Senior Fullstack Software Engineer - Governance, Risk & Compliance

Join Vanta as a Senior Fullstack Software Engineer in the Governance, Risk & Compliance (GRC) team, where you will lead the development of impactful solutions that empower businesses to manage their compliance effectively. You will work on both front-end and back-end technologies, leveraging your expertise to create robust applications that enhance user experience and streamline compliance processes.

About DelveDelve is dedicated to transforming the compliance landscape, eliminating tedious manual tasks and creating seamless, automated partnerships. Our innovative solutions are trusted by over 450 rapidly expanding companies, including Lovable, 11x, and WisprFlow, enabling them to save countless hours while ensuring secure growth. With backing from prominent investors such as Insight Partners, General Catalyst, and Y Combinator, our team boasts a rich diversity of talent, including former founders, Olympiad medalists, and engineers from prestigious institutions like OpenAI, Stanford, MIT, and Berkeley.About the RoleIn the role of Senior GRC Specialist, you will serve as the primary advisor to our internal teams and customers. Your extensive knowledge of compliance frameworks will be key in guiding clients through their compliance journeys. You will closely collaborate with Sales, Customer Success, Product, and Engineering teams to translate compliance requirements into impactful solutions. This position is available for candidates located in the San Francisco Bay Area or those who prefer to work fully remotely from anywhere in the U.S.With a recent $32M Series A funding round, we are poised for rapid growth!Key ResponsibilitiesCustomer Advisory & Enablement: Conduct consultative calls and workshops to distill complex compliance standards such as SOC 2, ISO 27001, HIPAA, GDPR, HITRUST, FedRAMP, and FDA CFR into actionable strategies.Framework Expertise: Act as the Subject Matter Expert on various cybersecurity frameworks, addressing customer inquiries, assessing control implementations, and resolving audit challenges.Cross-Functional Collaboration: Partner closely with Product and Engineering teams to integrate audit readiness and customer insights into our platform’s core structure.Sales & Customer Success Support: Equip Sales and Customer Success teams with essential resources, including talking points and battlecards, to ensure confidence during customer interactions.Policy & Controls: Lead the development, documentation, and ongoing enhancement of our internal compliance framework as well as customer-oriented best practices.Audit Preparedness: Organize readiness assessments and manage evidence collection to guarantee that both Delve and our customers are always audit-ready.QualificationsProven experience in governance, risk management, and compliance, particularly with frameworks such as SOC 2, ISO 27001, HIPAA, and GDPR.Strong communication skills and the ability to engage effectively with clients and internal teams.Demonstrated ability to work collaboratively across different functions to achieve common goals.Experience in conducting workshops and training sessions.Bachelor's degree in a relevant field or equivalent experience.

Why Zania? Zania is focused on transforming how enterprises approach Governance, Risk, and Compliance (GRC). Many organizations still rely on outdated systems that struggle to keep up with today’s needs. Our team is building agentic AI solutions to automate and improve complex risk and compliance workflows. Work with top-tier clients: Partner with major enterprises, including FAANG companies and Big 4 firms. Strong financial support: Backed by a leading venture capital fund, Zania has the resources to pursue ambitious goals. Experienced colleagues: Join a team with backgrounds at Airbnb, Microsoft, Deloitte, and other industry leaders. Applied AI technology: Contribute to advanced AI that is changing how compliance is managed. Significant growth: Zania has achieved 10x ARR growth over the past year. Compensation: Competitive salary and equity packages are offered. Role Overview: Senior Design Engineer, AI for GRC This Senior Design Engineer position centers on building AI agents for Governance, Risk, and Compliance. The goal: replace legacy GRC tools like Archer and ServiceNow GRC with intelligent, adaptive solutions. The work spans both improving current workflows and rethinking how compliance and risk management function in an AI-driven world. Zania values functional software over static prototypes. In this role, lead the design vision and technical delivery of user experiences. Collaborate closely with Fortune 500 clients, engineers, and company leadership. Expect to create interactive, coded prototypes that set a new standard for usability and capability in GRC tools. This role is based in Palo Alto, CA. In-person collaboration is encouraged to support innovation.

Flex is hiring a Senior Fullstack Software Engineer to join the Risk Engineering team. This position can be based in New York, San Francisco, or remote within the U.S. Role overview This role centers on designing, building, and maintaining applications that support Flex’s risk management efforts. The Senior Fullstack Software Engineer will collaborate closely with teammates to deliver solutions that improve how risk is assessed and managed across the company. What you will do Develop and maintain both frontend and backend components for risk-related applications Work with team members to design features and solve technical challenges Contribute to projects from initial planning through deployment Requirements Experience in both frontend and backend software development Ability to drive projects through the full development lifecycle Interest in building solutions that support risk management

Ro is a pioneering healthcare organization focused on delivering direct-to-patient services with the aim of empowering individuals to reach their health objectives through the most seamless and effective care. As the only company offering comprehensive nationwide telehealth, laboratory, and pharmacy services, Ro leverages a vertically integrated platform to provide a holistic healthcare journey—from initial diagnosis and medication delivery to continuous care. Since its inception in 2017, Ro has positively impacted millions of patients across every county in the United States, particularly addressing healthcare needs in 98% of primary care deserts.Recognized as a Fortune Best Workplace in New York and Health Care for four consecutive years (2021-2024) and awarded Best Workplace for Parents in 2023 for the third straight year, Ro continues to set benchmarks in employee satisfaction. Additionally, in 2022, Ro was featured on the CNBC Disruptor 50 list, highlighting its innovative approach in the healthcare sector.The Role:As a vital member of Ro’s Governance Risk and Compliance (GRC) team, the Senior GRC Engineer will play an essential role in enhancing the organization's risk management by rigorously evaluating our operations against top compliance frameworks and existing legislation. This individual contributor position focuses on leading our audit readiness initiatives while fostering ongoing compliance through advanced AI and automation technologies.

Join our dynamic team as a Senior Governance, Risk, and Compliance (GRC) Specialist, where you will spearhead crucial governance, risk, and compliance initiatives in our tolling operations. You will be responsible for managing compliance frameworks such as PCI DSS and SOC 1/SOC 2, developing risk frameworks, conducting vendor assessments, and facilitating audits, all while leveraging platforms like ServiceNow GRC to optimize our processes.Key Responsibilities: - Lead the implementation of GRC frameworks including PCI, SOC, ISO 27001, and NIST. - Oversee risk assessments and evaluations of third-party vendors. - Coordinate and support audit processes and compliance projects. - Mentor junior team members and enhance the organization’s compliance awareness programs.

We are on the lookout for an experienced and strategic leader to manage Governance, Risk, and Compliance (GRC) within our Tolling Operations. This pivotal role will spearhead enterprise risk initiatives, guarantee compliance with regulations such as PCI DSS and SOC 1/SOC 2, and direct comprehensive vendor risk evaluations. As a Senior Manager, you will be responsible for overseeing GRC frameworks, mentoring a team of functional managers, and ensuring alignment with ISO 27001, NIST standards, and local governmental requirements.Key Responsibilities:Lead the execution of enterprise GRC, risk management, and compliance programs.Ensure adherence to PCI DSS and SOC 1/SOC 2 compliance standards.Coordinate and develop vendor risk assessments to mitigate third-party risks.Align organizational strategies with ISO/NIST standards and public sector objectives.Collaborate across departments and oversee performance reporting to enhance operational efficiency.

Mattel, Inc. is hiring a Risk Specialist to support governance, risk management, and compliance initiatives at the Shaw Centre location. This position centers on identifying and assessing risks that could impact business operations or reputation. Role overview The Risk Specialist works closely with teams across the company to evaluate potential risks and recommend strategies to address them. Attention to regulatory requirements and internal policies is essential. This role also helps promote a culture where compliance is valued and maintained throughout the organization. Key responsibilities Identify and evaluate risks that may affect Mattel’s operations or reputation Collaborate with multiple departments to ensure compliance with regulations and company policies Support efforts to foster a strong compliance culture within the organization

Nagarro is seeking a dynamic and detail-oriented Engineer specializing in SAP Governance, Risk, and Compliance (GRC) to join our innovative team. As a key contributor, you will play a vital role in enhancing our SAP GRC framework, ensuring compliance with regulatory requirements, and mitigating risks associated with our operations.

Machinify Inc. is looking for a Security Engineer with expertise in Governance, Risk, and Compliance (GRC). This role is fully remote and open to candidates located anywhere in the United States. Role overview This position centers on building and refining security frameworks that protect the company’s systems and data. Collaboration with internal teams is a key part of the work, ensuring that security measures align with organizational needs and regulatory requirements. What you will do Partner with teams across Machinify to design, implement, and enhance security frameworks. Develop and maintain processes for risk management and regulatory compliance. Apply security knowledge to strengthen the company’s defenses and support resilience against cyber threats. Location This is a remote position available to candidates based in the US.

Role overview This Senior Consultant role at MorganFranklin Consulting LLC focuses on ERP Risk, Governance, and Compliance. Based in McLean, VA, the position involves guiding clients as they manage regulatory requirements and strengthen their operational resilience through sound risk management practices. What you will do Advise clients on complex regulatory requirements affecting ERP systems Create and support strategies to manage risk and improve operational stability Collaborate with cross-functional teams to deliver practical compliance and governance solutions Share insights to advance client initiatives in risk, governance, and compliance

Join eproinc, a leading consultancy known for its innovative solutions in Governance, Risk, and Compliance. We are seeking a highly motivated Senior GRC Consultant to strengthen our team in New York. In this role, you will leverage your expertise to assist organizations in navigating complex regulatory landscapes and enhancing their compliance frameworks.

At Vanta, our mission is to empower businesses to establish and demonstrate trust. We believe that security should be continuously monitored and verified, enabling companies to enhance their security practices effortlessly. Our team is comprised of kind and talented individuals; while some members have prior experience in security, many have successfully excelled at Vanta without it.As a Senior Software Engineer, you will play a pivotal role in leading and mentoring fellow engineers, delivering high-impact products that enhance our customers' experiences and support our growing infrastructure.Vanta is rapidly expanding, and it is crucial to invest in the right abstractions and systems to facilitate this growth. In this role, you will set the technical direction, enabling our product and infrastructure to effectively scale with our business. You will drive complex projects across our technical stack and mentor our talented engineering team, utilizing your extensive experience to fuel Vanta's growth.Since our inception, we have achieved remarkable product-market fit and monetized effectively from our very first customer. We are experiencing rapid growth, presenting unique career-defining opportunities for engineers to accelerate their professional development and contribute to a fast-scaling company.To learn more about our engineering team's initiatives, visit our Vanta Engineering Blog.The Governance, Risk, and Compliance (GRC) organization is at the forefront of developing and maintaining Vanta's core product offerings. Our teams are central to Vanta's strategy to support enterprise customers, building products that seamlessly integrate with their existing security and compliance frameworks, providing invaluable insights and recommendations for their ongoing operational maturity.Key Responsibilities for Senior Software Engineers at Vanta:Lead complex projects involving multiple stakeholders and engineers to deliver significant business impact.Establish direction for critical technical areas, ensuring we remain ahead of rapid growth.Design, develop, and own new product functionalities and/or infrastructure using modern frameworks and tools (e.g., TypeScript, React, Node.js).

Join Crusoe as a Staff Governance, Risk, and Compliance (GRC) Engineer, where you will play a pivotal role in enhancing our compliance strategies and risk management frameworks. You will be responsible for developing and implementing GRC policies, ensuring regulatory compliance, and collaborating with cross-functional teams to mitigate risks effectively. If you have a passion for governance and compliance within the tech industry, we want to hear from you!

Why Join UsAt Brex, we are revolutionizing the way businesses manage their finances through our AI-driven spend platform. Our integrated solutions encompass corporate cards, banking, and global payments, accompanied by intuitive software for travel and expenses. We proudly serve tens of thousands of businesses, ranging from startups to large enterprises, including notable names like DoorDash, Flexport, and Compass. Our mission is to empower companies to confidently control their spending, optimize costs, and enhance efficiency on a global scale.Joining Brex means pushing boundaries, challenging norms, and collaborating with some of the brightest minds in the industry. We are dedicated to cultivating a diverse and inclusive culture, believing that your potential should only be limited by your ambitions. We provide the necessary tools, resources, and support for you to advance your career.Engineering at BrexOur engineering teams focus on creating scalable systems with speed and precision. We have diverse teams across Software, Data, Security, and IT that work with high autonomy and deep collaboration. We tackle complex technical challenges, take ownership of our outcomes, and strive for excellence in every phase, from architecture to deployment, fostering an environment where engineering is viewed as a craft and innovators become leaders.What You’ll DoAs a Senior GRC Engineer in Brex’s Governance, Risk, and Compliance function, you will play a pivotal role in advancing our compliance maturity. You will expertly merge compliance knowledge with technical execution to spearhead essential GRC processes that mitigate risk, ensure compliance, and cultivate trust with our clients and partners. Your efforts will enhance the technical foundation of our Trust program by automating security controls, integrating security tools with GRC platforms, and creating scalable processes that enable efficient compliance as we enter new markets. You will operate at the crossroads of security, engineering, and compliance, translating regulatory demands into actionable technical solutions while building automated processes that eliminate manual work.Your expertise in frameworks such as SOC 2, PCI DSS, ISO 27001, and AI governance will be essential in designing controls for emerging compliance needs and enhancing existing programs through automation and continuous monitoring. You will support initiatives in Trust Assurance, Third Party Risk Management, and other Security Risk Management projects. By collaborating with our Engineering, Infrastructure, and Product teams, you will help translate compliance frameworks into actionable technical controls, developing automated systems that facilitate world-class security as Brex continues to grow.

About ZscalerZscaler stands as a trailblazer and a global authority in zero trust cybersecurity. Major corporations, critical infrastructure entities, and government bodies across the globe depend on Zscaler to safeguard users, branches, applications, data, and devices while propelling digital transformation efforts. With over 160 data centers worldwide, the Zscaler Zero Trust Exchange platform, powered by advanced AI, counters billions of cyber threats and policy breaches daily, enhancing productivity for modern enterprises by minimizing costs and complexity.At Zscaler, the impact of your role supersedes titles, and trust is cultivated through tangible results. We champion transparency and appreciate constructive, honest discussions—our focus is on rapidly deriving the best ideas. We foster high-performing teams capable of making significant impacts swiftly and efficiently. To achieve this, we are nurturing a culture centered on customer obsession, collaboration, ownership, and accountability.We uphold an “AI Forward, People First” philosophy to fuel acceleration and innovation, empowering our employees to realize their full potential. If you are motivated by purpose, thrive in solving intricate challenges, and wish to make a positive global impact, we welcome you to join Zscaler and help shape the future of cybersecurity.RoleWe are in search of a Cybersecurity Risk Management Principal to become part of our team. This hybrid role requires in-person presence in the San Jose, CA office three days a week. You will report directly to the Sr. Director of Enterprise Risk Management within the Security GRC department. As a technical leader and subject matter expert, you will conduct advanced risk assessments and uphold the strategic risk register to safeguard our global infrastructure. You will connect the dots between intricate technical adversary tactics and overarching business impacts to facilitate remediation across the organization.What you’ll do (Role Expectations)Lead thorough cyber risk evaluations using both qualitative and quantitative approaches, such as FAIR, to pinpoint and communicate threats to business stakeholders.Develop and sustain a dynamic cyber risk register, ensuring prioritized risks and mitigation strategies are monitored and communicated to executive leadership.Oversee daily operations for Security Policy Exceptions and Risk Acceptance processes to guarantee compliance while balancing risk-taking.Collaborate with Internal Audit, ...

About Juniper SquareAt Juniper Square, our mission is to empower individuals by unlocking the immense potential of private markets. Privately owned assets like commercial real estate, private equity, and venture capital constitute half of the financial ecosystem but are often inaccessible to the general public. We are at the forefront of digitizing these markets, enhancing efficiency, transparency, and accessibility in one of the most dynamic sectors of finance. If you are passionate about leveraging technology to improve market functionality and wish to be part of a values-driven organization, we invite you to apply.We offer a range of work arrangements, from fully remote positions to full-time roles in our physical offices. Our commitment to a digital-first approach enables effective collaboration across 27 U.S. states, 2 Canadian provinces, India, Luxembourg, and England. For those who prefer an office environment, we maintain physical locations in San Francisco, New York City, Mumbai, and Bangalore.Your RoleAs a Senior GRC Analyst, you will play a pivotal role in supporting our governance, risk management, and compliance (GRC) framework. The ideal candidate will possess extensive experience in developing scalable and tailored risk management and compliance processes suited for a high-growth organization. Strong analytical, problem-solving, and communication skills are essential, as you will collaborate with diverse cross-functional teams to foster effective risk management practices.Key ResponsibilitiesCustomer Trust and AssuranceCompliance ManagementOversee the maintenance and onboarding of security compliance certifications and frameworks, including SOC2, ISO, and more.Collaborate with cross-functional teams to gather controls evidence for timely submissions to external auditors.Facilitate a seamless audit process through effective communication and teamwork.Continuously enhance the audit process through automation and rationalization of controls.

The Governance Risk & Compliance Analyst III is integral to Vatica Health's Information Security Program, focusing on evaluating and mitigating cyber and data risks within our security framework and healthcare regulatory standards. This role supports the planning and execution of information security controls across the organization, continuously assessing the IT control environment for effectiveness and appropriateness.As a vital member of the Governance Risk & Compliance team, you will conduct IT and security control risk assessments, provide actionable recommendations to reduce risk exposure, and oversee the remediation of identified control deficiencies. You will analyze data for management reporting and ensure compliance with all cyber and data security requirements.Key Responsibilities:Generate monthly reports analyzing the effectiveness of IT security controls and assessing risk exposure.Continuously monitor compliance with applicable regulatory requirements, ensuring proper management of security controls.Conduct information security risk evaluations on reported IT issues.Consult with business and IT partners on appropriate security measures to mitigate risk.Educate stakeholders on alternative security measures when compliance cannot be achieved.Oversee remediation plans to ensure successful implementation in collaboration with business and IT partners.Participate in IT initiatives to ensure security measures are incorporated into regular business activities.Develop and enhance information security processes and procedures.Act as the primary contact for external audits.

Role Overview Fortreum is hiring a Senior Governance, Risk, and Compliance (GRC) Advisor. This remote role focuses on strengthening compliance with regulatory standards and improving risk management practices. The Senior GRC Advisor works closely with colleagues across the organization, contributing to ongoing efforts in regulatory adherence and risk mitigation.

Role Overview Crusoe is seeking a Senior Governance, Risk, and Compliance (GRC) Analyst in San Francisco, CA. This role focuses on keeping operations in line with regulatory requirements and internal policies. The analyst leads efforts to identify, assess, and reduce risks, working closely with teams across the company to strengthen the compliance framework. The position shapes risk management strategies and supports the integrity of the organization.