Lead, Information Security & Compliance

Lead Security & Compliance

Location: Bengaluru, India
Work Model: 5 days work from office
Company: interface.ai
Function: Engineering / Security & Compliance
Reports to: VP Engineering / Security & Privacy Leadership

About the Role

We are looking for a Lead Security & Compliance professional to help strengthen interface.ai’s security, compliance, privacy, and risk programs in India.

This is a hands-on, execution-focused role for someone who can work closely with Engineering, Cloud Infrastructure, Product, Legal, Sales, and Customer teams to ensure our AI products, cloud systems, and internal controls meet the security and compliance expectations of banks, credit unions, and regulated financial institutions.

You will play a key role in driving security governance, compliance readiness, customer due diligence, audit support, cloud security controls, risk assessments, and security-by-design practices across the organization.

This role is ideal for someone who has strong security and compliance fundamentals, understands SaaS/cloud environments, is comfortable with financial services or regulated customers, and can operate in a fast-paced startup environment with high ownership.

What You Will Do

As Lead Security & Compliance, you will be responsible for:

• Support and drive company-wide security, privacy, and compliance initiatives across products, engineering, cloud infrastructure, and internal systems.
• Help implement and maintain security policies, procedures, standards, and control frameworks.
• Support compliance programs related to SOC 2, ISO 27001, GLBA, FFIEC, and other applicable customer or regulatory requirements.
• Partner with Engineering and Cloud Infrastructure teams to embed secure architecture, DevSecOps, access controls, encryption, logging, monitoring, and vulnerability management practices.
• Conduct risk assessments across cloud infrastructure, applications, data flows, vendors, and internal processes.
• Support cybersecurity incident response planning, documentation, investigation, and post-incident improvements.
• Work with Sales, Legal, Product, Compliance, and Customer Success teams to respond to customer security questionnaires, audits, RFPs, due diligence requests, and banking compliance reviews.
• Maintain and improve internal security documentation, audit evidence, control mappings, and compliance artifacts.
• Help drive privacy-by-design and security-by-design principles across product and AI initiatives.
• Track remediation plans for audit findings, security gaps, vulnerabilities, and compliance risks.
• Collaborate with global stakeholders across India and the US to ensure security and compliance practices scale with the company’s growth.
• Promote a proactive security culture across engineering and business teams.

Requirements

• 7+ years of experience in information security, cybersecurity, compliance, risk management, cloud security, or security engineering.
• Experience working in SaaS, fintech, banking, financial services, AI/technology, or other regulated environments.
• Strong understanding of security and compliance frameworks such as SOC 2, ISO 27001, GLBA, FFIEC, NIST, CIS, or similar frameworks.
• Hands-on experience with cloud security controls, preferably in AWS environments.
• Good understanding of access management, data security, encryption, vulnerability management, logging, monitoring, endpoint security, and incident response.
• Experience supporting audits, customer security reviews, vendor risk assessments, and compliance evidence collection.
• Ability to work with Engineering, Infrastructure, Product, Sales, Legal, and Customer-facing teams.
• Strong documentation, communication, problem-solving, and stakeholder management skills.
• Comfortable operating in a fast-paced, high-growth startup environment with shifting priorities.
• High ownership mindset, attention to detail, and ability to drive closure without heavy process.
• Bachelor’s degree in Information Security, Computer Science, Engineering, or a related field.

Preferred Qualifications

• Experience working with banking, credit union, fintech, lending, mortgage, payments, or financial services customers.
• Experience in AI, SaaS, cloud-native, or enterprise software companies.
• Exposure to privacy, data protection, and customer data handling requirements.
• Familiarity with DevSecOps, secure SDLC, threat modeling, application security, and cloud infrastructure reviews.
• Experience with tools related to GRC, vulnerability management, SIEM, cloud security posture management, IAM, and audit management.
• Certifications such as CISSP, CISM, CCSP, ISO 27001 Lead Implementer, ISO 27001 Lead Auditor, CISA, or Security+.
• Experience working with globally distributed teams, especially India-US engineering and leadership teams.

What We Are Looking For

We are looking for someone who is:

• Hands-on and execution-oriented, not just policy-focused.
• Comfortable working directly with engineering and infrastructure teams.
• Strong in security and compliance fundamentals.
• Able to balance customer trust, regulatory expectations, and startup speed.
• Detail-oriented in audits, evidence, controls, and documentation.
• Clear and confident in communication with both technical and non-technical stakeholders.
• Resourceful, AI-fluent, and able to use modern tools to improve speed and productivity.
• Excited to build security and compliance foundations for a high-growth AI company serving regulated financial institutions.

Why Join interface.ai

• Join a Series A, profitable, high-growth AI company with strong product-market fit.
• Work on security and compliance for AI products used by banks and credit unions.
• Help build trust, privacy, and security foundations for a platform serving millions of banking customers.
• Be part of a fast-paced startup culture with high ownership, autonomy, and impact.
• Work closely with engineering, product, infrastructure, legal, sales, and leadership teams.
• Build in a mission-driven company that is helping democratize financial wellness through AI.

Work Environment

This is a Bengaluru-based, 5-day work-from-office role. We are looking for someone who thrives in an in-person, high-energy startup environment and can collaborate closely with engineering, product, and leadership teams.