Imprint is reimagining co-branded credit cards & financial products to be smarter, more rewarding, and truly brand-first. We partner with companies like H-E-B, Turkish Airlines, Brooks Brothers, and Eddie Bauer to launch modern credit programs that deepen loyalty, unlock savings, and drive growth. Our platform combines advanced payments infrastructure, intelligent underwriting, and seamless UX to help brands offer powerful financial products—without becoming a bank.
Co-branded cards account for over $300 billion in U.S. annual spend—but most are still powered by legacy banks. Imprint is the modern alternative: flexible, tech-forward, and built for today’s consumer. Backed by Kleiner Perkins, Thrive Capital, and Khosla Ventures, we’re building a world-class team to redefine how people pay—and how brands grow. If you want to work fast, solve hard problems, and make a real impact, we’d love to meet you.
The Team
The Cybersecurity team at Imprint is foundational to ensuring the safety and trust of our customers, partners, and products. As a team, we are committed to building a robust and scalable security program. Our mission is to protect Imprint’s infrastructure, applications, and data from threats while enabling the company to innovate quickly and safely. Joining this team means you’ll play a crucial role in shaping the security strategy of a rapidly growing FinTech company.
Location
This role will be a hybrid work format, with time split between working remotely and working onsite from our New York office, 2-3 days a week, as required by your manager.
The Role
As a GRC Manager, you will drive and manage core security and compliance initiatives at Imprint. This includes leading our efforts for security certifications and audits (e.g., SOC 2, PCI DSS, ISO 27001), defining and maintaining security policies, completing partner and vendor security assessments, and overseeing our cybersecurity risk management program. You’ll work cross-functionally with engineering, legal, compliance, and external partners to ensure our security posture is strong, transparent, and audit-ready.
What You’ll Do
Own and drive external security compliance and certification programs (SOC 2, PCI DSS, ISO 27001, etc.)
Serve as the primary contact for responding to partner security questionnaires and assessments
Conduct vendor and third-party security reviews, documenting risks and working with stakeholders on mitigation plans
Define, maintain, and enforce security policies, standards, and guidelines across the organization
Operate our cybersecurity risk management program—including risk identification, tracking, mitigation planning, and acceptance processes
Report and track security KPIs across teams, driving accountability and visibility into our security posture
Collaborate with security application engineers to coordinate security reviews—gathering relevant information, creating and managing review tickets, and communicating outcomes and next steps to stakeholders
Support internal and external audits and coordinate evidence collection across teams
What We Look For
5+ years of experience in cybersecurity, with a strong focus on compliance, risk, and governance
Experience leading or supporting compliance frameworks such as SOC 2, PCI DSS, ISO 27001, or NIST CSF
Familiarity with security questionnaire platforms and processes (e.g., SIG, CAIQ)
Deep understanding of cybersecurity risk management methodologies and third-party/vendor security due diligence
Strong knowledge of policy and standards development, security controls, and risk assessment processes
Excellent communication and collaboration skills with the ability to engage technical and non-technical stakeholders
Highly organized and detail-oriented with experience managing cross-functional programs and deadlines
Nice to Have
Familiarity with AWS cloud security principles and modern SaaS environments
Security certifications such as CISSP, CISM, CRISC, or CISA
Experience in fintech, payments, or other highly regulated industries
Competitive compensation and equity packages
Leading configured work computers of your choice
Flexible paid time off
Fully covered, high-quality healthcare, including fully covered dependent coverage
Additional health coverage includes access to One Medical and the option to enroll in an FSA
16 weeks of paid parental leave for the primary caregiver and 8 weeks for all new parents
An understanding that successful hybrid work requires flexibility and an appreciation for asynchronous work
Access to industry-leading technology across all of our business units, stemming from our philosophy that we should invest in resources for our team that foster innovation, optimization, and productivity
Imprint is committed to a diverse and inclusive workplace. Imprint is an equal opportunity employer and does not discriminate on the basis of race, national origin, gender, gender identity, sexual orientation, protected veteran status, disability, age, or other legally protected status. Imprint welcomes talented individuals from all backgrounds who want to build the future of payments and rewards. If you are passionate about FinTech and eager to grow, let’s move the world forward, together.
Apply Now