RemoteLeaf Logo
Log in Sign up

Sr. GRC Engineer

1 month, 2 weeks ago
United States
Full-time
Senior
Security Engineer
Cybersecurity
AWS Azure GCP HIPAA JavaScript Looker Python
Apply Now
Ro

Ro

Ro is a telehealth provider that connects patients with licensed healthcare professionals online to offer treatments for various health concerns, including weight loss, sexual health, hair loss, and fertility.

Health Care Providers & Services
251-1K
Founded 2017
$1023M raised
View All Jobs 8

Description

  • Own and maintain the compliance platform (Vanta), including control mapping, evidence collection, continuous monitoring, and audit workflows.
  • Serve as both a risk practitioner and an automation engineer to streamline and improve compliance operations.
  • Perform risk assessments, vendor security reviews, and control gap analyses, then track remediation through completion.
  • Manage control documentation, policies, procedures, and supporting artifacts across multiple compliance frameworks.
  • Partner with Security, IT, Infrastructure, and Engineering teams to ensure controls align with policies and compliance requirements.
  • Support internal and external audits, including SOC 2, HIPAA, and HITRUST.
  • Own and maintain the cyber risk register, working with risk owners to quantify risks and develop remediation plans.
  • Develop and maintain risk reporting, metrics, and executive summaries using BI tools such as Looker and Hex.
  • Automate data ingestion, transformation, and reporting using scripting or APIs.

Requirements

  • 5+ years of combined experience in governance, risk, compliance, security engineering, or adjacent technical roles.
  • Hands-on experience with compliance frameworks such as SOC 2, HIPAA, HITRUST, NIST, and PCI in modern, technology-driven environments.
  • 3+ years of experience with ongoing compliance operations, with progression from manual evidence collection to automated, continuously monitored controls.
  • 2+ years of hands-on experience implementing and administering continuous compliance and evidence automation platforms such as Vanta, Drata, or SecureFrame.
  • Experience configuring custom integrations and optimizing automated evidence workflows.
  • Working knowledge of cloud platforms such as AWS, Azure, or GCP and how native services support security and compliance requirements.
  • Expertise in Looker or a similar BI tool such as Hex to build dashboards, reports, and visualizations for stakeholders.
  • Ability to automate data ingestion, transformation, and reporting using Python, JavaScript, APIs, or Tines.
  • Strong analytical and root cause analysis skills.
  • Ability to communicate effectively and kindly with all levels of the organization.
  • Advanced GRC automation and engineering mindset, including building custom automations or workflows beyond out-of-the-box compliance tools.

Benefits

  • Full medical, dental, and vision insurance plus OneMedical membership.
  • Healthcare and dependent care FSA.
  • 401(k) with company match.
  • Flexible PTO.
  • Wellbeing plus learning and growth reimbursements.
  • Paid parental leave plus fertility benefits.
  • Pet insurance.
  • Student loan refinancing.
  • Virtual resources for mindfulness, counseling, and fitness.
  • Target base salary of $148,000 to $175,000 plus competitive equity and benefits package.
  • Remote flexibility anywhere in the United States, with periodic in-person collaboration for tri-state employees.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

GitLab

Staff Security Engineer, IAM (USA)

GitLab 1K-5K Internet Software & Services

GitLab is seeking a Staff Security Engineer to lead identity security for its workforce ecosystem, enterprise AI platforms, and non-human identities in a regulated, remote-first environment.

United States Full-time Lead Security Engineer
$168k-$238k
OAuth Python Terraform
23 minutes ago
Your Business

Senior Microsoft 365 Engineer

Your Business Internet Software & Services

NRI North America is hiring a Senior Microsoft 365 Engineer to support managed services clients remotely by resolving escalations and optimizing Microsoft 365 environments, with a primary focus on M365 security.

Anywhere Full-time Senior Cloud Engineer Security Engineer
$75k-$95k
Active Directory PowerShell
32 minutes ago
Energage

Director of IT, Information Security & Data Privacy

Energage 51-250 Professional Services

Energage is seeking a Director of IT, Information Security & Data Privacy to lead its internal technology, cybersecurity, and privacy programs in a fast-growing SaaS environment.

United States Full-time Executive Operations Manager Security Engineer
$175k-$190k
AWS Azure Cybersecurity
1 hour, 8 minutes ago
JumpCloud

Security Engineer, DevSecOps - Mexico

JumpCloud 251-1K Internet Software & Services

JumpCloud is hiring a remote Security Engineer for its DevSecOps team in Mexico to design and build cloud security automation, detection, and vulnerability management solutions that protect the company’s data and infrastructure.

Mexico Full-time Mid Level Security Engineer
AWS DevSecOps GCP GitHub Actions Go Python SIEM Terraform
1 hour, 8 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers