35 grc engineer jobs at 27 companies in Sunnyvale, CA

1mo
Save
Mark Applied
Hide
GRC Engineer
Palo Alto or San Francisco
$130k-$170k/yr OnsiteAll Commitments Available
Zania
Zania: Automates enterprise risk and compliance using agentic AI teammates.
3+ YOE3–8 years in GRC, information security, risk management, audit, or enterprise tech customer success; strong frameworks knowledge (SOC 2, ISO 27001, NIST CSF, FedRAMP, HIPAA, PCI-DSS); proven stakeholder management and communication; SaaS/technical product experience.
GRC frameworks, SOC 2, ISO 27001, NIST CSF, FedRAMP, HIPAA, PCI-DSS
2mo
Save
Mark Applied
Hide
GRC Engineer
Foster City, California, United States
$210k-$320k/yr HybridFull Time
Replit
Replit: Cloud-based platform for building and hosting software applications.
8+ YOE8+ years in GRC or information security; deep cloud (GCP/AWS) and security architecture; strong regulatory experience; automation mindset with GRC tools.
GCP, AWS, Vanta, Drata, SOC 2, ISO 27001, PCI, HIPAA
1w
Save
Mark Applied
Hide
Senior GRC Engineer
San Francisco, California, United States
$180k-$200k/yr OnsiteFull Time
Postman
Postman: Platform for building, testing, and managing software APIs.
6+ YOE6+ years GRC experience in tech, SOC2/ISO27001/HIPAA/GDPR/CCPA/FedRAMP knowledge, proficiency in Python or JavaScript, experience integrating GRC tooling, and strong communication.
Python, JavaScript
1w
Save
Mark Applied
Hide
Senior GRC Engineer
Atlanta or Austin or Boston or Chicago or Denver or Los Angeles or New York City or San Francisco or United States
$130k-$145k/yr RemoteFull Time
Flock Safety
Flock Safety: Sells AI-powered cameras and software for public safety surveillance.
5+ YOE5+ years in GRC/cybersecurity/IT audit, SOC 2/ISO/CJIS audit experience, customer security reviews, AWS familiarity, compliance automation experience; relevant certifications a plus.
AWS
1mo
Save
Mark Applied
Hide
GRC Engineer
San Mateo, California, United States
$200k-$250k/yr OnsiteFull Time
Verkada
Verkada: Sells integrated AI-powered cloud physical security hardware and software.
7+ YOE7+ years in security/IT compliance; audits (SOC 2, ISO27001); AWS experience; strong communication; able to work onsite; scripting bonus.
AWS
3w
Save
Mark Applied
Hide
Governance, Risk & Compliance (GRC) Engineer
San Francisco, California, United States
$150k-$250k/yr OnsiteFull Time
fal
fal: Generative media infrastructure and high-performance AI inference platform.
Experience designing and running governance, risk, and compliance programs (SOC 2, ISO 27001, GDPR), conducting risk and vendor assessments, supporting audits and customer security reviews, and validating security controls in cloud/AI infrastructure.
21h
Save
Mark Applied
Hide
Security Engineer, GRC
San Francisco or Seattle or New York City
$156k-$214k/yr HybridFull Time
Plaid
Plaid: Provides financial data connectivity and payment infrastructure via APIs.
Strong Python and SQL, AWS and cloud security experience, Terraform and policy-as-code (OPA/Rego, Sentinel), CI/CD integration, continuous controls monitoring, GRC framework knowledge, and AI tooling experience.
Python, SQL, AWS, GitHub, Terraform, OPA/Rego, Sentinel, Mode, Claude, OpenAI, Anecdotes, Drata, Vanta, Paramify
1mo
Save
Mark Applied
Hide
Senior AI GRC Engineer
United States or San Francisco or New York City or London or Dublin or Tel Aviv or Sydney
$178k-$209k/yr RemoteFull Time
Vanta
Vanta: Automated security compliance and trust management software for businesses.
Deep expertise in AI governance, risk, and compliance; experience using AI agents and building automations; coding experience with TypeScript, Go, or Python; cloud-native security knowledge (AWS); experience with compliance programs (SOC 2, ISO).
Anthropic products, OpenAI products, LangChain products, Cursor, TypeScript, Go, Python, AWS
2mo
Save
Mark Applied
Hide
Senior GRC Lead
Vancouver or New York City or San Francisco
$154k-$192k/yr HybridFull Time
Brex
Brex: Corporate cards and spend management software for businesses.
5+ YOE5+ years in GRC or Security Engineering; strong automation; security frameworks SOC 2, PCI DSS, ISO 27001; Python and API integrations; cross-functional collaboration; cloud native; Terraform.
Python, APIs, Terraform, Tines
1d
Save
Mark Applied
Hide
Senior Security GRC Analyst
San Mateo, California, United States
$224k-$272k/yr HybridFull Time
Roblox
RobloxNYSE: RBLX: Platform for creating and playing user-generated 3D digital experiences.
4+ YOE4+ years GRC experience, risk assessment and policy development, ability to work with engineers, knowledge of compliance frameworks and security controls.
Factor Analysis of Information Risk (FAIR), Roblox Studio
1mo
Save
Mark Applied
Hide
Principal, GRC Automation and Cyber Risk
Seattle or San Jose
$167k-$251k/yr HybridFull Time
F5
F5NASDAQ: FFIV: Provides application delivery networking and multi-cloud security solutions.
10+ YOEBachelor's degree required; 10+ years in cybersecurity/GRC with 3–5 years hands-on engineering; Python, API, and systems-integration experience; ServiceNow IRM and Agentic/LLM framework familiarity; professional certs preferred.
Python, pandas, NumPy, FastAPI, Celery, Airflow, LangChain, AutoGen, LangGraph, CrewAI, ServiceNow IRM, RESTful APIs, GraphQL, OpenAPI/Swagger, Kafka, RabbitMQ, MuleSoft, Boomi, Workato, OAuth
1mo
Save
Mark Applied
Hide
Security and Compliance Engineer
Bangalore or San Francisco
OnsiteFull Time
Hevo Data
Hevo Data: Automated no-code data pipeline platform for real-time analytics.
5+ YOE5+ years in security or compliance engineering; hands-on SOC 2 Type II audit ownership; cloud security (AWS/GCP/Azure); GRC tooling experience; strong written communication and policy authorship skills.
SOC 2 Type II, ISO 27001, GDPR, CCPA, AWS, GCP, Azure, Sprinto, Tugboat Logic, GRC, CI/CD, infrastructure-as-code, DevSecOps, SDLC, IAM
1mo
Save
Mark Applied
Hide
Staff+ Software Engineer, GRC Platform
San Francisco or New York City or Seattle
$405k/yr HybridFull Time
Anthropic
Anthropic: Developing safe and reliable artificial intelligence systems.
8+ YOE8+ years building backend systems, data pipelines, or internal platforms; proficiency in Python or Go; experience with cloud platforms and infrastructure-as-code; strong systems thinking and experience with integrations or data infrastructure.
Python, Go, AWS, GCP, Azure, Claude, ServiceNow, Vanta, Drata, OneTrust, REST APIs, webhooks, CI/CD, ELT, ETL, infrastructure-as-code, version control
1mo
Save
Mark Applied
Hide
Staff Software Engineer, Core GRC
San Francisco, California, United States
$201k-$272k/yr HybridFull Time
Drata
Drata: Automated security and compliance platform for businesses.
10+ YOE10+ yrs software eng; 3+ yrs Node.js or React; 1+ yr NestJS; CS degree or equivalent; OAuth/SCIM/OIDC/RBAC experience; cloud platforms; REST, TS/JS; CI/CD; Git.
Node.js, React, NestJS, JavaScript, TypeScript, OAuth, SCIM, OIDC, RBAC, REST, Git, CI/CD, AWS, GCP, Azure, Terraform, Pulumi, TypeORM, Jest, Redis, ElasticSearch
1mo
Save
Mark Applied
Hide
Forward Deployed Security Engineer
Seattle or San Francisco or United States
$125k-$175k/yr RemoteFull Time
Clearly AI
Clearly AI: Automates enterprise security and privacy reviews using AI.
2+ YOE2+ years in GRC, privacy, or security engineering; hands-on threat modeling, vendor risk, and security tool integrations; strong project management and customer debugging skills.
Jira, ServiceNow, Confluence, GitHub, Linear
1mo
Save
Mark Applied
Hide
Staff Software Engineer, AI-Powered GRC Automation
Sunnyvale or Kirkland or New York or Reston or Seattle
$207k-$300k/yr OnsiteFull Time
Google
GoogleNASDAQ: GOOGL: Provides online search, advertising, cloud computing, and consumer electronics.
8+ YOEBachelor’s degree or equivalent experience; 8+ years software development; 5+ years ML/AI experience; 5+ years ML design/infrastructure; 5+ years software design/architecture; 5+ years testing and launching software.
Python, Go, TensorFlow, PyTorch, JAX, scikit-learn, LangChain, Docker, Kubernetes, Google Cloud Platform, ETL/ELT
1mo
Save
Mark Applied
Hide
Sales Engineer - Mid-West US (OH/MN)
Ohio or Minnesota or San Francisco or Tel Aviv
OnsiteFull Time
BlinkOps
BlinkOps: Agentic security automation platform for enterprise workflows.
3+ YOE3+ years in sales/solutions engineering in cybersecurity, strong security operations knowledge, hands-on with APIs, JSON/YAML and jq, experience with SIEM/SOAR/EDR/IAM/GRC integrations, demo/POC and customer-facing skills.
APIs, JSON, YAML, jq, SIEM, SOAR, EDR, IAM, GRC, AWS, Azure, GCP, MEDDPICC, Value Selling
1mo
Save
Mark Applied
Hide
Principal / Staff Security Engineer - AI Platform & DevSecOps
Palo Alto, California, United States
$210k-$270k/yr HybridFull Time
AiDash
AiDash: Satellite-first AI platform for utility and infrastructure resilience
10+ YOE10+ years in security engineering; 3+ years leading DevSecOps or platform-security in cloud native environments; strong AppSec, AI security, EDR/XDR, zero-trust, SBOM/AIBOM, vulnerability management, IaC policy-as-code, Kubernetes security, DLP, and SOC 2/ISO experience.
SAST, DAST, SCA, IaC policy-as-code, OWASP LLM Top 10, MITRE ATLAS, DLP tooling, SIEM, EDR/XDR, Cloud security platforms, Kubernetes security, Zero-trust tools, GRC tooling, Terraform, OPA/Rego, Checkov, Kyverno, tfsec, Falco, gVisor, Kata, Telepor t/StrongDM/BeyondTrust/HashiCorp Boundary, Anchore, Dependency-Track, Trivy, Aqua, Wiz, Lacework, CSPM, Snyk, Veracode, CodeQL, Semgrep, Codacy, Nightfall, Giskard, GigaText
2w
Save
Mark Applied
Hide
Security Engineer
San Mateo, California, United States
$160k-$210k/yr HybridFull Time
Skydio
Skydio: Develops autonomous AI drones for defense and industrial inspection.
3+ YOE3+ years engineering experience; strong coding in Python or Go; experience automating workflows and integrating systems via APIs; working knowledge of cloud (ideally AWS); participation in on-call rotation; eligibility to access export-controlled technical data.
Python, Go, AWS, Kubernetes, SCIM, SIEM, IAM/IdP, EDR, GRC, APIs, FedRAMP, SOC 2, ISO 27001, Texas RAMP, CJIS
1mo
Save
Mark Applied
Hide
Staff Trust & Assurance Engineer
San Francisco, California, United States
$261k-$305k/yr OnsiteFull Time
Kikoff
Kikoff: A fintech focused on financial security for consumers.
7+ YOE7+ years in security compliance, GRC, or technical audit; end-to-end SOC 2 Type II and PCI DSS experience; IaC and IAM; cloud-native; auditor liaison; strong written and engineering deliverables.
Git, CI/CD, Infrastructure as Code, Cloud platforms, IAM