R2R Governance, Risk, and Compliance Lead

Join bcforward3 as the R2R Governance, Risk, and Compliance (GRC) Lead, where you will play a crucial role in overseeing and enhancing our governance frameworks. Your expertise will help drive compliance initiatives and mitigate risks across the organization, ensuring we maintain the highest standards of integrity and accountability.

Why Join UsAt Brex, we are revolutionizing the way businesses manage their finances through our AI-driven spend platform. Our integrated solutions encompass corporate cards, banking, and global payments, accompanied by intuitive software for travel and expenses. We proudly serve tens of thousands of businesses, ranging from startups to large enterprises, including notable names like DoorDash, Flexport, and Compass. Our mission is to empower companies to confidently control their spending, optimize costs, and enhance efficiency on a global scale.Joining Brex means pushing boundaries, challenging norms, and collaborating with some of the brightest minds in the industry. We are dedicated to cultivating a diverse and inclusive culture, believing that your potential should only be limited by your ambitions. We provide the necessary tools, resources, and support for you to advance your career.Engineering at BrexOur engineering teams focus on creating scalable systems with speed and precision. We have diverse teams across Software, Data, Security, and IT that work with high autonomy and deep collaboration. We tackle complex technical challenges, take ownership of our outcomes, and strive for excellence in every phase, from architecture to deployment, fostering an environment where engineering is viewed as a craft and innovators become leaders.What You’ll DoAs a Senior GRC Engineer in Brex’s Governance, Risk, and Compliance function, you will play a pivotal role in advancing our compliance maturity. You will expertly merge compliance knowledge with technical execution to spearhead essential GRC processes that mitigate risk, ensure compliance, and cultivate trust with our clients and partners. Your efforts will enhance the technical foundation of our Trust program by automating security controls, integrating security tools with GRC platforms, and creating scalable processes that enable efficient compliance as we enter new markets. You will operate at the crossroads of security, engineering, and compliance, translating regulatory demands into actionable technical solutions while building automated processes that eliminate manual work.Your expertise in frameworks such as SOC 2, PCI DSS, ISO 27001, and AI governance will be essential in designing controls for emerging compliance needs and enhancing existing programs through automation and continuous monitoring. You will support initiatives in Trust Assurance, Third Party Risk Management, and other Security Risk Management projects. By collaborating with our Engineering, Infrastructure, and Product teams, you will help translate compliance frameworks into actionable technical controls, developing automated systems that facilitate world-class security as Brex continues to grow.

Scale AI is on the lookout for a dynamic and seasoned Director of Governance, Risk, and Compliance (GRC) to spearhead our centralized GRC function. This crucial role is designed to fortify and propel the organization forward. The selected candidate will play a key role in enhancing and guiding our GRC framework, establishing a long-term strategic vision, collaborating with various teams across the company, and representing Scale’s GRC interests to partners, regulators, and stakeholders. A strong foundation in corporate regulatory compliance and risk management, alongside excellent leadership and relationship-building skills, is essential for success in this role.Key Responsibilities:Lead the GRC function, encompassing compliance governance, advisory, risk management, and regulatory adherence.Develop and mentor a team of compliance professionals focused on governance, assurance, and GRC engineering to create efficient systems and processes.Enhance Scale’s Enterprise Risk Management (ERM) program, focusing on risk identification, assessment, mitigation, and reporting.Collaborate with Legal, Security, Product, Engineering, and Operations teams to support Scale’s growth in a regulated environment.Contribute to Scale’s AI governance strategy, including the implementation of new AI regulations such as the EU AI Act and NIST AI RMF.Drive the vision for how GRC can protect Scale while also serving as a competitive advantage.Represent the GRC team to internal and external stakeholders, including partners and regulators.Maintain a strategic outlook on compliance while being detail-oriented on specific compliance issues.

About DelveDelve is dedicated to transforming the compliance landscape, eliminating tedious manual tasks and creating seamless, automated partnerships. Our innovative solutions are trusted by over 450 rapidly expanding companies, including Lovable, 11x, and WisprFlow, enabling them to save countless hours while ensuring secure growth. With backing from prominent investors such as Insight Partners, General Catalyst, and Y Combinator, our team boasts a rich diversity of talent, including former founders, Olympiad medalists, and engineers from prestigious institutions like OpenAI, Stanford, MIT, and Berkeley.About the RoleIn the role of Senior GRC Specialist, you will serve as the primary advisor to our internal teams and customers. Your extensive knowledge of compliance frameworks will be key in guiding clients through their compliance journeys. You will closely collaborate with Sales, Customer Success, Product, and Engineering teams to translate compliance requirements into impactful solutions. This position is available for candidates located in the San Francisco Bay Area or those who prefer to work fully remotely from anywhere in the U.S.With a recent $32M Series A funding round, we are poised for rapid growth!Key ResponsibilitiesCustomer Advisory & Enablement: Conduct consultative calls and workshops to distill complex compliance standards such as SOC 2, ISO 27001, HIPAA, GDPR, HITRUST, FedRAMP, and FDA CFR into actionable strategies.Framework Expertise: Act as the Subject Matter Expert on various cybersecurity frameworks, addressing customer inquiries, assessing control implementations, and resolving audit challenges.Cross-Functional Collaboration: Partner closely with Product and Engineering teams to integrate audit readiness and customer insights into our platform’s core structure.Sales & Customer Success Support: Equip Sales and Customer Success teams with essential resources, including talking points and battlecards, to ensure confidence during customer interactions.Policy & Controls: Lead the development, documentation, and ongoing enhancement of our internal compliance framework as well as customer-oriented best practices.Audit Preparedness: Organize readiness assessments and manage evidence collection to guarantee that both Delve and our customers are always audit-ready.QualificationsProven experience in governance, risk management, and compliance, particularly with frameworks such as SOC 2, ISO 27001, HIPAA, and GDPR.Strong communication skills and the ability to engage effectively with clients and internal teams.Demonstrated ability to work collaboratively across different functions to achieve common goals.Experience in conducting workshops and training sessions.Bachelor's degree in a relevant field or equivalent experience.

We are looking for a dedicated and detail-oriented Governance, Risk, and Compliance (GRC) Manager to join our team at Decagon in San Francisco. In this pivotal role, you will be responsible for developing, implementing, and maintaining our governance, risk, and compliance strategies to ensure our operations align with regulatory requirements and industry standards.Your expertise will help us assess risk management processes and enhance our compliance framework, allowing Decagon to maintain its reputation as a leader in the industry. This is an exciting opportunity to contribute to our organizational integrity and enhance our compliance culture.

Role Overview Sigma Computing is hiring a Governance, Risk & Compliance (GRC) Manager. This position is based in San Francisco, CA, with the option to work from our upcoming New York office. The GRC Manager reports directly to the General Counsel and will shape and expand the company's governance, risk, and compliance programs. This role works closely with teams across Legal, Engineering, Product, Sales, Operations, and company leadership. The GRC Manager will build and refine a company-wide GRC framework to support business growth, manage risk, and ensure compliance with regulatory requirements. The work aims to strengthen governance structures, implement scalable risk management, and foster stakeholder trust. What You Will Do Governance Design and implement governance frameworks, including reporting, policy governance, and control oversight. Establish and maintain enterprise policies, standards, and procedures across technology, security, privacy, and operations. Build and lead a governance committee structure to support oversight and decision-making. Create dashboards and metrics to track program maturity and effectiveness. Work with leadership to align governance activities with business strategy and risk appetite. Risk Management Develop and manage an Enterprise Risk Management (ERM) program. Conduct regular risk assessments across the organization and maintain a dynamic risk register. Establish and support business continuity and disaster recovery programs, including testing and tabletop exercises. Implement third-party risk management, including vendor assessments, contract reviews, and ongoing monitoring. Formulate risk treatment plans and oversee remediation efforts. Facilitate risk-informed decision-making throughout the company. Coordinate with leaders across functions to ensure comprehensive risk identification and management. Compliance Oversee audit and certification programs, including SOC 2, ISO 27001, HIPAA, and other relevant standards. Develop and maintain compliance monitoring programs to track regulatory changes and ensure ongoing adherence.

Join Crusoe as a Staff Governance, Risk, and Compliance (GRC) Engineer, where you will play a pivotal role in enhancing our compliance strategies and risk management frameworks. You will be responsible for developing and implementing GRC policies, ensuring regulatory compliance, and collaborating with cross-functional teams to mitigate risks effectively. If you have a passion for governance and compliance within the tech industry, we want to hear from you!

HockeyStack is revolutionizing the agent infrastructure for enterprise revenue. After five years of development, we have created the only data architecture that maintains causality across the complete revenue stack, capturing every interaction and signal in sequence. Building on this robust foundation, we introduced Nex-lm, a specialized AI engine that translates natural language into deterministic agent workflows. This innovation empowers organizations to extract their revenue blueprint from data, automate processes, and execute strategies across sales, marketing, and customer success with consistency and scalability.Unlike conventional dashboard tools with AI features, we are crafting the operational layer that eliminates human bottlenecks in enterprise revenue organizations. This is a pioneering category, and we are committed to leading it.Our company has successfully raised over $50M from esteemed investors including Bessemer Venture Partners, General Catalyst, and Y Combinator.We thrive on in-person collaboration in San Francisco, embodying a fast-paced environment with a team driven to succeed.Since our launch in late 2023, we have rapidly scaled to 8-figures in ARR and process over 60 TB of revenue data each month, partnering with top-tier B2B companies such as Microsoft, Harvey, New Relic, and Collibra. Your MissionAs HockeyStack matures, our clients entrust us with their most critical revenue data. To ensure we continue delivering exceptional value as we scale, we are seeking a dedicated leader for our Governance, Risk, and Compliance (GRC) initiatives.This role marks the first dedicated GRC hire at HockeyStack. You will be the primary accountable individual for our compliance program, risk management framework, and overall security posture. You will collaborate closely with key departmental leaders and engage with engineering and operations teams.This position is structured as fractional/part-time (approximately 20 hours per week) with potential flexibility during audits, incidents, or significant customer reviews. While preference is given to candidates in San Francisco, we are open to remote arrangements for the right individual. You will oversee all aspects of compliance, from SOC 2 audit readiness to vendor risk assessments. If you are eager to build a compliance function from the ground up at one of the fastest-growing companies in B2B software, this opportunity is for you.

About Juniper SquareAt Juniper Square, our mission is to empower individuals by unlocking the immense potential of private markets. Privately owned assets like commercial real estate, private equity, and venture capital constitute half of the financial ecosystem but are often inaccessible to the general public. We are at the forefront of digitizing these markets, enhancing efficiency, transparency, and accessibility in one of the most dynamic sectors of finance. If you are passionate about leveraging technology to improve market functionality and wish to be part of a values-driven organization, we invite you to apply.We offer a range of work arrangements, from fully remote positions to full-time roles in our physical offices. Our commitment to a digital-first approach enables effective collaboration across 27 U.S. states, 2 Canadian provinces, India, Luxembourg, and England. For those who prefer an office environment, we maintain physical locations in San Francisco, New York City, Mumbai, and Bangalore.Your RoleAs a Senior GRC Analyst, you will play a pivotal role in supporting our governance, risk management, and compliance (GRC) framework. The ideal candidate will possess extensive experience in developing scalable and tailored risk management and compliance processes suited for a high-growth organization. Strong analytical, problem-solving, and communication skills are essential, as you will collaborate with diverse cross-functional teams to foster effective risk management practices.Key ResponsibilitiesCustomer Trust and AssuranceCompliance ManagementOversee the maintenance and onboarding of security compliance certifications and frameworks, including SOC2, ISO, and more.Collaborate with cross-functional teams to gather controls evidence for timely submissions to external auditors.Facilitate a seamless audit process through effective communication and teamwork.Continuously enhance the audit process through automation and rationalization of controls.

Role Overview Crusoe is seeking a Senior Governance, Risk, and Compliance (GRC) Analyst in San Francisco, CA. This role focuses on keeping operations in line with regulatory requirements and internal policies. The analyst leads efforts to identify, assess, and reduce risks, working closely with teams across the company to strengthen the compliance framework. The position shapes risk management strategies and supports the integrity of the organization.

About the RoleWe are in search of a dedicated and skilled Senior Governance, Risk, and Compliance (GRC) Analyst to enhance our team. This crucial position will allow you to safeguard our impactful operations, manage risks effectively, and ensure compliance with the intricate regulatory frameworks of the fintech sector. As a subject matter expert, you will transform complex requirements into practical controls while fostering a culture of security throughout the organization.Key ResponsibilitiesOversee information security and third-party risk assessments, formulating mitigation strategies.Lead both internal and external audits, including evidence collection and remediation efforts.

Join dstaff as a Technical Risk Governance Specialist in beautiful San Francisco, California! We are seeking a motivated professional to oversee and enhance our risk governance framework. You will play a crucial role in developing policies, procedures, and controls to manage technical risks effectively.

We are on the lookout for an accomplished Lead Compliance Program Specialist to spearhead and elevate our regulatory compliance efforts. This pivotal role involves ensuring strict adherence to regulatory standards pertaining to payments, financial crime compliance, data privacy, and licensing, with a concentrated emphasis on BSA/AML/CTF compliance and compliance assurance. The ideal candidate will possess a robust background in compliance, risk management, and regulatory affairs within the financial services or fintech sectors. As a vital member of our compliance team, you will collaborate cross-departmentally with Product, Finance, Sales, and Operations teams to devise, implement, and oversee compliance processes. Reporting directly to the Senior Compliance Manager, you will have the chance to leverage your existing expertise while broadening your skill set in a dynamic, innovative, and rapidly growing business environment. This position is an excellent opportunity for a seasoned compliance professional who thrives in a fast-paced setting and is eager to champion compliance excellence.

Join dstaff as a Technical Risk Governance Specialist in the vibrant city of San Francisco! We are looking for a dedicated individual to help manage and mitigate technical risks within our organization. As part of our team, you will play a crucial role in ensuring that our technology systems are secure, compliant, and aligned with industry best practices.

Role Overview sia is seeking a Risk & Compliance Subject Matter Expert (SME) Consultant in San Francisco. This consultant guides clients through risk management challenges and compliance frameworks, working closely with cross-functional teams to create solutions that fit industry standards. What You Will Do Conduct in-depth risk and compliance assessments for client organizations Identify areas of potential risk and recommend practical mitigation strategies Develop and implement compliance initiatives tailored to client needs Advise clients on regulatory changes and industry trends Collaborate with teams across disciplines to ensure solutions align with current standards About the Team Join a group that values expertise and practical insight, helping clients stay ahead in a changing regulatory landscape.

As the Enterprise Risk Management Lead at Gusto, you will play a pivotal role in shaping our risk management strategy. You will be responsible for identifying, assessing, and mitigating risks across our organization, ensuring that we maintain a secure and compliant operational environment. Collaborating with cross-functional teams, you will develop and implement risk management frameworks that align with our business goals and regulatory requirements.

Join Mercury as a Compliance Risk Manager within our Banking Advisory team, where your expertise will guide financial institutions in navigating complex regulatory landscapes. You will work collaboratively with clients to develop compliance strategies, assess risks, and implement effective controls to mitigate potential issues.Your role will involve analyzing compliance frameworks, conducting risk assessments, and providing actionable insights to enhance the client’s operational integrity. As a key member of our team, you will also stay abreast of evolving regulations and industry trends, ensuring our advisory services remain relevant and impactful.

JOIN SPHERE AS A COMPLIANCE LEADAt Sphere, we are revolutionizing trade infrastructure by simplifying compliance, one of the most complex and essential components of global commerce. Just as containerization transformed goods transport and SWIFT enhanced financial transactions, our advanced AI system, TRAM, is set to redefine compliance. It seamlessly ingests and interprets intricate global trade regulations across 190+ jurisdictions, providing compliance determinations that surpass human expertise.We manage the entire compliance lifecycle—calculation, registration, filing, and remittance—delivering results with millisecond latency and zero downtime.Invested by a16z and Y Combinator. Our $21M Series A funding and 30%+ month-over-month growth reflect our success, with clients including ElevenLabs, Replit, Deel, Runway, and Lovable.Small, agile team with a global impact. Each team member is a domain owner, contributing significantly to our mission. Our San Francisco office operates five days a week.Growing complexity in compliance. As we expand into areas like input tax, withholding, e-invoicing, and tariffs, the challenge intensifies. We handle millions of transactions today, with billions on the horizon.ROLE OVERVIEWWe are on the lookout for a dedicated Compliance Lead to oversee the comprehensive indirect tax filing and compliance process across various jurisdictions. This pivotal role involves ensuring timely, precise, and scalable return preparation and review, while implementing processes that mitigate risk and enhance efficiency.As the operational backbone of our tax function, you will take charge of compliance, allowing the broader team to scale effectively.WHAT YOU'LL DOWithin your first days:Collaborate directly with our head of tax on:Managing the monthly and periodic tax filing cycle for thousands of returns.Overseeing timelines, deliverables, and team coordination.Ensuring that all filings are completed accurately and punctually.Within months:Designing and implementing scalable compliance processes.Collaborating with engineering to enhance automation.Streamlining manual efforts while boosting reliability.

Join Grow Therapy as a Security Risk Program Lead where you will play a pivotal role in enhancing our security protocols and risk management strategies. We are seeking a passionate leader who is committed to safeguarding our operations and ensuring compliance with industry standards.You will oversee the development and implementation of security risk programs, identify potential threats, and collaborate with cross-functional teams to mitigate risks effectively. If you are driven by a desire to create a secure environment for our team and clients, we would love to hear from you!

Join our dynamic Governance, Risk, and Compliance (GRC) team as an intern for the Summer of 2026. This internship offers a unique opportunity to gain hands-on experience in risk management, compliance strategies, and governance frameworks within a leading tech company. You will work closely with seasoned professionals, engaging in projects that help shape our organizational policies and procedures.As a GRC intern, you will have the chance to:Assist in developing and implementing compliance programs.Participate in risk assessments and audits.Contribute to the preparation of regulatory reports.Support cross-functional teams to ensure adherence to governance practices.