77 grc manager jobs at 56 companies in Berkeley, CA

3mo
Save
Mark Applied
Hide
Sr. Manager GRC
San Jose, California, United States
$179k-$257k/yr OnsiteFull Time
Bloom Energy
Bloom EnergyNYSE: BE: Manufactures solid oxide fuel cell systems for onsite power.
12+ YOELead governance, risk, and compliance program; manage risk assessments; ensure ISO27001/NIST CIS/GDPR/CCPA; lead GRC team; collaborate across functions.
GRC tools, Policy management, Compliance tooling
1mo
Save
Mark Applied
Hide
GRC Engineer
Palo Alto or San Francisco
$130k-$170k/yr OnsiteAll Commitments Available
Zania
Zania: Automates enterprise risk and compliance using agentic AI teammates.
3+ YOE3–8 years in GRC, information security, risk management, audit, or enterprise tech customer success; strong frameworks knowledge (SOC 2, ISO 27001, NIST CSF, FedRAMP, HIPAA, PCI-DSS); proven stakeholder management and communication; SaaS/technical product experience.
GRC frameworks, SOC 2, ISO 27001, NIST CSF, FedRAMP, HIPAA, PCI-DSS
2mo
Save
Mark Applied
Hide
GRC Manager
Boston or San Francisco
HybridFull Time
CloudZero
CloudZero: Platform for cloud cost intelligence and FinOps optimization.
5+ YOE5+ years in governance, risk, and compliance, SaaS/cloud focus; SOC 2/audit experience; knowledge of COSO/ISO 31000/NIST RMF; GDPR/CCPA controls.
Vanta, Drata, Loopio, Iris
1mo
Save
Mark Applied
Hide
GRC Program Manager
Sydney or Melbourne or San Francisco or London or United States
HybridFull Time
Deputy
Deputy: Workforce management software for scheduling and managing hourly employees.
5+ YOE5+ years GRC experience in a fast-paced SaaS environment; hands-on audit execution; expertise in ISO 27001, SOC2, PCI-DSS and emerging AI standards; policy writing, risk assessments, and stakeholder engagement; advanced security/privacy certs preferred.
ISO 27001, SOC2, PCI-DSS, ISO 42001 (AI), NIST AI, NIST Privacy Framework
1mo
Save
Mark Applied
Hide
GRC Program Manager, Product and Customer Trust
San Francisco, California, United States
$216k-$252k/yr HybridFull Time
OpenAI
OpenAI: Develops artificial intelligence models and generative AI software services.
Experienced GRC/product assurance professional with product launch review, customer trust, and security compliance experience; able to build operating models, automation, metrics, and clear customer-facing security narratives.
Codex
2w
Save
Mark Applied
Hide
Director, Cybersecurity & GRC
Berkeley or Somerville or Weirton
$200k-$294k/yr HybridFull Time
Form Energy
Form Energy: Developing multi-day batteries for grid-scale energy storage.
10+ YOE5+ Mgmt10+ years in cybersecurity/IT GRC with 5+ years leadership; deep ITGC, IAM, EDR/MDR, vulnerability management, incident response, and audit liaison experience; ISO 27001/SOC 2/NIST familiarity; strong executive communication.
ISO 27001, SOC 2, NIST CSF, NIST 800-53, NIST 800-171, CMMC, EDR, MDR, IAM, ITGC, SOC
1mo
Save
Mark Applied
Hide
Senior GRC Analyst
Palo Alto, California, United States
$120k-$145k/yr OnsiteFull Time
Workato
Workato: Enterprise platform for automating business workflows and integrating applications.
8+ YOE8+ years in cybersecurity, audits, risk management, or compliance; hands-on FedRAMP experience; cloud security controls; strong communication; eligibility for federal programs.
AWS GovCloud, Azure Government, Google Cloud, NIST 800-53, FedRAMP, PCI-DSS, SOC 2, ISO 27001, 27701
1mo
Save
Mark Applied
Hide
Security GRC Manager: Customer Trust Enablement
San Francisco, California, United States
OnsiteFull Time
Sierra
Sierra: Conversational AI platform for building enterprise customer agents
10+ YOE3+ Mgmt10+ years in compliance/security/customer trust, 3+ years building/scaling customer-facing security programs, experience with regulated industries, knowledge of security frameworks and multi-cloud, and experience implementing trust automation platforms.
NIST 800-53, SOC 2, ISO 27001, PCI DSS, HIPAA, AWS, GCP, GDPR, UK GDPR, EU AI Act, SIG, CAIQ, ISO 42001, NIST AI RMF, CRM
2mo
Save
Mark Applied
Hide
Security GRC Lead
San Francisco, California, United States
$149k-$224k/yr HybridFull Time
Salesforce
SalesforceNYSE: CRM: Sells cloud-based customer relationship management and business software solutions.
3+ YOE3-5+ years FedRAMP and software security governance; project/program management; experience with GovCloud, and certifications like CISSP/CISA/CISM.
FedRAMP, NIST 800-53, 3PAO, SSP, POA&M, CMMC, R&D, DevSecOps
1mo
Save
Mark Applied
Hide
Governance, Risk & Compliance (GRC) Manager
San Francisco or New York City or London or Sydney
$190k-$215k/yr OnsiteFull Time
Sigma Computing
Sigma Computing: Cloud-native analytics platform featuring a spreadsheet-style interface.
4+ YOE4+ years GRC experience in SaaS/tech, proven track record building GRC programs and leading SOC 2/ISO 27001/HIPAA audits, experience with ERM frameworks (COSO, ISO 31000, NIST RMF), data privacy (GDPR/CCPA), policy and control development, strong communication.
ServiceNow GRC, Archer, LogicGate, GCP, AWS, Azure, Vanta, Drata, Secureframe, Tugboat, NIST CSF, CIS Controls, OWASP, VSAs, SIGs, SQL, Python, SOC 2, ISO 27001, HIPAA, COSO, ISO 31000, NIST RMF
3w
Save
Mark Applied
Hide
Risk Consulting - Risk Technology - Oracle GRC - Manager (New York, NY, US, 10001-8604)
New York or Atlanta or Boston or Chicago or Cleveland or Dallas or Detroit or Pittsburgh or Hoboken or Houston or Los Angeles or McLean or Miami or Minneapolis or North Carolina or Philadelphia or Portland or San Francisco or Seattle or Tampa
$150k-$260k/yr HybridFull Time
EY
EY: Global firm providing audit, tax, and professional consulting services.
5+ YOEBachelor's or master's degree with ~5 years related experience; Oracle security/controls and controls testing experience; strong project management, client service, leadership, communication, analytical skills; valid US driver’s license and passport; willing to travel.
Oracle, Oracle Cloud, Workday
1w
Save
Mark Applied
Hide
Technical Account Manager - GRC/Identity Governance
Redwood City, California, United States
RemoteFull Time
Delinea
Delinea: Provides identity security and privileged access management software.
4+ YOE4+ years in technical advisory or customer success roles with deep expertise in GRC/IGA, Segregation of Duties, access reviews/certifications, audit evidence collection, and enterprise application integrations.
Fastpath, SAP, Oracle, Microsoft Dynamics, NetSuite, AuditBoard, Workiva
1mo
Save
Mark Applied
Hide
GRC Strategy and Insights Lead
San Jose or Seattle or Lehi or New York
$124k-$235k/yr HybridFull Time
Adobe
AdobeNASDAQ: ADBE: Provides software for digital media creation and marketing analytics
8+ YOE8–12+ years in strategy, business operations, risk management, or related fields; proven experience building metrics and executive reporting; able to engage and influence executives.
Tableau, Power BI
1w
Save
Mark Applied
Hide
GRC TPRM Assessment and Remediation SME
Sunnyvale or Austin
$80k-$140k/yr RemoteFull Time
Tata Consultancy Services
Tata Consultancy ServicesNational Stock Exchange of India: TCS: Global provider of IT services, consulting, and business solutions.
5+ years in cybersecurity/TPRM/GRC with hands-on experience running vendor assessments, managing CAPs, stakeholder escalation, and producing leadership reports.
SIG, CAIQ, NIST CSF, ISO 27001, SOC 2, OneTrust, Archer, ServiceNow GRC, SupplierNinja, Wrike, AirTable, Jira
1mo
Save
Mark Applied
Hide
Corporate Security Programs & Governance Manager
Santa Clara or Wilsonville or Saxonburg or Easton or Pine Brook or Budd Lake or Sherman
$134k-$185k/yr HybridFull Time
Coherent
CoherentNYSE: COHR: Manufactures lasers, engineered materials, and optical networking components.
8+ YOEBachelor’s degree; 8+ years PM/risk governance; experience in multi-site/global manufacturing; security domain familiarity; vendor/budget management; GRC/ISO knowledge.
GRC, Policy management, Risk assessment, Workflow automation, AI tools
1mo
Save
Mark Applied
Hide
Governance, Risk & Compliance (GRC) Analyst
San Francisco, California, United States
$125k-$150k/yr OnsiteFull Time
Ivo
Ivo: AI-powered contract review and intelligence platform for legal teams.
3+ YOE3–5 years GRC/InfoSec/IT audit experience; hands-on SOC 2 Type II, ISO 27001, CSA STAR, ISO/IEC 42001; experience with Vanta, audits, evidence management, risk assessments, policy maintenance, and strong communication skills.
Vanta, GCP, AWS, Azure
1mo
Save
Mark Applied
Hide
Senior Manager, Technology Risk
United States or Canada or Columbus or Austin or San Francisco or New York City
$172k-$238k/yr RemoteFull Time
Upstart
UpstartNasdaq: UPST: AI-powered lending marketplace for consumer and automotive loans.
8+ YOE3+ MgmtBachelor's or equivalent, 8+ years technology risk/information security/IT audit experience in banking, 3+ years people management, FFIEC/OCC regulatory experience, regulator engagement, and GRC program experience; professional certs preferred.
FFIEC Cybersecurity Assessment Tool (CAT), FFIEC IT Examination Handbook, OCC Bulletin 2020-46, GRC tool, SDLC
2mo
Save
Mark Applied
Hide
Manager
San Jose, California, United States
$150k-$182k/yr RemoteFull Time
Uniqus Consultech
Uniqus Consultech: Tech-enabled consulting for finance, risk, and sustainability.
5+ YOE3+ MgmtBachelor’s degree in Accounting; 5+ years in SOX, internal controls, GRC tools; ERM, IFRS/US GAAP; travel up to 30%; lead teams.
Archer, Workiva, Power BI
3w
Save
Mark Applied
Hide
IT SOX Compliance Senior Manager
Alameda, California, United States
$165k-$230k/yr HybridFull Time
Penumbra
PenumbraNYSE: PEN: Designs and manufactures medical devices for vascular conditions.
8+ YOEBachelor's in accounting or information systems, 8+ years in IT SOX compliance/InfoSec/IT risk, experience with SOX 404, ITGCs/ITACs, SAP and GRC platforms preferred, strong communication and problem-solving skills.
SAP, SAP Security, GRC, DevOps, SOX 404, ITGCs, ITACs, COSO, QMS
4d
Save
Mark Applied
Hide
Senior Security Risk Manager
San Francisco, California, United States
$146k-$235k/yr HybridFull Time
DocuSign
DocuSignNASDAQ: DOCU: Provides electronic signature and agreement management software solutions.
8+ YOE8+ years in security risk management/GRC, bachelor’s in CS/InfoSec, experience with cloud (AWS/Azure/GCP), GRC platforms, risk quantification (FAIR), and security domain expertise; CISSP/CRISC/CISM preferred.
AWS, Azure, GCP, ServiceNow IRM, OneTrust, FAIR, Tableau, Power BI