RemoteLeaf Logo
Log in Sign up

Sr. GRC Engineer

1 hour, 53 minutes ago
United States
Full-time
Senior
Security Engineer
Cybersecurity
AWS Azure GCP HIPAA JavaScript Looker Python
Apply Now
Ro

Ro

Ro is a telehealth provider that connects patients with licensed healthcare professionals online to offer treatments for various health concerns, including weight loss, sexual health, hair loss, and fertility.

Health Care Providers & Services
251-1K
Founded 2017
$1023M raised
View All Jobs 6

Description

  • Own and maintain the compliance platform (Vanta), including control mapping, evidence collection, continuous monitoring, and audit workflows.
  • Serve as both a risk practitioner and an automation engineer to streamline and improve compliance operations.
  • Perform risk assessments, vendor security reviews, and control gap analyses, then track remediation through completion.
  • Manage control documentation, policies, procedures, and supporting artifacts across multiple compliance frameworks.
  • Partner with Security, IT, Infrastructure, and Engineering teams to ensure controls align with policies and compliance requirements.
  • Support internal and external audits, including SOC 2, HIPAA, and HITRUST.
  • Own and maintain the cyber risk register, working with risk owners to quantify risks and develop remediation plans.
  • Develop and maintain risk reporting, metrics, and executive summaries using BI tools such as Looker and Hex.
  • Automate data ingestion, transformation, and reporting using scripting or APIs.

Requirements

  • 5+ years of combined experience in governance, risk, compliance, security engineering, or adjacent technical roles.
  • Hands-on experience with compliance frameworks such as SOC 2, HIPAA, HITRUST, NIST, and PCI in modern, technology-driven environments.
  • 3+ years of experience with ongoing compliance operations, with progression from manual evidence collection to automated, continuously monitored controls.
  • 2+ years of hands-on experience implementing and administering continuous compliance and evidence automation platforms such as Vanta, Drata, or SecureFrame.
  • Experience configuring custom integrations and optimizing automated evidence workflows.
  • Working knowledge of cloud platforms such as AWS, Azure, or GCP and how native services support security and compliance requirements.
  • Expertise in Looker or a similar BI tool such as Hex to build dashboards, reports, and visualizations for stakeholders.
  • Ability to automate data ingestion, transformation, and reporting using Python, JavaScript, APIs, or Tines.
  • Strong analytical and root cause analysis skills.
  • Ability to communicate effectively and kindly with all levels of the organization.
  • Advanced GRC automation and engineering mindset, including building custom automations or workflows beyond out-of-the-box compliance tools.

Benefits

  • Full medical, dental, and vision insurance plus OneMedical membership.
  • Healthcare and dependent care FSA.
  • 401(k) with company match.
  • Flexible PTO.
  • Wellbeing plus learning and growth reimbursements.
  • Paid parental leave plus fertility benefits.
  • Pet insurance.
  • Student loan refinancing.
  • Virtual resources for mindfulness, counseling, and fitness.
  • Target base salary of $148,000 to $175,000 plus competitive equity and benefits package.
  • Remote flexibility anywhere in the United States, with periodic in-person collaboration for tri-state employees.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

Xsolla

Principal Engineer – Identity Management (IAM & Golang Backend)

Xsolla 251-1K Internet Software & Services

Xsolla is seeking a Principal Engineer to lead the evolution of its identity and access management platform, building secure authentication and authorization services for a global gaming commerce ecosystem.

Anywhere Full-time Lead Security Engineer Technical Lead
$180k-$250k
AWS Azure Encryption GCP Go HashiCorp Vault JWT Kubernetes Microservices OpenID Connect SAML Secrets Management
8 minutes ago
Binance

Binance Accelerator Program - AI Security Automation

Binance 5K-10K Capital Markets

Binance’s Accelerator Program is seeking an early-career AI Security Automation intern to help build and support AI-driven security services and integrations within its global blockchain ecosystem.

Asia Internship Entry Level AI Engineer Security Engineer
AWS GitHub Kubernetes LLM Python
23 minutes ago
WaveStrong,

Remote Imperva Data Security SME

WaveStrong, 51-250 Internet Software & Services

WaveStrong is seeking a Remote Imperva Data Security SME to support enterprise data protection efforts by configuring and overseeing Imperva security solutions across customer environments.

United States Full-time Senior Security Engineer
WAF
53 minutes ago
WaveStrong,

Remote SOAR Developer/Engineer

WaveStrong, 51-250 Internet Software & Services

Remote contract role for a SOAR Developer/Engineer at an unspecified company, focused on automating SOC incident response workflows and improving security operations processes.

United States Contract Junior Security Engineer Software Engineer
CSS Cybersecurity DevSecOps HTML JavaScript JSON Network Security Python REST API SIEM SOC Splunk Visual Studio XML
53 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers