Compliance Analyst

Posted 12 Days Ago
San Francisco, CA
Hybrid
95K-165K Annually
Mid level
Fintech • Payments • Professional Services
Finix offers everything SaaS companies need to build a world-class payments experience.
The Role
The Compliance Analyst will manage risk monitoring and execute compliance controls related to AML and Information Security. Responsibilities include conducting audits, managing risk assessments, and ensuring compliance with PCI requirements. This role supports internal and external audits to protect against security breaches and ensures proper documentation is maintained for regulatory compliance.
Summary Generated by Built In

About Us

Move money. Make money. Finix is a full-stack acquirer processor, empowering businesses of all sizes with flexible, modern payment solutions. Processing billions of dollars annually, Finix enables SaaS, marketplace, and e-commerce platforms to accept payments, manage payouts, and onboard merchants seamlessly. With our no-code, low-code, and developer-friendly tools, businesses can get up and running in hours—not months.


Finix has raised over $175M, including a $75M Series C led by Acrew Capital, with participation from Lightspeed Venture Partners, Leap Global, American Express Ventures, Bain Capital Ventures, Homebrew, Inspired Capital, Sequoia Capital, Visa, and others.


About the role 


The Compliance Analyst will proactively execute and manage a risk monitoring program for testing all key compliance and security controls required to effectively administer the AML and Information Security programs and maintain preparedness for all internal and external audits of these programs. The most critical of these is maintaining audit readiness for the annual PCI and SOC certifications and AML independent review but will also include ongoing testing of controls as required by the Card Brands, Sponsor/Acquiring Banks, processing partners, and clients in fulfillment of our contractual requirements. 


This role is key to ensuring that we are operating the processes required by our AML and InfoSec programs effectively and can provide evidence of such when requested for audits. It will also allow Finix to identify risks and gaps and remediate these in a timely manner, protecting us from possible security breaches, money laundering, or other suspicious activities. This analyst will be the foundation of our risk program which will grow as the business scales.


This hybrid role entails working in the office 4 days per week in our San Francisco HQ. 

You Will

  • Identify and validate key controls from enterprise and functional risk assessments to mitigate risks.
  • Ensure annual updates to the Enterprise and functional risk assessments (Ops, Tech, People, Legal, IT) are completed and communicated to support SOC and InfoSec policy administration.
  • Manage key risk updates and remediation in our Drata GRC tool.
  • Develop and execute quarterly internal risk self-assessments and mini-audits of key controls, documenting required remediation to stay ahead of potential risks.
  • Oversee critical areas such as User Access reviews, Firewall rules reviews, Change Management, Vulnerability Management, Business Continuity/Disaster Recovery, and Employee training compliance.
  • Ensure compliance with PCI requirements for merchants, sub-merchants, and vendor PCI/SOC reports, and run OFAC sanctions screening during vendor approvals and contract renewals.
  • Conduct comprehensive compliance and risk reviews for all vendors and clients, ensuring they meet the corporate InfoSec program's requirements.
  • Operate the vendor re-review process, ensuring alignment with PCI, SOC, and Sponsor Bank requirements, and maintain thorough documentation for audits.
  • Gather evidence and documentation for external audits related to Compliance and InfoSec programs, including those by PCI QSA, SOC Audit firm, AML Independent Audit firm, Visa, Mastercard, American Express, Discover, and sponsor banks.
  • Track and document any required remediation from audit findings to ensure ongoing compliance.

You Have

  • Payments experience
  • An aptitude for digging deep into Information Security requirements
  • 3+ years of experience in PCI, SOC, security audits, AML audits or equivalent assessments (client-side, servicer, assessor, or industry consultant)
  • A talent for analyzing requirements of Information Security and Compliance frameworks, particularly as they relate to the payment industry, and crafting solutions for adherence
  • Knowledge of cloud computing and nuances of managing in an AWS/Microsoft/Google cloud vs. traditional on-premise data centers
  • Optional: Industry certifications (CRISC, CTPRP, SSCP, CISSP, CISA, CISM) that demonstrate your desire to be the best at what you do

You Are

  • Proactive and enthusiastic to build a Compliance and Information Security audit management program
  • Able to talk to technical, non-technical, and underwriting teams, translating complex concepts between the two and ensuring alignment between them
  • Keenly attuned to details, ensuring nothing is overlooked when it comes to protecting our information and representing this to auditors
  • Organized and able to manage multiple projects simultaneously, against deadlines, and within budget
  • Confident in your abilities but eager to learn and expand your knowledge

Finix is an equal opportunity employer and values diversity. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, disability status, or any other protected class.


Role: Compliance/Security Monitoring and Reporting Analyst

Level: IC3 - IC4

Location: San Francisco

Base Salary Range: $95,000 - $165,000 + equity + benefits


Our salary ranges are determined by role, level, and location. The range displayed on each job posting reflects the minimum and maximum target for new hire salaries at our headquarters in San Francisco, California. Individual pay is determined by work location, job-related skills, experience, and relevant education or training.






Top Skills

Aml
AWS
Cloud Computing
Compliance
Google
Microsoft
Pci
Risk Management
Security Audits
Soc
Am I A Good Fit?
beta
Get Personalized Job Insights.
Our AI-powered fit analysis compares your resume with a job listing so you know if your skills & experience align.

The Company
HQ: San Francisco, CA
156 Employees
Hybrid Workplace
Year Founded: 2015

What We Do

Finix is on a mission to create the most accessible financial services ecosystem in history. To do so, we are building the global operating system for fintech, starting with payments.

Since 2015, we’ve been busy creating a payments management solution specifically for SaaS platforms—from startups to publicly traded companies—that want to earn more revenue, reduce churn, and delight customers.

With one developer-friendly API, Finix helps companies accept payments, manage payouts, and onboard merchants—all in the same place. Finix offers everything SaaS companies need to build a world-class payments solution.

Why Work With Us

Our diverse team of fintech professionals is dedicated to building accessible payments tools that democratize financial access. From employee development to customer success, we believe in the campsite rule—“leave it better than you found it”—ensuring every client and Finixian is better after working with us.

Gallery

Gallery

Similar Jobs

Benchling Logo Benchling

Security Compliance Analyst

Cloud • Healthtech • Social Impact • Software • Biotech
Hybrid
San Francisco, CA, USA
697 Employees

Anduril Logo Anduril

Export Compliance Analyst

Aerospace • Artificial Intelligence • Hardware • Robotics • Security • Software • Defense
Costa Mesa, CA, USA
4500 Employees
108K-162K Annually

CoreWeave Logo CoreWeave

Senior Governance, Risk & Compliance Analyst

Cloud • Information Technology • Machine Learning
4 Locations
1000 Employees

Maverick Payments Logo Maverick Payments

Compliance Analyst I

Fintech • Payments • Financial Services
Calabasas, CA, USA
136 Employees

Similar Companies Hiring

MassMutual India Thumbnail
Insurance • Information Technology • Fintech • Financial Services • Big Data
Hyderabad, Telangana
Jobba Trade Technologies, Inc. Thumbnail
Software • Professional Services • Productivity • Information Technology • Enterprise Web • Consulting • Cloud
Chicago, IL
45 Employees
Quantum Rise Thumbnail
Software • Professional Services • Natural Language Processing • Machine Learning • Consulting • Automation • Artificial Intelligence
Chicago, Illinois
17 Employees

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account