×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Data Security IT Project Manager Information Security

Program Manager, Engineering - Technology GRC

Job in San Francisco, San Francisco County, California, 94199, USA
Listing for: Stripe
Full Time position
Listed on 2026-06-26
Job specializations:
  • IT/Tech
    Cybersecurity, Data Security, IT Project Manager, Information Security
Job Description & How to Apply Below

Who we are

Stripe is a financial infrastructure platform for businesses. Millions of companies - from the world's largest enterprises to the most ambitious startups - use Stripe to accept payments, grow their revenue, and accelerate new business opportunities. Our mission is to increase the GDP of the internet, and we have a staggering amount of work ahead. That means you have an unprecedented opportunity to put the global economy within everyone's reach while doing the most important work of your career.

About

the team

The Technology Governance, Risk, and Compliance (GRC) team is dedicated to delivering excellence across Stripe's compliance with global and industry-specific technology control regimes, such as PCI-DSS, SOC, and other international technology certifications. We are a team of specialist program managers to lead external audits of Stripe's technology environment, design and improve technology controls, and support our many engineering and business partners in maintaining compliance with controls requirements.

We are consultants to company leaders, partners to our external auditors, builders of risk-reducing controls and internal products, and effective executors of large programs that are integral to the trust our Users place in Stripe and that of our regulators and partners.

What you'll do

In this role, your daily focus centers on bridging the gap between compliance requirements and high-velocity engineering. You will be a subject matter expert in technology compliance standards to ensure that Stripe's products and platform operate in accordance with the requirements they are subject to. You will apply critical thinking to define compliant workflows, design effective controls, and drive adoption of those workflows across engineering and operations teams.

You'll advise peers on secure and compliant architecture, drive decisions that maintain an always-on audit posture, and ensure compliance is embedded in engineering roadmaps and delivery processes. You'll translate technology risk into practical controls, track remediation progress, and continuously improve controls and workflows to support audit readiness and operational resilience. On any given day, you conduct a gap analysis for a new global compliance certification, prioritize remediation tasks based on a data-driven risk assessment, or translate complex ISO and SOC 2 controls into actionable technical tickets for product engineers.

You will work with cross-functional teams to automate evidence collection, define program milestones, success metrics, and operating cadences. As a program lead, you will manage dependencies, risks, and escalations across teams and drive clear accountability to ensure timely closure of remediation items.

Responsibilities
  • Deep technical compliance experience — demonstrable experience implementing and operating controls and audit programs (ISO, SOC, PCI, UK Cyber Essentials, privacy audits, or similar) in complex, distributed environments
  • Design and implement baseline technology controls, ensuring they are practical, scalable, and aligned with compliance and security requirements
  • Strong engineering collaboration — proven track record working with infrastructure, platform, SRE, and product engineering teams to deliver technical controls and automation
  • Tooling and automation mindset — experience building scalable tools, frameworks, or platforms that reduce manual evidence collection and audit testing overhead
  • Fintech or regulated industry background preferred — experience with financial reporting, payment platforms, or similarly regulated systems is strongly desired
  • Program leadership at scale — ability to lead cross-organizational programs, influence senior engineers and executives, and drive consensus across competing priorities
  • Data-driven communicator — strong analytical skills to prioritize risk and remediation, and the ability to present complex technical compliance concepts to auditors and executives
  • Relevant education and certifications — degree in Computer Science, Information Security, Engineering, or equivalent experience. Certifications such as CISA, CISSP, PCI-related, ISO lead auditor, or other…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search