Principal Accountabilities and Responsibilities:

• Contribute to the provision of advisory services to GPS to support a clear understanding of Regulatory compliance risk exposure with respect to clients, transactions, and products.
• Maintain an effective control framework and ensure compliance with all relevant external laws & regulations, internal codes and policies and good market practices.
• Foster a strong risk and control and compliance culture, including ensuring adequate management focus and demonstrative “tone from the top” and proactive risk management.
• Strengthen GPS knowledge of risk and compliance management by incorporating risk and compliance considerations in all activities undertaken to protect and enable the business’ activities through a robust risk management understanding.
• Act in accordance with HSBC’s purpose and values, being cognisant of all applicable local legal, fiscal, regulatory and shareholder requirements as they relate to the Regulatory Compliance sub-function and the operations of HSBC.

Qualifications:

• Bachelor degree required; advanced degree or certification (JD, MBA, CRCM, CAMS) preferred.
• Strong experience in financial services compliance, ideally in payments, digital banking or digital asset businesses.
• Strong working knowledge of OCC and FDIC rules, including guidance on third party-risk management, UDAAP, Reg R, Reg CC, customer protection, deposit operations and supervisory expectations for innovative banking activities.
• Experience supporting digital platforms and/or fintech integrations, with familiarity in blockchain or digital asset product is a plus.
• Ability to interpret complex regulations and communicate practical, business-aligned guidance.
• Excellent analytical, interpersonal and communication skills, with proven ability to influence stakeholders and operate in a fast-paced environment.

XML job scraping automation by YubHub

You will be the primary in-house legal resource on regulatory and privacy matters, working closely with the SVP, Legal & Compliance and outside counsel to keep Greenlight moving at speed while managing risk thoughtfully.

Your day-to-day:

• Serve as primary in-house advisor on financial services regulation, including Reg E, Reg Z, UDAAP, GLBA, and state-level requirements
• Support bank partner relationships on regulatory compliance matters
• Partner with Product and Business Development on regulatory feasibility of new initiatives, ensuring compliance is built in from the start
• Own ongoing Terms of Service updates and cardholder agreement revisions for product launches
• Manage and direct outside regulatory counsel efficiently, serving as the primary in-house point of contact for outside counsel on regulatory matters
• Serve as in-house privacy counsel, owning day-to-day privacy matters including data subject requests, vendor DPAs, and AI addenda
• Manage ongoing COPPA compliance, including the 2025 COPPA amendments, and state privacy law compliance across applicable jurisdictions
• Oversee privacy tools including Transcend (data deletion automation) and TerraTrue (data mapping), in partnership with the security and engineering teams
• Support periodic privacy program reviews and manage outside privacy counsel engagement
• Provide legal support for hardware product launches, including consumer-facing terms, warranties, refund policies, and fee disclosures
• Partner with Product and Compliance on new product assessment and legal review through the product lifecycle
• Advise on packaging, export control, and regulatory considerations unique to physical consumer products
• Support regulatory review of new product initiatives from concept through launch

Who you are:

• You thrive in a high-growth environment where priorities shift quickly and the regulatory landscape is constantly in flux
• You are a clear communicator who can translate dense legal and regulatory requirements into practical, plain-English guidance for non-legal stakeholders
• You are comfortable working independently, managing outside counsel relationships, and making judgment calls without hand-holding
• You can juggle multiple workstreams simultaneously without losing track of the details
• You bring good judgment on when to escalate and when to run with something

What you’ll bring to the team:

• A J.D. from an accredited U.S. law school and active license to practice law in at least one U.S. jurisdiction.
• 5–8 years of legal experience, with meaningful in-house or law firm experience in fintech, consumer finance, or regulated financial services
• 2+ years of Law firm experience
• Prior experience in a consumer-facing fintech or regulated financial services environment strongly preferred; experience working with bank partners or in a program manager structure a plus.
• Hands-on experience with financial services regulation, including Reg E (including prepaid rules), Reg Z, UDAAP, and GLBA.
• Privacy experience including COPPA, CCPA/state privacy laws, and data processing agreements.
• Hardware, IoT, or consumer product legal experience is a plus but not required.
• Familiarity with legal operations tools (Ironclad or similar) a plus.

Additional Information

Our stance on salaries: Greenlight provides a competitive compensation package with a market-based approach to pay and will vary depending on your location, experience and skill set. The total compensation package for this position will also include a discretionary performance bonus, equity rewards, medical benefits, 401K match, and more. Greenlight conducts continuous compensation evaluations across departments and geographies to ensure we are keeping our pay current and competitive.

The estimated base pay range for this position in (NY, CA, WA): $165,000-220,000

The estimated base pay range for this position in (CO): $165,000-200,000

XML job scraping automation by YubHub