture across media and fintech business units.
• Build and map a unified control framework to regulations including PCI DSS, SOC 2, and COPPA.
• Automate evidence collection and control monitoring to ensure continuous compliance.
• Lead threat modeling and security reviews for high-risk payment and account systems.
• Manage incident response, including detection, playbooks, and breach-notification readiness.
• Act as the technical lead during audits and represent the company to regulators and partners.

Requirements

• 15 years of combined security engineering and compliance experience.
• Proven ownership of PCI DSS and SOC 2 in production from design through audit.
• Strong hands-on experience with cloud security (AWS/GCP), application security, and threat modeling.
• Working knowledge of privacy and minor-protection regulations (COPPA, GDPR, CCPA).
• Must be able to work on-site ~3 days per week in San Francisco or NYC.
• Ability to read and reason about code and define secure-by-default patterns.

Nice to have

• Fintech or payments experience (money movement, KYC).
• Experience with security automation and infrastructure-as-code (Terraform, policy-as-code).
• Relevant certifications such as CISSP, CCSP, or OSCP.
• Experience standing up a security or compliance function from an early stage.

Culture & Benefits

• Competitive salary and equity package for a foundational hire.
• Comprehensive medical (Blue Cross Blue Shield), dental, vision, and life insurance.
• 401k plan with Safe Harbor company-matching and HSA contributions.
• Flexible vacation policy and paid company holidays.
• Relocation assistance provided where applicable, including travel and 90 days of housing.