RemoteLeaf Logo
Log in Sign up

Sr. GRC Engineer

3 weeks, 4 days ago
United States
Full-time
Senior
Security Engineer
Cybersecurity
AWS Azure GCP HIPAA JavaScript Looker Python
Apply Now
Ro

Ro

Ro is a telehealth provider that connects patients with licensed healthcare professionals online to offer treatments for various health concerns, including weight loss, sexual health, hair loss, and fertility.

Health Care Providers & Services
251-1K
Founded 2017
$1023M raised
View All Jobs 8

Description

  • Own and maintain the compliance platform (Vanta), including control mapping, evidence collection, continuous monitoring, and audit workflows.
  • Serve as both a risk practitioner and an automation engineer to streamline and improve compliance operations.
  • Perform risk assessments, vendor security reviews, and control gap analyses, then track remediation through completion.
  • Manage control documentation, policies, procedures, and supporting artifacts across multiple compliance frameworks.
  • Partner with Security, IT, Infrastructure, and Engineering teams to ensure controls align with policies and compliance requirements.
  • Support internal and external audits, including SOC 2, HIPAA, and HITRUST.
  • Own and maintain the cyber risk register, working with risk owners to quantify risks and develop remediation plans.
  • Develop and maintain risk reporting, metrics, and executive summaries using BI tools such as Looker and Hex.
  • Automate data ingestion, transformation, and reporting using scripting or APIs.

Requirements

  • 5+ years of combined experience in governance, risk, compliance, security engineering, or adjacent technical roles.
  • Hands-on experience with compliance frameworks such as SOC 2, HIPAA, HITRUST, NIST, and PCI in modern, technology-driven environments.
  • 3+ years of experience with ongoing compliance operations, with progression from manual evidence collection to automated, continuously monitored controls.
  • 2+ years of hands-on experience implementing and administering continuous compliance and evidence automation platforms such as Vanta, Drata, or SecureFrame.
  • Experience configuring custom integrations and optimizing automated evidence workflows.
  • Working knowledge of cloud platforms such as AWS, Azure, or GCP and how native services support security and compliance requirements.
  • Expertise in Looker or a similar BI tool such as Hex to build dashboards, reports, and visualizations for stakeholders.
  • Ability to automate data ingestion, transformation, and reporting using Python, JavaScript, APIs, or Tines.
  • Strong analytical and root cause analysis skills.
  • Ability to communicate effectively and kindly with all levels of the organization.
  • Advanced GRC automation and engineering mindset, including building custom automations or workflows beyond out-of-the-box compliance tools.

Benefits

  • Full medical, dental, and vision insurance plus OneMedical membership.
  • Healthcare and dependent care FSA.
  • 401(k) with company match.
  • Flexible PTO.
  • Wellbeing plus learning and growth reimbursements.
  • Paid parental leave plus fertility benefits.
  • Pet insurance.
  • Student loan refinancing.
  • Virtual resources for mindfulness, counseling, and fitness.
  • Target base salary of $148,000 to $175,000 plus competitive equity and benefits package.
  • Remote flexibility anywhere in the United States, with periodic in-person collaboration for tri-state employees.

Interested in this position?

Apply directly on the company website

Apply Now

Similar Roles

ESG News

Senior Cyber Engineer

ESG News 11-50 Internet Software & Services

The Financial Times is hiring a Senior Cyber Security Engineer to strengthen application and cloud security across its AWS-hosted, cloud-native technology estate.

United Kingdom Full-time Senior Application Security Engineer Security Engineer
Agile AWS CI/CD CloudFormation GitHub Python Scrum SIEM Splunk Terraform
25 minutes ago
Pinterest

Security Software Engineer II, Internal Identity & Access Management

Pinterest 5K-10K Internet Software & Services

Pinterest is hiring a software engineer for its Internal Identity & Access Management team to build production infrastructure for identity, authentication, and authorization across critical systems.

United States Full-time Junior Security Engineer Software Engineer
$124k-$255k
AWS C++ Envoy Go Kubernetes Microservices OAuth Puppet Python React SAML Terraform TypeScript
1 hour ago
Unlimited Technology

Security Technician

Unlimited Technology 51-250 Professional Services

Unlimited Technology is hiring a full-time Security Installation Technician to install, program, troubleshoot, and maintain access control and IP camera systems at client sites.

United States Full-time Mid Level Security Engineer
$75k-$95k
1 hour, 28 minutes ago
Anduril Industries

Information Systems Security Officer, AD&S

Anduril Industries 1K-5K Aerospace & Defense

Anduril Industries is hiring an Information System Security Officer to support classified and air-gapped environments for deploying and accrediting defense technology systems.

United States Full-time Senior Security Engineer
$113k-$149k
Bash Cybersecurity Encryption PowerShell Python Splunk
2 hours, 19 minutes ago

You're on a roll! Sign up now to keep applying.

Sign Up

Already have an account? Log in

Used by 14,729+ remote workers