Security Compliance Manager
This position can be based out of San Francisco, New York, or remote (we accept candidates from many states).
We are seeking a Security Compliance Manager to join the Security Compliance team at Modern Treasury. In this role, you will collaborate with cross-functional teams to shape and enhance our Information Security posture, focusing on governance, risk, and compliance. Reporting directly to the Head of Security Compliance, you will work closely with the Workplace Technology and Legal teams to drive key security & compliance initiatives.
As a critical member of the team, you will play a pivotal role in the operation and development of governance, risk, and compliance efforts. Your responsibilities will include tracking, remediating, and reporting on information security controls, with a strong emphasis on driving improvements in Modern Treasury’s Information Security Program.
We are committed to continuously improving our security compliance processes, and we’re looking for someone who shares that commitment. The ideal candidate will have a unique blend of creative problem-solving and meticulous attention to detail. You should bring experience in driving compliance results, be comfortable managing multiple concurrent projects, and have the ability to communicate technical details clearly to both technical and business audiences.
If you thrive in a fast-paced startup environment, are willing to be hands-on in your day-to-day work, and have a deep sense of empathy for your team and prospective colleagues, we would love to hear from you.
ABOUT MODERN TREASURY
Modern Treasury is the operating system for money movement. Our payment operations platform combines a suite of APIs and dashboards to help companies unlock new payments revenue, strengthen customer experiences, and drive efficiency through their business. Our end-to-end platform moves enterprises forward with faster payments, efficient workflows, full data visibility, and seamless bank integrations.
ABOUT YOU
Proven experience working in a dynamic, high-growth environment, particularly on small teams where adaptability and quick thinking are essential.
4+ years of experience in SaaS-based compliance, with a solid understanding of cloud technology, industry standards, and regulatory requirements.
Expertise in enhancing and optimizing information security policies, procedures, and standards across processes, applications, and infrastructure.
Skilled in conducting comprehensive security and technical assessments and identifying potential risks or gaps.
Hands-on experience managing continuous controls and participating in audits for compliance with frameworks and certifications, including some or all of the following: SOC 1, SOC 2 [required], PCI DSS, ISO 27001, FedRamp, or NIST CSF.
Familiarity with Identity and Access Management (IAM) software such as Okta, Google Workspace
Strong written and verbal communication skills, with the ability to convey complex security concepts clearly to both technical and non-technical stakeholders.
A collaborative mindset, comfortable working closely with cross-functional teams to drive compliance initiatives and support broader organizational goals.
WEEK BY WEEK
During your first week you will:
Onboard with our team and get acquainted with our company culture, values, and workflows.
Develop an understanding of our customers and products to see how security compliance integrates with our offerings.
Review key industry resources and primers to deepen your knowledge of the financial technology and compliance sectors.
Familiarize yourself with our brand positioning and customer stories to align security initiatives with business objectives.
During your first six weeks you will:
Initiate your first set of projects, involving cross-functional collaboration with teams like Engineering, Product, and Legal.
Establish regular communication with key stakeholders to ensure alignment on compliance objectives.
Identify new opportunities for improvement to strengthen our Governance, Risk, and Compliance (GRC) program.
During your first six months you will:
Assist in preparing for and participating in external audits, contributing to successful compliance assessments.
Take ownership of specific controls within our Information Security Program, ensuring they meet required standards.
Continue learning and innovating by brainstorming and implementing new ideas, experiments, and concepts to enhance our GRC initiatives.
EOE
Modern Treasury is committed to equal employment opportunity and does not discriminate in any employment opportunities or practices based on an individual's race, color, creed, gender (including gender identity and gender expression), religion (all aspects of religious beliefs, observance or practice, including religious dress or grooming practices), marital status, registered domestic partner status, age, national origin or ancestry (including language use restrictions and possession of a driver’s license issued under California Vehicle Code section 12801.9), natural hair, physical or mental disability, political affiliation, medical condition (including cancer or a record or history of cancer, and genetic characteristics), sex (including pregnancy, childbirth, breastfeeding or related medical condition), genetic information, sexual orientation, military and veteran status or any other consideration made unlawful by federal, state, or local laws. It also prohibits unlawful discrimination based on the perception that anyone has any of those characteristics, or is associated with a person who has or is perceived as having any of those characteristics.
Modern Treasury participates in E-Verify and will provide the federal government with your Form I-9 information to confirm that you are authorized to work in the U.S.
Modern Treasury is committed to equal employment opportunity and does not discriminate in any employment opportunities or practices based on an individual's race, color, creed, gender (including gender identity and gender expression), religion (all aspects of religious beliefs, observance or practice, including religious dress or grooming practices), marital status, registered domestic partner status, age, national origin or ancestry (including language use restrictions and possession of a driver’s license issued under California Vehicle Code section 12801.9), natural hair, physical or mental disability, political affiliation, medical condition (including cancer or a record or history of cancer, and genetic characteristics), sex (including pregnancy, childbirth, breastfeeding or related medical condition), genetic information, sexual orientation, military and veteran status or any other consideration made unlawful by federal, state, or local laws. It also prohibits unlawful discrimination based on the perception that anyone has any of those characteristics, or is associated with a person who has or is perceived as having any of those characteristics.
Modern Treasury participates in E-Verify and will provide the federal government with your Form I-9 information to confirm that you are authorized to work in the U.S.