Staff Engineer, Security & Compliance
About The Position
Security and compliance are the foundation that lets interface.ai operate inside the regulated core of banking. We're looking for a hands-on Staff Engineer to own security and compliance for the platform — the person who sets the standards every domain builds to and keeps millions of members' data safe. This is a cross-pillar role. Rather than owning a single product area, you serve every domain and raise the whole organization's security and compliance ceiling. You partner with the CTO and with each domain's engineers, going deep wherever the hardest problem is and bringing the rest of the org up to the bar you set. It's a builder's seat, not a policy-only one. You'll write code, design controls, and automate the unglamorous parts of compliance so a fast-moving team can ship safely in a regulated environment.
Requirements
- A senior-most individual contributor (Staff level) with deep security and/or compliance experience in regulated or financial environments — and still very much in the code.
- Real ownership of SOC 2, PCI, or HIPAA programs — you've built and run the controls, not just read the framework, and you can move from policy to implementation without a translation layer.
- Strong instincts for data security, encryption, PII handling, and tenant isolation at scale.
- Data security for AI systems — you understand the new surface area that agentic and conversational AI introduces and how to secure it.
- A bias toward automation — you'd rather engineer a continuous control than maintain a spreadsheet, and you've built compliance tooling before.
- Extreme AI fluency — you use frontier AI tools daily and have rebuilt your workflow around them; first-principles problem-solving and high learning velocity.
- BS/BA in Computer Science required
Nice To Haves
- MS or PhD a strong plus.
- San Francisco-based and committed to working onsite.
- H1B transfers welcome.
- Security or compliance leadership at a bank, fintech, or other heavily regulated platform.
- Hands-on experience securing AI/ML or LLM-based systems in production.
- Built compliance-automation tooling or evidence pipelines from scratch.
- Relevant certifications (CISSP, CISM, or similar) — useful, but the build track record matters more.
- Published writing, conference talks, or open-source work in security engineering or applied AI safety.
Responsibilities
- The platform's security and compliance posture — SOC 2, PCI, and HIPAA — and the controls and evidence that keep them audit-ready.
- PII handling and tenant separation — how sensitive member data is protected, isolated, and governed across a multi-institution platform.
- The standards every domain builds to, plus the audit and assurance behind external and customer security reviews.
- Data security for AI systems — keeping agentic and conversational AI safe when it authenticates members and takes real action in financial systems.
- Compliance automation — replacing manual, point-in-time checks with continuous, engineered controls so the company can move fast without cutting corners.
Benefits
- 100% paid health, dental & vision care
- 401(k) & financial wellness perks
- Discretionary PTO + paid parental leave
- Mental health, wellness & family benefits
- A mission-driven team shaping the future of banking
- Founding-team-tier equity
- Top-of-market base
- Comprehensive benefits
- A modern San Francisco office worth showing up to
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Senior
