Job Location : New York,NY, USA
Security Compliance ManagerThis position can be based out of San Francisco, New York, or remote (we accept candidates from many states).We are seeking a Security Compliance Manager to join the Security Compliance team at Modern Treasury. In this role, you will collaborate with cross-functional teams to shape and enhance our Information Security posture, focusing on governance, risk, and compliance. Reporting directly to the Head of Security Compliance, you will work closely with the Workplace Technology and Legal teams to drive key security & compliance initiatives.As a critical member of the team, you will play a pivotal role in the operation and development of governance, risk, and compliance efforts. Your responsibilities will include tracking, remediating, and reporting on information security controls, with a strong emphasis on driving improvements in Modern Treasury's Information Security Program.We are committed to continuously improving our security compliance processes, and we're looking for someone who shares that commitment. The ideal candidate will have a unique blend of creative problem-solving and meticulous attention to detail. You should bring experience in driving compliance results, be comfortable managing multiple concurrent projects, and have the ability to communicate technical details clearly to both technical and business audiences.If you thrive in a fast-paced startup environment, are willing to be hands-on in your day-to-day work, and have a deep sense of empathy for your team and prospective colleagues, we would love to hear from you.ABOUT MODERN TREASURYModern Treasury is the operating system for money movement. Our payment operations platform combines a suite of APIs and dashboards to help companies unlock new payments revenue, strengthen customer experiences, and drive efficiency through their business. Our end-to-end platform moves enterprises forward with faster payments, efficient workflows, full data visibility, and seamless bank integrations.ABOUT YOUProven experience working in a dynamic, high-growth environment, particularly on small teams where adaptability and quick thinking are essential.4+ years of experience in SaaS-based compliance, with a solid understanding of cloud technology, industry standards, and regulatory requirements.Expertise in enhancing and optimizing information security policies, procedures, and standards across processes, applications, and infrastructure.Skilled in conducting comprehensive security and technical assessments and identifying potential risks or gaps.Hands-on experience managing continuous controls and participating in audits for compliance with frameworks and certifications, including some or all of the following: SOC 1, SOC 2 [required], PCI DSS, ISO 27001, FedRamp, or NIST CSF.Familiarity with Identity and Access Management (IAM) software such as Okta, Google Workspace.Strong written and verbal communication skills, with the ability to convey complex security concepts clearly to both technical and non-technical stakeholders.A collaborative mindset, comfortable working closely with cross-functional teams to drive compliance initiatives and support broader organizational goals.WEEK BY WEEKDuring your first week you will:Onboard with our team and get acquainted with our company culture, values, and workflows.Develop an understanding of our customers and products to see how security compliance integrates with our offerings.Review key industry resources and primers to deepen your knowledge of the financial technology and compliance sectors.Familiarize yourself with our brand positioning and customer stories to align security initiatives with business objectives.During your first six weeks you will:Initiate your first set of projects, involving cross-functional collaboration with teams like Engineering, Product, and Legal.Establish regular communication with key stakeholders to ensure alignment on compliance objectives.Identify new opportunities for improvement to strengthen our Governance, Risk, and Compliance (GRC) program.During your first six months you will:Assist in preparing for and participating in external audits, contributing to successful compliance assessments.Take ownership of specific controls within our Information Security Program, ensuring they meet required standards.Continue learning and innovating by brainstorming and implementing new ideas, experiments, and concepts to enhance our GRC initiatives.#J-18808-Ljbffr