Senior GRC Engineer
Tasks
- Automate evidence collection and compliance workflows
- Build operational risk function using FAIR and quantitative methods
- Build policy program as code in Git
- Coordinate scoping walkthroughs evidence delivery and management responses
- Define policies control sets and compliance posture
- Draft control narratives and triage vendor questionnaires
- Drive SOC 2 Type 2 and ISO 27001 and SOX ITGC end to end
- Implement automated enforceable rules and checks
- Maintain cross functional workflows with engineering legal privacy internal audit and procurement
- Manage evidence coordinate external assessors and close gaps
- Manage first and second line GRC operations boundaries with internal audit
- Mature TPRM program with tiered risk reviews and automated evidence
- Own governance framework for agentic systems
- Partner with internal audit on shared control libraries
- Serve as primary management contact for auditors
Perks/Benefits
Skills/Tech-stack
Asset Inventory | Audit Readiness | Cloud Security | Compliance | Continuous Control Monitoring | Continuous control | Control monitoring | Detection and Response | Endpoint Detection and Response | Endpoint detection | Evidence automation | FAIR | Git | Governance | ISO 27001 | Integration pipelines | NIST CSF | Policy-as-Code | Pull Requests | Quantitative Risk Analysis | Quantitative risk | Risk Analysis | Risk Management | SOC 2 | SOX | SOX ITGC | Security controls | TPRM | Third Party | Third-Party Risk | Third-party risk management | Vulnerability Management | “as-code”
Education
N/A
Related jobs
-
Principal Security Architecture - Digital Solutions USD 110K-180KAPI Gateway | API Security | AWS | Access Management | Application Firewall401K Retirement Plan Matching | Caregiver leave | Dental insurance | Employee assistance program | Employee discountsSenior-level Full Time601 S. Tryon Street, NC R4h ago
-
Senior Infrastructure Security Engineer USD 170K-220KAccess Management | Admission control | Architecture Reviews | CI/CD | Cause analysisFlexible time tracking policy | Low bureaucracy culture | Ownership and autonomy | Remote-first workSenior-level Full TimeUnited States R20h ago
-
Senior Security Engineer USD 130K-250KAI | API Security | AWS | Application Security | Cloud Security401k match | Backup child elder and pet care | Employer paid family planning tool access | Flexible work from home Fridays | Generous vacation policySenior-level Full TimeNew York, NY, USA; San Francisco, … R20h ago
-
AWS | Amazon Elastic Kubernetes Service | CI/CD | Elastic Kubernetes Service | Event DrivenAgile team collaboration | Hybrid work locationSenior-level Contract Full TimeTulsa, OK, United States R22h ago
-
Enterprise Sales Engineer USD 220K-260KAccess Management | Active Directory | Cloud Security | Cybersecurity | Enterprise SalesDental insurance | Flexible vacation policy | Health insurance | Parental leave | Remote workMid-level Full TimeUS, Remote R1d ago
-
Mid-level Full TimeRemote, United States R1d ago
-
SIEM Specialist USD 104K-170KAWS | Azure | Bash | Cloud Security | Correlation rulesCompetitive base | Flexible work model | Growth opportunities | Hybrid work model | In-office work optionMid-level ContractColombia; Argentina; Brazil; Remote (United States) R1d ago
-
Staff Cloud Security Engineer USD 225K-275KAWS | AWS Secrets | AWS Secrets Manager | Admission control | Azure12 Holidays + 2 Floating Holidays | 12 holidays | 401k plan | In-home office setup | Internet stipendSenior-level Full TimeUnited States - Remote Opportunity R1d ago
-
Space Force - Software Engineer USD 124K-138KACAS Grype | API Design | AWS | AWS CloudTrail | AWS CloudWatchFlexible work environment | Hybrid work options | Professional development | Remote work | TeleworkMid-level Full TimeScottsdale, AZ, United States R1d ago
-
Site Security Officer, Manager USD 112K-179KAccess Control | Access Management | Automated Monitoring | FISMA | GDPRRemote work | Travel as neededSenior-level Full TimeUnited States R1d ago
-
Tier 2 Monitoring Analyst - Senior USD 104K-166KAnomaly Detection | As-a-Service | Cloud Computing | Detection Systems | Event analysisHybrid work schedule after 90 days | On site first 90 days | Shift schedule Sunday to ThursdaySenior-level Full TimeArlington, VA, United States R1d ago
-
DevSecOps Project Lead (Sr DevSecOps Engineer) USD 175K-215KACAS | AWS GovCloud | Azure Gov | CI/CD | Cloud ComputingCareer advancement opportunities | Dental insurance | Employer paid health care | Flexible work environment | Health insuranceSenior-level Full TimeRemote, USA R1d ago
-
DevSecOps Project Lead (Sr DevSecOps Engineer) USD 175K-215KACAS | AWS GovCloud | Azure Gov | CI/CD | Compliance validationParental leave | Remote work | Unlimited PTOSenior-level Full TimeRemote, USA R1d ago
-
Sr. Software Engineer - Risk Platform (Hybrid) USD 140K-215KAWS Cloud | Apache Pinot | Azure | Cassandra | ConcurrencyCompetitive vacation and holidays | Employee networks | Paid adoption leave | Paid parental leave | Professional development opportunitiesSenior-level Full TimeSunnyvale, United States R1d ago
-
Perimeter Security Engineer USD 91K-169KAWS WAF | Akamai | Application Firewall | Azure WAF | BashDisability insurance | Health insurance | Life insurance | Paid Holidays | Retirement savings planSenior-level Full TimeGA Atlanta 1050 Techwood Drive NW, … R1d ago
-
Endpoint Automation Staff Engineer USD 110K-230KAPI Integration | Access Management | Active Directory | Bash | Detection and Response401k match | Adoption Assistance | Certification assistance | Fertility assistance | Mental healthcareSenior-level Full TimeCA Palo Alto Office, United States R1d ago
-
Agentic AI | Autonomous Agents | CI/CD | CVE | CVSS401k matching | Adoption Assistance | Dental insurance | Disability benefits | Employee assistance programSenior-level Full TimeRemote, United States R1d ago
-
AI Security Engineer USD 100K-150KAccess Controls | Access Management | Adversarial Machine Learning | Application Security | AuthorizationFull-time employment | Health benefits | Remote workSenior-level Full TimeUnited States - Remote R1d ago
-
Oracle Cloud Security Engineer USD 100K-150KBash | CIS Benchmarks | Cloud Guard | Cloud Native | Cloud infrastructureCareer growth | H1B transfer support | Remote work | Technical mentorshipMid-level Full TimeUnited States - Remote R1d ago
-
SAP Security Engineer (GRC – Technical) USD 100K-150KAccess Control | Audit Logging | Audit Remediation | Continuous controls monitoring | Controls monitoringBenefits | Career growth potential | Remote workMid-level Full TimeUnited States - Remote R1d ago
-
Principal Product Security Incident Responder USD 147K-245KAI-powered tools | CNA | CSIRT | CVE | CVE Numbering AuthoritySenior-level Full TimeRemote, United States R1d ago
-
Application Security Engineer USD 100K-150KAbuse detection | Agile | Authentication | Authorization | Bot ProtectionMid-level Full TimeUnited States - Remote R1d ago
-
Security Operations Analyst USD 70K-131KAlert triage | Antivirus | Automation | Case management | Cloud SecurityCareer development | Headspace app access | Hybrid work model | Mental health days | Retirement savingsEntry-level Full TimeUnited States of America, Eagan, Minnesota R1d ago
-
Threat Detection & Response, AVP - Tier 2 - NJ USD 123K-164KAWS | Azure | Cloud Security | EDiscovery | EnCaseExecutive-level Full TimeNew Jersey Office - 210 Hudson … R1d ago
-
Staff Engineer Security USD 100K-150KAI Security | AWS | Adversarial Attacks | CI/CD | Cloud SecuritySenior-level Full TimeRemote GA, United States R1d ago