Director of Compliance- GRC

Worth AI is a B2B fintech platform transforming how financial institutions onboard and underwrite small and medium-sized businesses. Our AI-powered infrastructure consolidates KYB, KYC, AML, fraud detection, and identity verification into a single decisioning system — powered by a database of 700M+ SMBs and 1,200+ data points. We're SOC 2 certified, GDPR/CCPA compliant, and operating at the intersection of financial services, machine learning, and regulatory technology.

The Role

Worth AI is seeking a Director of Compliance to lead and evolve the company’s compliance and governance programs as we scale. This role will serve as the internal subject matter expert across regulatory compliance, AI governance, risk management, and audit readiness while partnering closely with Product, Engineering, Security, Legal, and Customer teams.

This is a highly cross-functional and externally facing role. The ideal candidate is comfortable engaging directly with enterprise customers, financial institutions, auditors, and partners to address regulatory, governance, and compliance-related questions while representing Worth AI as a trusted compliance leader.

This is a high-impact role for someone comfortable operating in a fast-moving environment, building scalable compliance processes, and translating complex regulatory requirements into practical business and product guidance.

• Own and maintain Worth’s compliance and governance programs across AML/BSA, KYB/KYC, OFAC/sanctions, FCRA, privacy, and applicable financial services regulations
• Lead and mature the company’s GRC function, including risk assessments, policy governance, control management, audit readiness, and compliance documentation
• Support and manage external audits, certifications, and regulatory initiatives including SOC 2, PCI DSS, GDPR/privacy-related obligations, customer due diligence reviews, and emerging AI governance or assurance frameworks as the company and regulatory landscape evolve
• Serve as a compliance advisor to Product and Engineering teams to ensure regulatory and governance requirements are embedded into platform capabilities and workflows
• Develop and maintain Worth’s AI governance framework, including oversight of AI usage, model governance, data handling, automated decisioning considerations, and emerging AI regulatory requirements
• Monitor regulatory developments and translate evolving requirements into actionable operational and product guidance
• Act as a primary point of contact for enterprise customers, auditors, and partners on compliance, governance, and regulatory matters
• Oversee third-party compliance and risk management processes for vendors, data providers, and technology partners
• Lead compliance-related incident response activities, including regulatory inquiries, customer escalations, and coordination on privacy or security events
• Own and mature Worth’s third-party risk management program, including compliance oversight, due diligence, ongoing monitoring, and risk assessments for vendors, data providers, technology partners, and other third parties supporting regulated operations
• Build compliance awareness and training programs across the organization and help foster a strong culture of governance and accountability

• 8+ years of experience in compliance, risk, governance, or regulatory operations within fintech, financial services, SaaS, or other regulated industries
• Strong knowledge of AML/BSA, KYB/KYC, OFAC, FCRA, GDPR, CCPA, and related regulatory frameworks
• Experience operating or supporting GRC programs, including risk registers, controls, policies, audits, and compliance frameworks
• Experience supporting or managing SOC 2, PCI DSS, or similar assessments
• Familiarity with AI governance, automated decisioning oversight, model risk concepts, and emerging AI regulatory frameworks such as the EU AI Act or NIST AI RMF
• Ability to communicate effectively with auditors, regulators, enterprise customers, and cross-functional internal teams
• Strong operational mindset with the ability to balance regulatory rigor with startup execution speed
• Experience working cross-functionally with Product, Engineering, Security, and Legal teams

Nice to Have

• CAMS, CRCM, or similar compliance certification
• Experience with automated decisioning platforms or AI/ML-driven underwriting
• Background working with community banks, credit unions, or payment processors
• Familiarity with international compliance frameworks (UK FCA, Canadian FINTRAC)
• Experience with emerging AI regulatory frameworks (EU AI Act, NIST AI RMF, or equivalent)

** All Remote Hires - will be required to travel to Orlando, Florida at least twice per year for Town Halls and team collaboration in addition to orientation in Orlando, Florida

• Health Care Plan (Medical, Dental & Vision)
• Retirement Plan (401k, IRA)
• Life Insurance
• Flexible Paid Time Off
• 9 paid Holidays
• Family Leave
• Work From Home
• Free Food & Snacks (Orlando)
• Wellness Resources