Staff Governance, Risk, and Compliance Engineer

Join Crusoe as a Staff Governance, Risk, and Compliance (GRC) Engineer, where you will play a pivotal role in enhancing our compliance strategies and risk management frameworks. You will be responsible for developing and implementing GRC policies, ensuring regulatory compliance, and collaborating with cross-functional teams to mitigate risks effectively. If …

Scale AI is on the lookout for a dynamic and seasoned Director of Governance, Risk, and Compliance (GRC) to spearhead our centralized GRC function. This crucial role is designed to fortify and propel the organization forward. The selected candidate will play a key role in enhancing and guiding our GRC framework, establishing a long-term strategic vision, collaborating with various teams across the company, and representing Scale’s GRC interests to partners, regulators, and stakeholders. A strong foundation in corporate regulatory compliance and risk management, alongside excellent leadership and relationship-building skills, is essential for success in this role.Key Responsibilities:Lead the GRC function, encompassing compliance governance, advisory, risk management, and regulatory adherence.Develop and mentor a team of compliance professionals focused on governance, assurance, and GRC engineering to create efficient systems and processes.Enhance Scale’s Enterprise Risk Management (ERM) program, focusing on risk identification, assessment, mitigation, and reporting.Collaborate with Legal, Security, Product, Engineering, and Operations teams to support Scale’s growth in a regulated environment.Contribute to Scale’s AI governance strategy, including the implementation of new AI regulations such as the EU AI Act and NIST AI RMF.Drive the vision for how GRC can protect Scale while also serving as a competitive advantage.Represent the GRC team to internal and external stakeholders, including partners and regulators.Maintain a strategic outlook on compliance while being detail-oriented on specific compliance issues.

About DelveDelve is dedicated to transforming the compliance landscape, eliminating tedious manual tasks and creating seamless, automated partnerships. Our innovative solutions are trusted by over 450 rapidly expanding companies, including Lovable, 11x, and WisprFlow, enabling them to save countless hours while ensuring secure growth. With backing from prominent investors such as Insight Partners, General Catalyst, and Y Combinator, our team boasts a rich diversity of talent, including former founders, Olympiad medalists, and engineers from prestigious institutions like OpenAI, Stanford, MIT, and Berkeley.About the RoleIn the role of Senior GRC Specialist, you will serve as the primary advisor to our internal teams and customers. Your extensive knowledge of compliance frameworks will be key in guiding clients through their compliance journeys. You will closely collaborate with Sales, Customer Success, Product, and Engineering teams to translate compliance requirements into impactful solutions. This position is available for candidates located in the San Francisco Bay Area or those who prefer to work fully remotely from anywhere in the U.S.With a recent $32M Series A funding round, we are poised for rapid growth!Key ResponsibilitiesCustomer Advisory & Enablement: Conduct consultative calls and workshops to distill complex compliance standards such as SOC 2, ISO 27001, HIPAA, GDPR, HITRUST, FedRAMP, and FDA CFR into actionable strategies.Framework Expertise: Act as the Subject Matter Expert on various cybersecurity frameworks, addressing customer inquiries, assessing control implementations, and resolving audit challenges.Cross-Functional Collaboration: Partner closely with Product and Engineering teams to integrate audit readiness and customer insights into our platform’s core structure.Sales & Customer Success Support: Equip Sales and Customer Success teams with essential resources, including talking points and battlecards, to ensure confidence during customer interactions.Policy & Controls: Lead the development, documentation, and ongoing enhancement of our internal compliance framework as well as customer-oriented best practices.Audit Preparedness: Organize readiness assessments and manage evidence collection to guarantee that both Delve and our customers are always audit-ready.QualificationsProven experience in governance, risk management, and compliance, particularly with frameworks such as SOC 2, ISO 27001, HIPAA, and GDPR.Strong communication skills and the ability to engage effectively with clients and internal teams.Demonstrated ability to work collaboratively across different functions to achieve common goals.Experience in conducting workshops and training sessions.Bachelor's degree in a relevant field or equivalent experience.

We are looking for a dedicated and detail-oriented Governance, Risk, and Compliance (GRC) Manager to join our team at Decagon in San Francisco. In this pivotal role, you will be responsible for developing, implementing, and maintaining our governance, risk, and compliance strategies to ensure our operations align with regulatory requirements and industry standards.Your expertise will help us assess risk management processes and enhance our compliance framework, allowing Decagon to maintain its reputation as a leader in the industry. This is an exciting opportunity to contribute to our organizational integrity and enhance our compliance culture.

Role Overview Sigma Computing is hiring a Governance, Risk & Compliance (GRC) Manager. This position is based in San Francisco, CA, with the option to work from our upcoming New York office. The GRC Manager reports directly to the General Counsel and will shape and expand the company's governance, risk, and compliance programs. This role works closely with teams across Legal, Engineering, Product, Sales, Operations, and company leadership. The GRC Manager will build and refine a company-wide GRC framework to support business growth, manage risk, and ensure compliance with regulatory requirements. The work aims to strengthen governance structures, implement scalable risk management, and foster stakeholder trust. What You Will Do Governance Design and implement governance frameworks, including reporting, policy governance, and control oversight. Establish and maintain enterprise policies, standards, and procedures across technology, security, privacy, and operations. Build and lead a governance committee structure to support oversight and decision-making. Create dashboards and metrics to track program maturity and effectiveness. Work with leadership to align governance activities with business strategy and risk appetite. Risk Management Develop and manage an Enterprise Risk Management (ERM) program. Conduct regular risk assessments across the organization and maintain a dynamic risk register. Establish and support business continuity and disaster recovery programs, including testing and tabletop exercises. Implement third-party risk management, including vendor assessments, contract reviews, and ongoing monitoring. Formulate risk treatment plans and oversee remediation efforts. Facilitate risk-informed decision-making throughout the company. Coordinate with leaders across functions to ensure comprehensive risk identification and management. Compliance Oversee audit and certification programs, including SOC 2, ISO 27001, HIPAA, and other relevant standards. Develop and maintain compliance monitoring programs to track regulatory changes and ensure ongoing adherence.

Join bcforward3 as the R2R Governance, Risk, and Compliance (GRC) Lead, where you will play a crucial role in overseeing and enhancing our governance frameworks. Your expertise will help drive compliance initiatives and mitigate risks across the organization, ensuring we maintain the highest standards of integrity and accountability.

Why Join UsAt Brex, we are revolutionizing the way businesses manage their finances through our AI-driven spend platform. Our integrated solutions encompass corporate cards, banking, and global payments, accompanied by intuitive software for travel and expenses. We proudly serve tens of thousands of businesses, ranging from startups to large enterprises, including notable names like DoorDash, Flexport, and Compass. Our mission is to empower companies to confidently control their spending, optimize costs, and enhance efficiency on a global scale.Joining Brex means pushing boundaries, challenging norms, and collaborating with some of the brightest minds in the industry. We are dedicated to cultivating a diverse and inclusive culture, believing that your potential should only be limited by your ambitions. We provide the necessary tools, resources, and support for you to advance your career.Engineering at BrexOur engineering teams focus on creating scalable systems with speed and precision. We have diverse teams across Software, Data, Security, and IT that work with high autonomy and deep collaboration. We tackle complex technical challenges, take ownership of our outcomes, and strive for excellence in every phase, from architecture to deployment, fostering an environment where engineering is viewed as a craft and innovators become leaders.What You’ll DoAs a Senior GRC Engineer in Brex’s Governance, Risk, and Compliance function, you will play a pivotal role in advancing our compliance maturity. You will expertly merge compliance knowledge with technical execution to spearhead essential GRC processes that mitigate risk, ensure compliance, and cultivate trust with our clients and partners. Your efforts will enhance the technical foundation of our Trust program by automating security controls, integrating security tools with GRC platforms, and creating scalable processes that enable efficient compliance as we enter new markets. You will operate at the crossroads of security, engineering, and compliance, translating regulatory demands into actionable technical solutions while building automated processes that eliminate manual work.Your expertise in frameworks such as SOC 2, PCI DSS, ISO 27001, and AI governance will be essential in designing controls for emerging compliance needs and enhancing existing programs through automation and continuous monitoring. You will support initiatives in Trust Assurance, Third Party Risk Management, and other Security Risk Management projects. By collaborating with our Engineering, Infrastructure, and Product teams, you will help translate compliance frameworks into actionable technical controls, developing automated systems that facilitate world-class security as Brex continues to grow.

HockeyStack is revolutionizing the agent infrastructure for enterprise revenue. After five years of development, we have created the only data architecture that maintains causality across the complete revenue stack, capturing every interaction and signal in sequence. Building on this robust foundation, we introduced Nex-lm, a specialized AI engine that translates natural language into deterministic agent workflows. This innovation empowers organizations to extract their revenue blueprint from data, automate processes, and execute strategies across sales, marketing, and customer success with consistency and scalability.Unlike conventional dashboard tools with AI features, we are crafting the operational layer that eliminates human bottlenecks in enterprise revenue organizations. This is a pioneering category, and we are committed to leading it.Our company has successfully raised over $50M from esteemed investors including Bessemer Venture Partners, General Catalyst, and Y Combinator.We thrive on in-person collaboration in San Francisco, embodying a fast-paced environment with a team driven to succeed.Since our launch in late 2023, we have rapidly scaled to 8-figures in ARR and process over 60 TB of revenue data each month, partnering with top-tier B2B companies such as Microsoft, Harvey, New Relic, and Collibra. Your MissionAs HockeyStack matures, our clients entrust us with their most critical revenue data. To ensure we continue delivering exceptional value as we scale, we are seeking a dedicated leader for our Governance, Risk, and Compliance (GRC) initiatives.This role marks the first dedicated GRC hire at HockeyStack. You will be the primary accountable individual for our compliance program, risk management framework, and overall security posture. You will collaborate closely with key departmental leaders and engage with engineering and operations teams.This position is structured as fractional/part-time (approximately 20 hours per week) with potential flexibility during audits, incidents, or significant customer reviews. While preference is given to candidates in San Francisco, we are open to remote arrangements for the right individual. You will oversee all aspects of compliance, from SOC 2 audit readiness to vendor risk assessments. If you are eager to build a compliance function from the ground up at one of the fastest-growing companies in B2B software, this opportunity is for you.

About Juniper SquareAt Juniper Square, our mission is to empower individuals by unlocking the immense potential of private markets. Privately owned assets like commercial real estate, private equity, and venture capital constitute half of the financial ecosystem but are often inaccessible to the general public. We are at the forefront of digitizing these markets, enhancing efficiency, transparency, and accessibility in one of the most dynamic sectors of finance. If you are passionate about leveraging technology to improve market functionality and wish to be part of a values-driven organization, we invite you to apply.We offer a range of work arrangements, from fully remote positions to full-time roles in our physical offices. Our commitment to a digital-first approach enables effective collaboration across 27 U.S. states, 2 Canadian provinces, India, Luxembourg, and England. For those who prefer an office environment, we maintain physical locations in San Francisco, New York City, Mumbai, and Bangalore.Your RoleAs a Senior GRC Analyst, you will play a pivotal role in supporting our governance, risk management, and compliance (GRC) framework. The ideal candidate will possess extensive experience in developing scalable and tailored risk management and compliance processes suited for a high-growth organization. Strong analytical, problem-solving, and communication skills are essential, as you will collaborate with diverse cross-functional teams to foster effective risk management practices.Key ResponsibilitiesCustomer Trust and AssuranceCompliance ManagementOversee the maintenance and onboarding of security compliance certifications and frameworks, including SOC2, ISO, and more.Collaborate with cross-functional teams to gather controls evidence for timely submissions to external auditors.Facilitate a seamless audit process through effective communication and teamwork.Continuously enhance the audit process through automation and rationalization of controls.

Role Overview Crusoe is seeking a Senior Governance, Risk, and Compliance (GRC) Analyst in San Francisco, CA. This role focuses on keeping operations in line with regulatory requirements and internal policies. The analyst leads efforts to identify, assess, and reduce risks, working closely with teams across the company to strengthen the compliance framework. The position shapes risk management strategies and supports the integrity of the organization.

About the RoleWe are in search of a dedicated and skilled Senior Governance, Risk, and Compliance (GRC) Analyst to enhance our team. This crucial position will allow you to safeguard our impactful operations, manage risks effectively, and ensure compliance with the intricate regulatory frameworks of the fintech sector. As a subject matter expert, you will transform complex requirements into practical controls while fostering a culture of security throughout the organization.Key ResponsibilitiesOversee information security and third-party risk assessments, formulating mitigation strategies.Lead both internal and external audits, including evidence collection and remediation efforts.

Join dstaff as a Technical Risk Governance Specialist in beautiful San Francisco, California! We are seeking a motivated professional to oversee and enhance our risk governance framework. You will play a crucial role in developing policies, procedures, and controls to manage technical risks effectively.

Join Anthropic as a Compliance Governance & Oversight Lead, where you will play a pivotal role in shaping the compliance framework that upholds our commitment to ethical AI development. This position offers a unique opportunity to lead compliance initiatives across various facets of our operations.

About Gusto Gusto supports over 400,000 small businesses nationwide by handling payroll, health insurance, 401(k) plans, and HR services. This work helps business owners focus on what matters most to them and their customers. With offices in Denver, San Francisco, and New York, Gusto aims to build a workplace that reflects the diversity of the communities it serves. Full-time employees receive competitive salaries, a comprehensive benefits package, and equity in the form of RSUs. Compensation varies by role, level, and location. Details about Gusto’s approach to rewards can be found on their Total Rewards philosophy page. AI plays a key role in daily operations at Gusto. Team members are expected to use AI tools relevant to their work and continue building their skills as technology evolves. The level of AI experience required depends on the position and will be assessed during the interview process. Role Overview: Staff Software Engineer – Payments & Risk Gusto is hiring experienced full-stack engineers for teams working on payments and risk platforms. These systems serve small business owners every day. Staff Software Engineers in this group work across the full lifecycle of payments or risk systems: shaping architecture early in design, building internal features and APIs, and maintaining performance after launch. The work includes engineering the core business engine, providing reliable backend services for product teams, and setting a high standard for engineering practices. Team Focus Areas Payments: The Payments team manages all financial transaction operations for Gusto’s products. This includes ensuring secure fund transfers among partners, employers, employees, and government agencies. Engineers on this team build new payment features for both U.S. and international markets and help redesign the payments platform to support future growth. Risk: The Risk team develops systems that protect Gusto and its clients from financial risks. This work shapes experiences that keep customers and the company safe. Location This role is based in San Francisco, CA (hybrid) or New York, NY (hybrid).

Join dstaff as a Technical Risk Governance Specialist in the vibrant city of San Francisco! We are looking for a dedicated individual to help manage and mitigate technical risks within our organization. As part of our team, you will play a crucial role in ensuring that our technology systems are secure, compliant, and aligned with industry best practices.

Role Overview sia is seeking a Risk & Compliance Subject Matter Expert (SME) Consultant in San Francisco. This consultant guides clients through risk management challenges and compliance frameworks, working closely with cross-functional teams to create solutions that fit industry standards. What You Will Do Conduct in-depth risk and compliance assessments for client organizations Identify areas of potential risk and recommend practical mitigation strategies Develop and implement compliance initiatives tailored to client needs Advise clients on regulatory changes and industry trends Collaborate with teams across disciplines to ensure solutions align with current standards About the Team Join a group that values expertise and practical insight, helping clients stay ahead in a changing regulatory landscape.

Join Mercury as a Compliance Risk Manager within our Banking Advisory team, where your expertise will guide financial institutions in navigating complex regulatory landscapes. You will work collaboratively with clients to develop compliance strategies, assess risks, and implement effective controls to mitigate potential issues.Your role will involve analyzing compliance frameworks, conducting risk assessments, and providing actionable insights to enhance the client’s operational integrity. As a key member of our team, you will also stay abreast of evolving regulations and industry trends, ensuring our advisory services remain relevant and impactful.

Airbnb, founded in 2007, has revolutionized the way people travel by connecting over 5 million hosts with more than 2 billion guests worldwide. Our platform offers unique stays and experiences that foster genuine connections with communities around the globe.The Role:The Airbnb Payments team is dedicated to facilitating seamless monetary exchanges through user-friendly payment services, embodying our mission to 'belong anywhere.' We are constructing a premier payments platform capable of processing billions of dollars across 191 countries and 75 currencies through a complex network of payment partners. As we expand, we will be integrating new partners, licenses, compliance measures, and enhancing the payment experiences for both guests and hosts.As a Senior Staff Engineer and Technical Lead within the Payments Compliance organization, you will oversee the technical strategy and architectural vision across a comprehensive Compliance engineering landscape, which includes Policy Enforcement, Identity, Screening, Auditing, and Compliance Experience. Your focus will be to ensure the scalability and cohesion of compliance systems while aligning them with the broader objectives of the company in an increasingly complex regulatory environment.We seek a seasoned technical leader capable of bridging deep systems expertise with organizational influence. You will drive Compliance's strategic initiatives, defining component integration, identifying shared capabilities, and ensuring optimal use of platform investments made by partner teams. Your decisions will significantly impact Airbnb's compliance with obligations such as Anti-Money Laundering (AML), Know Your Customer (KYC), and sanctions screening, all while minimizing operational costs and enhancing customer experience.This role extends beyond the Compliance team, requiring collaboration with various engineering teams and cross-functional stakeholders across Product, Content, Legal, and Design.

Join Asana as a Security Risk and Compliance Analyst, where you will play a critical role in safeguarding our organizational assets and ensuring compliance with industry standards. You will collaborate with various teams to identify risks, implement security measures, and drive compliance initiatives across the company. Your expertise will contribute to our mission of enhancing security protocols and fostering a culture of safety and compliance.

Supported by prominent Silicon Valley investors, Peregrine Technologies empowers public safety organizations, state and local governments, federal agencies, and private-sector entities to tackle societal challenges with unmatched speed and precision. Our AI-driven platform transforms isolated and disparate data into operational intelligence, swiftly revealing mission-critical information that facilitates improved decision-making at every level. Currently, Peregrine serves hundreds of clients across more than 30 states and two countries, impacting over 125 million individuals, and we are expanding our reach into the enterprise sector and internationally.TeamOur engineering team is dedicated to creating empathetic solutions. We prioritize understanding how users interact with our product, which guides us to the best outcomes. Our engineers collaborate closely on-site to grasp the diverse use cases that Peregrine supports.We are in search of a Data Governance Engineer to join our core engineering teams. Our challenges range from enabling real-time user collaboration on detailed maps to constructing scalable backend architectures capable of processing billions of data points.The Data Governance team is responsible for developing services, systems, and product features that assist our clients in managing their data assets throughout their entire lifecycle within the Peregrine platform. We ensure secure, fine-grained data access and auditing controls.RoleAs a software engineer on our expanding team, you will have significant ownership across our technology stack. Your role will involve architecting and building the next generation of our core access control and governance systems, which manage access to over 7 billion data points on Peregrine's multi-tenant data platform. This includes implementing features such as fine-grained permissions, auditing, policy enforcement, metadata management, and data labeling & compliance across the platform.You will collaborate closely with Product Managers to lead projects from inception through design and implementation. Your responsibilities will include designing and building data governance features while making strategic trade-offs to ensure a balance between security and usability.Our technology stack is continuously evolving, anchored by a backend foundation of Python, Django, Celery, Airflow, and Kafka; a frontend developed with React, Redux, and Mapbox; data storage solutions utilizing PostgreSQL and Elasticsearch; and machine learning models hosted on Bedrock and Sagemaker, supported by AWS, Pulumi, Terraform, and Kubernetes.