Brain Co.: Builds AI software platforms for governments and large enterprises.
8+ YOE8+ years building and running GRC programs in regulated environments; hands-on with SOC 2 Type II, HIPAA, ISO 27001, NIST 800-171, FedRAMP/GovRAMP, GLBA.
Brex: Corporate cards and spend management software for businesses.
5+ YOE5+ years in GRC or Security Engineering; strong automation; security frameworks SOC 2, PCI DSS, ISO 27001; Python and API integrations; cross-functional collaboration; cloud native; Terraform.
Pallet: Automating logistics and supply chain workflows using AI agents.
7+ YOE7+ years GRC/security compliance experience; ownership of SOC 1/SOC 2 Type II cycles, GDPR/CCPA privacy, vendor risk; technical familiarity with AWS/GCP and compliance automation; certifications (CISA, CISSP, ISO 27001 LA) a plus.
SalesforceNYSE: CRM: Sells cloud-based customer relationship management and business software solutions.
3+ YOE3-5+ years FedRAMP and software security governance; project/program management; experience with GovCloud, and certifications like CISSP/CISA/CISM.
AdobeNASDAQ: ADBE: Provides software for digital media creation and marketing analytics
8+ YOE8–12+ years in strategy, business operations, risk management, or related fields; proven experience building metrics and executive reporting; able to engage and influence executives.
Sigma Computing: Cloud-native analytics platform featuring a spreadsheet-style interface.
4+ YOE4+ years GRC experience in SaaS/tech, proven history building GRC programs, leading SOC 2/ISO/HIPAA audits, implementing risk frameworks (COSO/NIST), privacy (GDPR/CCPA) knowledge, strong communication and cross-functional influence.
WindBorne Systems: Operates smart weather balloons to provide global atmospheric data.
3+ YOE3+ years in compliance audits and US government compliance; experience with CMMC, FedRAMP, NIST frameworks; security, cloud, and GRC tooling expertise; ability to obtain security clearance.
Drata, Vanta, eMASS, Tenable Security Center, Burp, SIEM, AWS, Azure
Risk Consulting - Risk Technology - GRC/IRM Platforms - Manager (New York, NY, US, 10001-8604)
New York or Atlanta or Boston or Chicago or Cleveland or Dallas or Detroit or Pittsburgh or Hoboken or Houston or Los Angeles or McLean or Miami or Minneapolis or North Carolina or Philadelphia or Portland or San Francisco or Seattle or Tampa
$150k-$260k/yrHybridFull Time
EY: Global firm providing audit, tax, and professional consulting services.
4+ YOEBachelor's + 5 yrs (or Master's + 4 yrs) implementing ServiceNow IRM/TPRM/BCM; ServiceNow CSA and GRC certifications; experience leading implementations, integrations, and client engagements; Microsoft Office proficiency.
ServiceNow IRM, Archer, AuditBoard, OneTrust, Spotfire, PowerBI, Tableau, Microsoft PowerPoint, Microsoft Word, Microsoft Excel, Vision, Integration Hub, REST, SOAP
Lam ResearchNASDAQ: LRCX: Designs and manufactures wafer fabrication equipment for the semiconductor industry.
7+ YOEDeep Saviynt and SAP provisioning expertise, 7+ years IAM/IAG experience, strong developer skills (APIs, PowerShell, Python, SQL), experience with SAP GRC, ServiceNow, directories, and stakeholder leadership.
San Francisco or New York or Seattle or Austin or United States
$97k-$190k/yrRemoteFull Time
Rippling: Unified platform managing workforce HR, IT, and finance operations
7+ YOE7+ years managing regulatory exams/audits or partner due diligence; strong AML/CFT, BSA, OFAC knowledge; experience with regulators; excellent communication; familiarity with GRC tools.
Sr. Staff Technology Controls Architecture & Assurance Lead
San Jose, California, United States
$207k-$259k/yrOnsiteFull Time
ArcherNYSE: ACHR: Develops electric vertical takeoff and landing aircraft for urban mobility.
8+ YOE8+ years in information security with 4+ years in GRC/compliance or IS audit; deep knowledge of NIST/CMMC/DFARS/ITAR; SOX ITGC experience; quantitative risk modeling and KRI development; U.S. citizenship and eligibility for DoD Secret clearance.
AmazonNASDAQ: AMZN: Global online retail and cloud computing technology provider.
7+ YOE7+ years finance/accounting experience with process improvement and automation; 5+ years financial analysis and cross-functional leadership; bachelor’s in accounting or related field (or equivalent); strong knowledge of assurance standards and sustainability reporting.
Cyber and Technology Risk Analyst - Lead Consultant
Illinois or San Francisco or Los Angeles or Indiana
$91k-$154k/yrHybridFull Time
AllstateNYSE: ALL: Provides insurance products for vehicles, homes, and businesses.
4+ YOEMinimum 4 years in cyber/technology risk management; expertise with MITRE ATT&CK, threat modeling, cloud and infrastructure, risk assessments, strong analytical and communication skills; relevant security certs preferred.
Perplexity: AI-powered search engine providing conversational answers with citations.
6+ YOE6+ years leading audit and compliance engagements; experience with SOC2/ISO27001/HIPAA, GDPR/CCPA/CPRA; building GRC tooling and automation; strong communication and cross-functional collaboration skills.