Risk Analyst, Security Compliance

San Francisco | Full-time

We're responsible for enabling the business by managing risks and maintaining controls that ensure trust in the platform.

At Plaid, our mission is to unlock financial freedom for everyone.  There has never been a better time than now to start building the future of fintech with us. Plaid powers the tools millions of people rely on to live a healthier financial life. We work with thousands of companies like Venmo and SoFi, several of the Fortune 500, and many of the largest banks to make it easy for people to connect their financial accounts to the apps and services they want to use. Plaid’s network covers 11,000 financial institutions across the US, Canada, UK and Europe. Founded in 2013, the company is headquartered in San Francisco with offices in New York, Salt Lake City, Washington D.C., London and Amsterdam.

The Risk Team at Plaid is a cross functional team whose responsibility is to enable the business by mitigating risks and maintaining controls that ensure trust in the platform. 

Plaid sits in the middle of this ecosystem, and we're the gateway used by our customers to build, launch, and scale FinTech applications that democratize financial services. In this role, you will be responsible for helping Plaid scale our Customer Ecosystem Risk Management activities by performing security compliance reviews of our customers, and helping Plaid expand our Security & Privacy Assurance capabilities. This role requires subject matter expertise in Information Security Compliance frameworks, security and privacy compliance audits, and vendor management.

This role can be located in our San Francisco or New York City offices

What Excites You

  • Being part of a highly evolving cross functional team in a rapidly growing organization
  • Having a significant impact on the future of financial services and obtaining high visibility into the fintech ecosystem
  • Performing security compliance reviews across the vast spectrum of customers in the Plaid ecosystem
  • Helping Plaid operationalize and mature our security & privacy compliance roadmap
  • Being a trusted partner for cross functional teams on all matters related to security & privacy assurance
  • Building and maintaining highly effective cross functional relationships in a product focused organization
  • Be the voice for Plaid to guide Plaid customers, Financial Institutions and other external interested parties better understand Plaid Security and Privacy practices
  • Passion to build, mature, and drive various GRC workstreams and monitor the performance of the programs

What Excites Us

  • 4+ years of relevant exposure in the Governance, Risk and Compliance space, preferably in Fintech or Technology sector
  • Strong implementation knowledge of security & privacy assurance, trust frameworks (AICPA Trust Service Criteria - SOC2, NIST, ISO27001, ISO27018, ISO27701, CSA STAR, PCI DSS etc)
  • Strong understanding of AWS Cloud Security, DevSecOps and application/API security best practices
  • Ability to ship high quality security compliance assessments of customers in the ecosystem and Plaid vendors
  • Ability to support the development and implementation of a remediation strategy to manage Plaid Enterprise Risks
  • Ability to work effectively with cross functional stakeholders from GTM, Product, and Financial Access teams
  • Exceptional attention to detail, an eye for operational excellence, and ability to execute and iteratively improve operational processes.
  • A mix of security consulting/professional services and industry experience preferred

Plaid is proud to be an equal opportunity employer and values diversity at our company. We do not discriminate based on race, color, national origin, ethnicity, religion or religious belief, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender, gender identity, gender expression, transgender status, sexual stereotypes, age, military or veteran status, disability, or other applicable legally protected characteristics. We also consider qualified applicants with criminal histories, consistent with applicable federal, state, and local laws. Plaid is committed to providing reasonable accommodations for candidates with disabilities in our recruiting process. If you need any assistance with your application or interviews due to a disability, please let us know at accommodations@plaid.com.
image of San Francisco office

San Francisco Office

Our headquarters is in sunny SOMA and includes a beautiful sun-filled atrium, a private outdoor deck and even a (semi-hidden) climbing wall.

View Open Positions
image of Plaid Person, Kevin Hu

Kevin Hu - Data Scientist

A data scientist at Plaid since March 2017, Kevin Hu is busy pursuing his dream of building things that matter. Here, he talks math contests, cats of Instagram, and the collaborative nirvana that is “group sound.”

Meet Plaid's People