Security Compliance Manager, Financial Services
- San Francisco, CA
About Square Financial Services
From day one, we've aimed to create economic empowerment for all businesses. We're now taking the next step by creating banking specifically for small businesses. Our bank is expected to launch in 2021, offering small business loans and deposit products. You’ll be on the forefront of creating a bank that allows for all businesses to thrive. We can’t wait to see your ideas come to life.
About the team:
The Data Security Governance team is looking for a Security Compliance Manager to focus on Regulatory Compliance for Square Inc. and Square Financial Services.
The Data Security Governance team oversees:
Compliance efforts and audit activities for regulatory compliance obligations such as PCI DSS, SSAE18, ISO 27001, SEC, FFIEC, FINRA and related internal control reviews
Regulatory risk management and consultation to product, sales, legal, and operations teams to support our existing products and new projects
Launch of products by creating technical security specifications that address compliance requirements of external stakeholders.
Manage FFIEC security compliance and examinations while working to harmonize those controls with other financial industry compliance efforts
Oversee audit and governance management: optimize year-round compliance efforts for Square Inc. and Square Financial Services systems and procedures
Partner with cross-functional departments to manage efforts to help expand Square’s infrastructure in a manner that maintains compliance
Conduct ongoing efforts to increase security and decrease user friction while maintaining regulatory compliance
Conduct structured or unstructured penetration testing of relevant Square systems and products
Support internal Square teams by sharing your experience and expertise consulting on contracts, security-related sales and marketing material, and engineering design documents
Policy and procedure management, maintaining all policies, procedures, technical specifications
Industry engagement for data security and governance to inform the next generation of payment and financial services security rules and regulations
5+ years of experience with security-related regulatory compliance for financial services
Knowledge of FFIEC and FDIC rules and regulations
Knowledge of FINRA and SEC rules and regulations
Familiarity with: PCI DSS, ISO 27001, SSAE18, or other compliance standards and frameworks
Relevant Certification (e.g. CISA, CISSP) or equivalent expertise
Experience in digital payments security
Experience with IT-related audits (PCI, SSAE16, ISO 27001) and balancing internal engineering and external audit requirements.
At Square, we want you to be well and thrive. Our global benefits package includes:
- Healthcare coverage
- Retirement Plans
- Employee Stock Purchase Program
- Wellness perks
- Paid parental leave
- Flexible time off
- Learning and Development resources