Security Governance, Risk, and Compliance Lead

Join Hudson River Trading (HRT), a pioneering firm in the trading space, as the Lead for Security Governance, Risk, and Compliance within our expanding Information Security team. This pivotal role will spearhead the security governance initiatives for HRT entities across America, Europe, and Asia, driving the automation of security governance at scale.In this hands-on position, you will collaborate closely with HRT’s Compliance and Legal teams to research, develop, and uphold security solutions tailored to a diverse range of industry regulations and requirements. You’ll lead a skilled technical team tasked with strategically ensuring HRT’s compliance with global security standards, facilitating our growth into new markets with complex regulatory landscapes.

Join our dynamic team at blacksmith as a Governance, Risk, and Compliance (GRC) Manager. In this pivotal role, you will oversee our GRC strategies, ensuring compliance with regulations and managing risks effectively. Your expertise will drive the development of policies, procedures, and frameworks that align with our business objectives.We are looking for a proactive leader who can communicate effectively across departments and foster a culture of compliance and risk mitigation. You will play a crucial role in guiding our organization through the complexities of regulatory requirements and risk assessments.

Role Overview Sigma Computing is looking for a Governance, Risk & Compliance (GRC) Manager to lead the design and rollout of GRC programs. This role reports to the General Counsel and is based in New York City, NY or San Francisco, CA. What You Will Do Develop and execute GRC initiatives that support business growth and manage organizational risk. Work closely with teams across Legal, Engineering, Product, Sales, and Operations to build a GRC framework that protects company interests and supports strategic objectives. Strengthen governance structures and introduce scalable risk management processes. Ensure compliance with applicable regulatory standards while enabling the business to operate confidently and efficiently. Promote trust among internal and external stakeholders by maintaining high standards of governance and compliance. Location This position can be based in New York City, NY or San Francisco, CA.

rogo is hiring a Governance, Risk, and Compliance (GRC) Analyst to join the team in New York City. This role centers on identifying, evaluating, and managing compliance risks across the organization. The analyst will work with colleagues from multiple departments to help ensure that operations align with regulatory requirements and industry standards. Key responsibilities Assess compliance risks throughout the company Work with teams to implement risk management strategies Contribute to the development and refinement of internal policies Review existing processes and suggest improvements Take part in audits and ongoing assessments Provide insights that support decision-making and reinforce the compliance framework Location This position is based in New York City.

Join EliseAI as a Governance, Risk, and Compliance AnalystAt EliseAI, we are on a mission to transform the housing and healthcare sectors. Our innovative use of AI technology simplifies vital processes, making essential services more accessible and efficient for all.With a focus on enhancing the experience for renters and patients alike, we provide streamlined solutions for apartment tours, lease signing, maintenance requests, appointment scheduling, and patient-provider communication.After successfully securing a $250 million Series E round led by Andreessen Horowitz, we are poised to accelerate our growth and impact.Position OverviewAs a Governance, Risk, and Compliance (GRC) Analyst, you will play a crucial role in reinforcing our security and compliance initiatives. Your expertise will ensure we maintain regulatory readiness, manage third-party risks, and align our policies with industry standards.You will collaborate with cross-functional teams, including Security Engineering and Legal, to operationalize compliance efforts, facilitate audits, and address due diligence requests from customers and vendors. This role is vital in meeting compliance deadlines and supporting our sales operations.Key ResponsibilitiesManage compliance programs related to frameworks such as SOC 1, SOC 2, PCI, HITRUST, and HIPAA.Facilitate audit activities, including gathering evidence, preparing documentation, and responding to auditor inquiries.Monitor compliance requirements and engage stakeholders on outstanding issues.Conduct vendor risk assessments and oversee third-party due diligence processes.Support the development and implementation of policies and procedures to ensure compliance with regulatory standards.

Fastly seeks a Security Risk Lead to guide efforts in managing and reducing security risks across the organization. This role partners with teams company-wide to develop and implement risk management strategies that safeguard Fastly’s systems and data. Role focus The Security Risk Lead works at the intersection of technology and policy, shaping approaches that strengthen the company’s security posture. Collaboration with multiple departments is central to identifying vulnerabilities and ensuring consistent risk mitigation. Key responsibilities Work with teams throughout Fastly to identify, assess, and address security risks Help design and execute risk management strategies Support efforts to maintain the security and integrity of company systems and data Locations Denver, CO New York City, NY San Francisco, CA

About Our TeamThe Corporate Security team at OpenAI is committed to the safety and security of our personnel and facilities. We prioritize the responsible advancement of artificial intelligence while protecting our technologies and intellectual properties on a global scale.About the OpportunityAs the Risk Program Manager, you will lead initiatives to identify and mitigate physical security risks that may impact OpenAI's staff, executives, and facilities worldwide. This vital role ensures a secure environment that facilitates the continuous development of our AI technologies.The ideal candidate possesses extensive knowledge in physical security, counterintelligence, and risk management tailored to a corporate setting. Your expertise goes beyond technical skills; you thrive in building relationships across various departments and with external federal law enforcement and intelligence agencies both domestically and internationally. Moreover, your ability to clearly and engagingly communicate complex security issues makes you proficient in engaging stakeholders at every level of the organization.This position is located in New York City, Seattle, or Washington DC. We operate on a hybrid work model of three days in the office weekly and provide relocation assistance for new hires.Key Responsibilities:Conduct continuous assessments to identify and evaluate potential physical security threats and counterintelligence issues related to OpenAI's personnel and facilities.Devise and execute risk mitigation strategies that integrate with existing crisis management and cybersecurity protocols.Maintain close collaboration with federal law enforcement and intelligence agencies in the US and internationally to ensure prompt communication of threat intelligence.Collaborate with the Crisis Management and Information Security teams to ensure a unified and thorough approach to organizational security.Support various Corporate Security programs, including executive protection and event security, ensuring alignment with risk management strategies.Prepare and present comprehensive security risk assessments and strategic mitigation plans to senior management.Assist in designing and delivering security training programs focused on physical security and counterintelligence awareness.

About UsAt Rillet, we empower accounting and finance teams to achieve unparalleled speed, accuracy, and insight in their operations. Our innovative AI-native ERP solution is designed to facilitate a zero-day close, combining a unified data model with numerous top-tier integrations, automated workflows, and an ever-evolving suite of specialized AI agents. This approach has led to exceptional customer satisfaction, with industry leaders such as Mercer, Windsurf, and Function Health relying on our rapid deployment capabilities to scale their financial operations.We have successfully secured $100 million in funding from prestigious investors like Sequoia and a16z, reinforcing our mission to revolutionize the financial landscape with AI-driven tools.Our CultureRillet's fast-paced environment is all about empowerment and agility. We seek individuals who take initiative, embrace challenges, and consistently deliver outstanding results. Our focus is always on our customers, and we foster a culture where the most critical tasks are prioritized, even if they deviate from the original plan.This role does not require accounting expertise but demands a genuine appreciation for how our solutions enhance our customers' financial capabilities. Ideal candidates are those who are passionate about fueling the financial backbone of high-growth companies.Your RoleAs our inaugural Senior GRC Analyst, you will have the unique opportunity to construct Rillet's governance, risk, and compliance framework from the ground up. You will play a pivotal role in establishing the security and compliance protocols necessary for a rapidly growing fintech company handling sensitive financial data. This includes managing our SOC 2 Type II certification, leading customer security evaluations, and developing scalable compliance processes that support, rather than hinder, our product development pace. You will collaborate closely with engineering and sales leadership to integrate security within our development lifecycle and promote trust and transparency in enterprise relationships.

Anaplan, Inc. is hiring a Director of Security Trust & Risk based in New York City. This leadership role focuses on safeguarding company data, ensuring confidentiality, and maintaining the integrity of information systems. The director will guide the development and execution of security strategies that align with recognized industry standards. What you will do Create and roll out security policies and procedures throughout the organization Monitor and enforce compliance with industry standards and regulatory requirements Encourage security awareness and share best practices with employees Role focus This position oversees the company’s approach to risk management and information protection. The director plays a key part in shaping a culture of security and trust across all levels of the organization.

Employee Applicant Privacy Notice About SoFi SoFi is a national bank and financial services provider focused on helping millions of members achieve their financial goals. The company builds mobile-first technology that empowers users to take control of their finances. SoFi’s work directly impacts people’s lives and shapes the financial industry. Core values guide the team as they work to improve both careers and the broader financial landscape. Role Overview The Security Product Lead for Product & AI Security sets the strategy, roadmap, and measurable outcomes for securing SoFi’s product lifecycle and supporting AI/ML initiatives. This position sits within the Security Strategy & Delivery team and works closely with leaders and teams in Product Security, Engineering, and Data Science/AI. Main Responsibilities Define and communicate the strategic direction for Product Security and AI Security as internal security products. Align security initiatives with enterprise risk priorities. Develop and maintain a clear roadmap for security capabilities. Establish and track key performance indicators (KPIs) to measure success. Implement structured program governance for security initiatives. Collaborate across teams to integrate security controls throughout the software development lifecycle (SDLC). Address unique risks associated with AI/ML systems. Influence stakeholders and drive alignment without direct authority. Help protect member trust, company assets, and support business stability and growth. Location Roles are available in Seattle, WA; Cottonwood Heights, UT; San Francisco, CA; New York City, NY; and Frisco, TX.

About the Role Adaptive Security is looking for a Lead Application Security Engineer in NYC. This position shapes how we defend our software against threats, guiding security strategy and execution across our applications. What You Will Do Lead the design and rollout of security measures for software applications Develop and refine security strategies to address emerging risks Work closely with teams to uphold strong security standards Ensure our practices align with industry regulations and compliance requirements What Matters Here Deep experience in application security Ability to guide teams and set technical direction Commitment to both proactive defense and regulatory compliance

Join Crosby as the Founding IT & Security Operations Lead, where you will play a pivotal role in establishing and leading our IT and security operations. You will be responsible for developing robust security protocols, overseeing IT infrastructure, and ensuring the seamless operation of our systems. This is an exciting opportunity to influence the direction of our technology strategy and develop innovative solutions to enhance our security posture.

About SomethingsAt Somethings, we're revolutionizing mental health support for teens through our innovative social wellness platform. We're dedicated to creating genuine relationships between teens and mentors who understand their challenges and provide the guidance they need to succeed.With 25 million teens in the U.S. grappling with mental health issues, our mission is clear: we want every teen who joins Somethings to not only engage but to build meaningful connections and receive the support necessary for their growth and well-being.Supported by General Catalyst and top-tier healthcare and consumer investors, Somethings is on an extraordinary growth trajectory, having expanded by 1100% in 2025 and successfully raising $15M in our Series A funding. We are poised to continue this momentum into 2026.If you're passionate about being part of a transformative company in the mental health space, we invite you to join us.Role OverviewWe are seeking a dynamic Government Affairs Lead to spearhead our national expansion efforts.This is a pioneering role that goes beyond traditional government affairs. We need someone who perceives state government as an interconnected system where policy, relationships, budgets, and timing converge, and who can mobilize this system effectively.Your primary objective is ambitious: to extend Somethings' reach into new states by fostering initial relationships, influencing policy and program development, and transforming these prospects into significant Medicaid and state collaborations. You will play a crucial role in establishing connections even before Requests for Proposals (RFPs) are issued, ensuring states recognize how Somethings aligns with their objectives, and guiding opportunities from initial discussions through procurement and contracting.This role uniquely blends policy, relationship-building, and execution. You should be adept at discussing Medicaid strategies with state directors, coordinating efforts with internal clinical and product teams, and traveling to state capitals or conferences to deepen trust.Travel is integral to this position; expect to be on the road 50-75% of the time, cultivating authentic relationships with state leaders and stakeholders nationwide.You will report directly to the Chief Commercial Officer and collaborate closely with our Sales squadron, Clinical Operations, Product, and Operations teams.

Join Our Team!We are excited to announce an opening for an Analytics Manager within our dynamic Security, Risk, and Compliance Analytics team.In this pivotal role, you will lead a team of analysts focusing on Fraud and Payments, while also collaborating across vital areas such as responsible gaming, compliance, and regulation. Your insights and data-driven solutions will play a crucial role in enhancing business performance and mitigating risks. This is a hybrid position based in the vibrant New York City.As part of your responsibilities, you may also take on additional tasks as assigned by the Company, ensuring operational flexibility as we adapt to changing business needs.

Description:The Compliance team at MongoDB is pivotal in overseeing the strategy, implementation, and upkeep of our global security certifications alongside various regulatory requirements. We guarantee that our cloud database offerings adhere to stringent security standards, catering to clients within some of the most heavily regulated industries across the globe.Serving as the primary liaison between external auditors and our internal Product, Engineering, and Legal teams, we aim to demystify intricate regulatory requirements and convert them into scalable operational processes, ensuring a compliant and audit-ready stance throughout our varied portfolio.The Program Manager / Senior Analyst position is a mid-to-senior level individual contributor role, tasked with steering high-stakes audits and specialized compliance initiatives. Unlike the Analyst position, this role encompasses full accountability for intricate international frameworks—such as IRAP and ENS High—and fosters relationships with our Financial Services clientele during detailed audit engagements. You will coordinate internal audit schedules and execute gap analyses for market expansions.

The City of New York seeks a Deputy Director of Compliance to help lead the Office of Minority and Women-Owned Business Enterprises (OM/WBE) in its compliance initiatives. This role centers on maintaining and strengthening the city's commitment to regulations and procedures that foster participation by minority and women-owned businesses in municipal contracts. Key responsibilities Direct compliance activities for OM/WBE programs, ensuring all practices align with city standards. Monitor city contracts to confirm they fulfill requirements for minority and women-owned business participation. Collaborate with both internal departments and external partners to advance program objectives. Requirements Experience in compliance, ideally with a focus on procurement or public sector programs. Strong communication abilities for working across teams and with outside partners. Dedication to promoting diversity and inclusion within city contracting processes. Location This position is based in New York City.

Join Hudson River Trading (HRT) as a Risk Engineer and become a vital part of our Risk team in the vibrant city of New York. In this dynamic role, you will play a key part in developing our risk function and managing all risk aspects faced by HRT. Immerse yourself in the thrilling, fast-paced world of electronic trading while collaborating with exceptionally skilled professionals across various sectors of the business. This role presents a unique challenge with a broad scope across HRT's global trading operations. The ideal candidate is highly driven, eager to quickly grasp new concepts, and possesses a strong understanding of the critical role of risk management in a trading context. You should feel equally at ease working independently or as part of a team.

Join Hudson River Trading as a Commodities Risk Manager in our vibrant New York City office. In this critical role, you will lead the design, enhancement, management, and communication of market and liquidity risk associated with commodities instruments and strategies. You will be entrusted with a comprehensive mandate to oversee all aspects of commodities trading risk, offering you the opportunity to thrive in the dynamic environment of automated trading while collaborating with some of the industry's brightest minds. As the inaugural Commodities Risk Manager, your contributions will significantly influence a burgeoning sector of HRT's operations, presenting both challenges and the chance to engage with multiple asset classes and investment timelines.

Role Overview suno is hiring a Fraud and Risk Manager based in NYC. This position leads efforts to identify and reduce risks tied to fraudulent activity. The role focuses on safeguarding company assets and maintaining compliance with industry regulations. What You Will Do Develop and implement strategies to detect and prevent fraud Monitor risk indicators and investigate suspicious activities Work with teams to ensure regulatory compliance Recommend process improvements to strengthen controls Location This role is based in New York City.

Lead Bank builds modern banking infrastructure for embedded financial products and services. With headquarters in Kansas City and offices in San Francisco, Sunnyvale, and New York City, the team combines technology, product, design, and legal expertise to help shape the future of finance. The company operates at the intersection of technology and regulation, supporting fintech partners as they grow while remaining compliant and innovative. Technical depth in banking and payments systems, automated compliance, transparency, and operational integrity are core values at Lead Bank. Role overview The Senior Security Analyst joins the Security Operations team in New York on a hybrid schedule. This position focuses on strengthening detection and response capabilities across the organization. Work includes building detections, triaging alerts, responding to incidents, and proactively hunting threats in cloud infrastructure, security tools, and data pipelines. Mentoring junior analysts and collaborating with leadership to improve the security posture are also key parts of the role. Deep understanding of the regulatory landscape and experience defending against advanced persistent threats are important for success in this position. Key responsibilities Develop, tune, and maintain detection rules and alerts in the SIEM. Build queries to identify threats and coverage gaps using the MITRE ATT&CK framework. Lead incident response from start to finish, including containment, eradication, recovery, forensic log analysis, documenting lessons learned, and post-incident reporting. Monitor and investigate security events across endpoints, AWS cloud, identity, and network telemetry to detect misconfigurations, anomalous activities, and suspicious behaviors. Support security audits and regulatory examinations by providing timely and accurate security documentation and evidence.