Who we are

Bridge is Stripes fintech innovation hub focused on building a modern stablecoin-powered cross-border payments network. We operate like a startup within Stripe: fast-paced entrepreneurial and product-obsessed but with the backing of one of the most trusted names in fintech.

Were hiring a Security Analyst / Program Manager to build and scale Bridges security foundation. This is a rare opportunity to design the security governance risk and compliance programs from the ground up while also leveraging the infrastructure best practices and tooling of one of the most mature security organizations in the industry.

What youll do

• Design and implement Bridges security governance risk and compliance roadmaps from first principles to production.
• Identify and tackle Bridges most important security risks quickly and pragmatically.
• Adopt Stripes programs controls and processes where it makes sense and find custom approaches where it doesnt.
• Lead risk assessment control design and testing for all Security and Technology Oversight globally.
• Reinforce engineering best practices around secure development and infrastructure.
• Ensure Bridge meets compliance and audit expectations as we scale to more regulated markets.
• Collaborate cross-functionally with engineering product and Stripes security org to move fast without compromising safety.

About you

You might be a good fit if you:

• Have 8 years of experience in Security GRC ideally with time spent in fast-paced startup environments where youve built security practices from the ground up.
• Have a startup mindset: youre scrappy pragmatic and move quickly to solve the most critical problems.
• Youre proficient with NIST CSF OCCs Cybersecurity Supervision Work Program and/or FFIEC IT Examination Handbook or other similar global frameworks.
• Proven prior experience with regulatory audits from Global auditors across Security domains.
• Thrive in ambiguity and know how to ruthlessly prioritize.
• Can balance security rigor with speed especially in fast-moving environments.
• Communicate clearly across technical and non-technical partners.
• Have experience building or scaling security programs either at a startup or in an embedded role.
• Are excited about the potential of crypto and stablecoins to power global financial infrastructure (you dont need deep prior knowledgejust curiosity and openness to learn).

Required Experience:

IC