GRC Engineer

Job not on LinkedIn

🕒 April 23

🇺🇸 United States – Remote

💵 $175k - $275k / year

⏰ Full Time

🟡 Mid-level

🟠 Senior

🚔 Compliance

🦅 H1B Visa Sponsor

This company has sponsored H1B visas in the past.

Apply Now

Find Similar Remote Jobs

Receive Emails For Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Upload Resume

WorkOS

WebsiteLinkedInAll Job Openings

51 - 200 employees

Founded 2019

🔌 API

🏢 Enterprise

🤝 B2B

💰 $80M Series B - WorkOS on 2022-05

API • Enterprise • B2B

WorkOS is a developer-focused platform that provides APIs, SDKs, and hosted admin tools to help SaaS applications become enterprise-ready. It abstracts and normalizes enterprise integrations — including Single Sign-On (SAML/OIDC), SCIM/HRIS directory sync, multi-factor auth, role-based access control, audit logs, and encryption key management — so engineering teams can add enterprise features quickly with minimal custom work. WorkOS targets B2B SaaS companies selling to enterprise customers, offering developer-first docs, sample SDKs, and a hosted Admin Portal for IT admins.

📋 Description

• Own our compliance function. Frameworks, policies, controls, and audits are yours. • Lead our next certifications. Drive initiatives for FedRAMP and other frameworks; scoping the controls, documentation, and collaborating with others across the organization to make it happen. • Partner directly with customers. Be the voice of our compliance program to our customers. Support audits, enable sales on compliance-gated deals, and build on the trust we've established with the companies that depend on us. • Own risk across WorkOS. Run our risk and third-party risk programs. Identify risks as they emerge, drive remediation, and surface signal to leadership. • Build GRC-as-code. Write code and tooling to automate the parts of GRC that don't need a human, and leverage AI where it fits.

🎯 Requirements

• 5+ years in a GRC, or compliance role, with demonstrated program ownership at a cloud-native company. • Hands-on experience implementing or auditing SOC 2 plus one other major framework (ISO 27001, PCI DSS, NIST 800-53). • Proficiency in at least one programming or scripting language (Python, TypeScript, Go, or similar). You can read code, write automation, and leverage AI effectively. CS or engineering background preferred. • Experience with GRC automation platforms (Vanta, Drata, or similar); migrating into, configuring, and building in them. • Strong written communication, particularly in customer-facing and cross-functional contexts.

🏖️ Benefits

• Healthcare insurance (Medical, Dental and Vision) for you and your family • 401k matching • Wellness and fitness monthly allowances • PTO + paid holidays + unlimited sick leave • Autonomy and flexibility with remote work • Substantial equity grants