Staff Engineer, Security & Compliance

interface.ai

$130K — $180K *
Information Technology
5 - 7 years of experience
Job Overview by Ladders

Qualifications

  • 5-7 years of experience in security and compliance in regulated financial environments
  • Proven ownership of SOC 2, PCI, or HIPAA programs with an ability to implement policies
  • Strong expertise in data security, encryption, PII handling, and tenant isolation
  • Practical experience securing AI systems, particularly regarding conversational AI
  • Desire and experience in automating compliance functions and building compliance tools
  • Fluency in AI technologies, with hands-on experience integrating them into workflows
  • BS/BA in Computer Science required; MS or PhD is a strong advantage

Responsibilities

  • Own the platform's security and compliance posture including SOC 2, PCI, and HIPAA
  • Design and implement controls that ensure audit-readiness and ongoing compliance
  • Oversee handling and governance of sensitive member data across a multi-institution platform
  • Establish security standards for engineering teams while conducting audits for compliance
  • Automate compliance checks to enable operational agility without cutting corners
  • Develop strategies for securing AI systems, especially in financial transactions
  • Collaborate with the CTO and domain engineers to tackle complex security challenges

Benefits

  • 100% paid health, dental & vision care
  • 401(k) with financial wellness perks
  • Discretionary PTO and paid parental leave
  • Support for mental health, wellness, and family needs
  • Opportunity to contribute to a mission-driven team in the banking sector
Full Job Description
The Role

Security and compliance are the foundation that lets interface.ai operate inside the regulated core of banking. We're looking for a hands-on Staff Engineer to own security and compliance for the platform - the person who sets the standards every domain builds to and keeps millions of members' data safe.

This is a cross-pillar role. Rather than owning a single product area, you serve every domain and raise the whole organization's security and compliance ceiling. You partner with the CTO and with each domain's engineers, going deep wherever the hardest problem is and bringing the rest of the org up to the bar you set.

It's a builder's seat, not a policy-only one. You'll write code, design controls, and automate the unglamorous parts of compliance so a fast-moving team can ship safely in a regulated environment.

What You'll Own
• The platform's security and compliance posture - SOC 2, PCI, and HIPAA - and the

controls and evidence that keep them audit-ready.
• PII handling and tenant separation - how sensitive member data is protected, isolated,

and governed across a multi-institution platform.
• The standards every domain builds to, plus the audit and assurance behind external and

customer security reviews.
• Data security for AI systems - keeping agentic and conversational AI safe when it

authenticates members and takes real action in financial systems.
• Compliance automation - replacing manual, point-in-time checks with continuous,

engineered controls so the company can move fast without cutting corners.

What We're Looking For
• A senior-most individual contributor (Staff level) with deep security and/or

compliance experience in regulated or financial environments - and still very much in

the code.
• Real ownership of SOC 2, PCI, or HIPAA programs - you've built and run the controls,

not just read the framework, and you can move from policy to implementation without a

translation layer.
• Strong instincts for data security, encryption, PII handling, and tenant isolation at scale.
• Data security for AI systems - you understand the new surface area that agentic and

conversational AI introduces and how to secure it.
• A bias toward automation - you'd rather engineer a continuous control than maintain a spreadsheet, and you've built compliance tooling before.
• Extreme AI fluency - you use frontier AI tools daily and have rebuilt your workflow

around them; first-principles problem-solving and high learning velocity.
• BS/BA in Computer Science required; MS or PhD a strong plus. San Francisco-based and committed to working onsite. H1B transfers welcome.

Bonus Points
• Security or compliance leadership at a bank, fintech, or other heavily regulated platform.
• Hands-on experience securing AI/ML or LLM-based systems in production.
• Built compliance-automation tooling or evidence pipelines from scratch.
• Relevant certifications (CISSP, CISM, or similar) - useful, but the build track record

matters more.
• Published writing, conference talks, or open-source work in security engineering or applied AI safety.

What This Role Is - And Isn't

This is a builder's seat, not a policy-only or pure-GRC role. You'll be in the code and the

architecture, designing controls and automating them - the person who makes security and compliance real across the platform, with the authority to set the bar and the credibility to be trusted with it.

It's not a role for someone who wants to write policy and hand it off, or who needs a large team to manage. As a cross-pillar role you serve every domain, owning the hardest security and compliance problems end-to-end. If that mandate at a profitable, fast-moving AI company is the leverage point you've been looking for, we want to talk.

Benefits
• 100% paid health, dental & vision care
• 401(k) & financial wellness perks
• Discretionary PTO + paid parental leave
• Mental health, wellness & family benefits
• A mission-driven team shaping the future of banking

Why interface.ai

Series A • $30M raised • Cash-flow positive - we're not burning cash hoping the product

works. It works. Customers are live, revenue is real, and the mission is one you can explain to your family without a slide deck.

You'll work directly with Bruce Kim (CTO / Co-Founder), who sets the technical bar and goes deep on the hardest problems, and Srinivas Njay (CEO), who is hands-on daily across product and engineering. Founding-team-tier equity, top-of-market base, comprehensive benefits, and a modern San Francisco office worth showing up to. The team is small enough that your judgment shapes everything, and the market is large enough that what you build will matter for a long

time.

Similar Jobs

More Jobs at interface.ai

  • Sales Engineer
    $120K — $150K *
    San Francisco, CA 94112 (San Francisco County)
    Enterprise Technology
    In-Person
  • Senior Partner Sales Manager - Fintech
    $130K — $180K *
    San Francisco, CA 94112 (San Francisco County)
    Finance & Insurance
    In-Person
  • Staff Engineer, Security & Compliance
    $130K — $180K *
    San Francisco, CA 94112 (San Francisco County)
    Information Technology
    In-Person
  • Head of Legal
    $150K — $200K *
    San Francisco, CA 94112 (San Francisco County)
    Legal & Accounting
    In-Person
  • Technical Recruiter
    $100K — $130K *
    San Francisco, CA 94112 (San Francisco County)
    Technical Services
    In-Person

More Information Technology Jobs

Find similar Staff Engineer, Security & Compliance jobs: