Senior GRC Analyst scaling security and compliance programs with focus on third-party risk, SaaS governance, and AI tool evaluation. Requires 4+ years experience and SOC 2 audit support.
125k – 160k
On-site4+ YOESecurity Engineering
About the role
What you’ll do
Own and evolve Radar’s third-party risk program, including vendor security and compliance reviews across SaaS platforms, APIs, and AI tools
Help define how Radar evaluates and adopts AI tools safely, including emerging agent-based systems and workflows
Partner across Engineering, Product, IT, Legal, Sales, and Security to evaluate vendors, support SOC 2/SOC 1 audits, and drive remediation
Improve GRC workflows through automation and tooling (e.g., Vanta), and build practical frameworks for evaluating modern AI and emerging technologies
Increase visibility into organizational risk through better reporting, processes, and documentation while supporting broader security and compliance initiatives
Who you are
4+ years in GRC, third-party risk, compliance, audit, security, or consulting
Hands-on experience supporting SOC 2 and broader compliance programs
Experience evaluating vendors, SaaS platforms, APIs, and/or AI tools
Pragmatic approach to risk, not just frameworks and checklists
Curious about emerging tech and evolving security risks, especially AI-driven workflows
Bonus points
Understand cloud infrastructure (especially AWS) and system architecture
Experience automating compliance or GRC workflows
Worked with a common controls framework
Familiarity with frameworks such as ISO 27001, ISO 42001, or HIPAA
Supported customer-facing security or trust processes
What we offer
Competitive salary
Meaningful stock options in a fast-growing company
401(k) plan with 4% match
New HQ in Flatiron, NYC
Top-notch equipment
Catered lunches
Unlimited PTO
Health, dental, and vision insurance with 100% coverage for employees
Senior Security Automation Engineer building centralized security telemetry, universal identity provisioning, and agentic risk engines to enable continuous compliance, self-healing controls, and real-time risk visibility at ClickHouse. Requires strong IAM/IGA and automation experience with Python, JS/TS, or Go.
125k – 205k
Remote5+ YOESecurity Engineering
Senior vCISO / GRC Consulting Manager
AgencyRichmond, VA
Lead client-facing vCISO and GRC consulting engagements for SOC 2, ISO 27001, NIST, and CMMC compliance. Manage a team of consultants while advising executives on security program design, risk prioritization, audit readiness, and control implementation.
125k – 125k
On-site6+ YOESecurity Engineering
Corporate Security Lead
Northwood SpaceLos Angeles, CA +1
Builds and leads corporate IT security operations including helpdesk, endpoint management, SIEM deployment, and team hiring for a space communications company. Requires 5+ years in IT/security/DevSecOps, hands-on tools like Okta and AWS, and compliance knowledge.
125k – 206k
On-site5+ YOESecurity Engineering
Senior Software Engineer, Server Security
MongoDBNew York, NY
Senior Software Engineer builds and tests security features like cryptography, identity/access, and network security in MongoDB's C++ codebase. Requires 5+ years in distributed systems and proficiency in compiled languages like C++ or Rust.
Build automation, tooling, and secure software systems as part of Pinterest's Corporate Security team. Integrate security into development lifecycles, improve threat detection/remediation, and leverage AI while maintaining critical verification and ownership.