Governance, Risk, and Compliance Lead

About xAI

xAI’s mission is to create AI systems that can accurately understand the universe and aid humanity in its pursuit of knowledge.

Our team is small, highly motivated, and focused on engineering excellence. This organization is for individuals who appreciate challenging themselves and thrive on curiosity.

We operate with a flat organizational structure. All employees are expected to be hands-on and to contribute directly to the company’s mission. Leadership is given to those who show initiative and consistently deliver excellence. Work ethic and strong prioritization skills are important.

All engineers and researchers are expected to have strong communication skills. They should be able to concisely and accurately share knowledge with their teammates.

About the Role

xAI is seeking an experienced and strategic Governance, Risk, and Compliance (GRC) Lead to design, implement, and oversee our GRC framework. This critical role will ensure that xAI operates within regulatory, ethical, and operational boundaries while fostering a culture of integrity and resilience. You will collaborate with cross-functional teams to safeguard our mission-driven work in AI development and deployment.

Key Responsibilities:

• Develop and maintain a robust governance framework to support xAI’s strategic objectives and ensure alignment with industry best practices.
• Establish policies, procedures, and controls to guide ethical AI development, data usage, and corporate decision-making.
• Partner with leadership to integrate governance principles into product development and operational processes.
• Identify, assess, and prioritize risks related to AI operations, cybersecurity, regulatory compliance, and intellectual property.
• Design and implement risk mitigation strategies, including monitoring systems and contingency plans.
• Conduct regular risk assessments and scenario analyses to proactively address emerging threats in the AI landscape.
• Ensure adherence to applicable laws, regulations, and standards (e.g., data privacy laws like GDPR/CCPA, AI ethics guidelines, and industry-specific requirements).
• Monitor regulatory developments and advise leadership on their impact on xAI’s operations and product roadmap.
• Oversee audits, certifications, and third-party assessments to maintain compliance and operational credibility.
• Develop and deliver GRC training programs for employees to promote a culture of accountability and awareness.
• Act as a subject matter expert, providing guidance to teams on risk and compliance matters.
• Create and present regular reports on GRC performance, risks, and compliance status to senior leadership and stakeholders.
• Leverage data and analytics to measure the effectiveness of GRC initiatives and drive continuous improvement.

Qualifications:

• Bachelor’s degree in Law, Business Administration, Information Security, or a related field (Master’s degree or relevant certifications like CISA, CRISC, or CGEIT preferred).
• 7+ years of experience in governance, risk management, or compliance.
• Proven expertise in regulatory frameworks, data privacy, and cybersecurity, preferably in a technology or AI-driven environment.
• Strong understanding of AI ethics, emerging technologies, and their associated risks.
• Exceptional analytical and problem-solving skills, with the ability to balance innovation and oversight.
• Excellent communication and stakeholder management skills, with experience influencing cross-functional teams.
• Ability to thrive in a fast-paced, dynamic environment and adapt to evolving priorities.

Preferred Skills:

• Experience in the tech or AI industry, particularly with startups or innovative organizations.
• Familiarity with ISO 27001, NIST, SOC 2, or similar compliance frameworks.
• Background in managing third-party risk or vendor compliance programs.

xAI is an equal opportunity employer and does not unlawfully discriminate based on race, color, religion, ethnicity, ancestry, national origin, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender, gender identity, gender expression, age, disability, medical conditions, genetic information, marital status, military or veteran status, or any other applicable legally protected characteristics. 

Qualified applicants with arrest or conviction records will be considered for employment in accordance with all applicable federal, state, and local laws, including the San Francisco Fair Chance Ordinance, Los Angeles County Fair Chance Ordinance for Employers, and the California Fair Chance Act. 

For Los Angeles County (unincorporated) Candidates:

xAI reasonably believes that criminal history may have a direct, adverse and negative relationship on the following job duties, potentially resulting in the withdrawal of a conditional offer of employment: 

• Access to information technology systems and confidential information, including proprietary and trade secret information, and/or user data;
• Interacting with internal and/or external clients and colleagues; and
• Exercising sound judgment.

California Consumer Privacy Act (CCPA) Notice