Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

GRC Manager

CloudZero

Location Boston; San Francisco Address Boston, Massachusetts Employment Type Full time Location Type Hybrid Department Office of CTO, Information Technology (IT) About the Role CloudZero is growing fast. Our customer base is expanding, the regulatory and risk landscape is getting more complex, and the business needs a GRC function that can keep pace. As the GRC Manager at CloudZero, you’ll own and scale our governance, risk, and compliance programs across the organization. Reporting to the Sr. Director of IT & Security within the Office of the CTO organization, you’ll partner closely with Legal, Engineering, Product, Sales, and G&A to build a GRC function that protects CloudZero’s interests, earns customer trust, and gives the business the confidence to move quickly. This is a high-impact, highly cross‑functional role. You’ll be as comfortable presenting a risk register to leadership as you are helping a sales team close a deal with the right compliance documentation. This is a hybrid role with an expectation of in‑office presence 2–3 days per week. What You’ll Do Design and Operate the GRC Framework Design and operate a comprehensive GRC framework spanning governance structures, enterprise risk management, and compliance programs that grows alongside CloudZero’s business Own audit and certification programs including SOC 2 and other relevant standards, coordinating across internal teams and third‑party auditors to drive successful outcomes Own the development, maintenance, and ongoing improvement of CloudZero’s security and privacy policies and procedures, ensuring they’re current, practical, and embedded into how teams actually operate Lead regular enterprise risk assessments, maintain a living risk register, and create an environment where risk‑informed decision‑making happens at every level of the organization Governance, Risk & Business Continuity Serve as a key stakeholder in building CloudZero’s AI Governance & Strategic Risk strategy Take full ownership of business continuity and disaster recovery programs, including program design, documentation, regular testing cycles, and tabletop exercises — ensuring operational preparedness when it matters most Build and manage third‑party risk management processes, including vendor due diligence, contract reviews, and ongoing monitoring throughout the vendor lifecycle Track regulatory developments alongside the Legal team, ensuring CloudZero meets its obligations under GDPR, CCPA, and other applicable requirements Manage the company’s security awareness training program and run internal audits to validate that controls are working as intended Sales and Revenue Enablement Own the security questionnaire and assessment process — including VSAs, SIGs, and custom customer requests — with a primary focus on building and scaling tooling and automation that makes high‑quality responses fast and repeatable Review and redline security and data privacy language in customer and prospect contracts, working closely with Legal to protect CloudZero’s interests while keeping deals on track Build and maintain a library of pre‑approved security responses, compliance artifacts, and contract language so the team isn’t starting from scratch on every deal Actively identify and implement tooling to automate questionnaire responses and security review workflows, reducing manual effort and accelerating deal cycles without sacrificing quality Maintain and continuously improve CloudZero’s trust center, ensuring prospective customers have ready access to up‑to‑date security and compliance documentation Partner with Sales Engineering and Solutions teams to address security and compliance requirements early in the sales cycle, removing friction before it becomes a blocker What You Bring Governance, Risk & Compliance 5+ years of experience in governance, risk, and/or compliance roles, ideally within a SaaS or cloud technology company Proven experience building or significantly maturing a GRC program, with direct, hands‑on involvement in SOC 2 or similar certification audits Working knowledge of established risk management frameworks such as COSO, ISO 31000, or NIST RMF Solid understanding of GDPR, CCPA, and how data privacy obligations translate into practical controls and policies Communication & Leadership Strong communicator who can make risk and compliance topics accessible and actionable for technical teams, business partners, and senior leadership alike Ability to drive initiatives from scoping through completion while keeping multiple workstreams moving in a fast‑paced environment A business‑enabling mindset — you treat compliance as something that creates competitive advantage, not just something that checks boxes Bonus If You Have… Prior experience at a SaaS technology startup Hands‑on technical experience with GCP, AWS, or Azure from a security and compliance lens Experience working with Vanta or Drata for continuous compliance monitoring and automation Experience with security questionnaire automation tools such as Loopio, Iris, or similar solutions Professional certifications such as CRISC, CISA, CISM, CISSP, or CIPP Familiarity with security frameworks including NIST CSF, CIS Controls, or OWASP Proven ability to partner cross‑functionally across departments to drive compliance goals and outcomes Curiosity and enthusiasm for leveraging AI tools (such as Claude, Claude Code, or similar) to work smarter, automate repetitive tasks, and continuously find new ways to drive efficiency across the GRC function About CloudZero Cloud cost management is one of the biggest challenges organizations face today. As cloud adoption continues to accelerate, so do the complexities and costs associated with it, and macroeconomic conditions only increase pressure to prove cloud efficiency. CloudZero is a SaaS platform at the intersection of next‑generation cloud cost management and FinOps. We ingest billing and usage data from all cloud, SaaS, and PaaS providers, organize it in real time according to our customers’ business structures, and empower organizations to make more informed business decisions. Since our founding in 2016, our mission has been to make efficient innovation a reality for every cloud‑driven organization. We believe every engineering decision is a buying decision, and we’re applying proven reliability engineering principles to financial efficiency. We believe the best AI empowers users with clear insights and confident decisions, transforming complex cloud cost data into actionable intelligence that drives meaningful business outcomes. To date, we’ve raised over $56 million from leading venture capital firms. We’re solving problems of massive scale, business importance, and complexity in a space that needs it more than ever. Equal Opportunity Employer CloudZero is an equal opportunity employer and values diversity. We do not discriminate on the basis of race, religion, color, national origin, sex, gender, gender expression, sexual orientation, age, marital status, veteran status or disability status. All job offers are contingent upon the candidate passing background and reference checks. Please note : CloudZero is unable to sponsor employment visas. Candidates must have permanent authorization to work in the United States without the need for current or future sponsorship. #J-18808-Ljbffr CloudZero

Vacancy posted 2 days ago
Similar jobs that could be interesting for youBased on the GRC Manager in San Francisco, CA vacancy
  • GRC Program Manager, Product and Customer Trust medical insurance, dental insurance, vision insurance, parental leave, paid time off, paid holidays, 401(k), retirement plan About the Team Governance, Risk, and Compliance (GRC) is foundational to Security delivering mission... 
    Suggested

    OpenAI

    San Francisco, CA
    3 days ago
  • OpenAI is looking for a GRC Program Manager to enhance customer trust through regulatory readiness and cross-functional collaboration. The candidate will partner with teams to ensure compliance while managing product launches efficiently. This position requires strong product... 
    Suggested

    OpenAI

    San Francisco, CA
    2 days ago
  • Ivalua, a global cloud-based procurement solutions provider, seeks a Sr Manager of InfoSec GRC to lead a worldwide team and own the GRC program. You will drive compliance initiatives, respond to audits, and serve as SME on security frameworks. Reporting to InfoSec leadership... 
    Suggested
    Worldwide

    Ivalua

    San Francisco, CA
    18 hours ago
  •  ...CTO of Facebook. Bret was also one of Google's earliest product managers and co-creator of Google Maps. Before founding Sierra, Clay spent...  ...dependencies, and deliver resilient systems. Security & GRC: Security engineering, risk, compliance, and privacy partners to... 
    Suggested
    Full time
    Flexible hours

    Sierra

    San Francisco, CA
    17 days ago
  • Decagon is looking for a Compliance Manager in San Francisco to enhance customer trust as we expand our services. You'll drive compliance...  ...for enterprise clients. The ideal candidate has 3-5 years of GRC experience, a track record with compliance programs, and strong... 
    Suggested

    Decagon

    San Francisco, CA
    2 days ago
  •  ...About the team The Technology Governance, Risk, and Compliance (GRC) team is dedicated to delivering excellence across Stripe's compliance...  ...technology certifications. We are a team of specialist program managers to lead external audits of Stripe's technology environment,... 

    Stripe

    San Francisco, CA
    4 days ago
  • Role, Inc. is seeking an experienced Governance, Risk & Compliance (GRC) Manager to develop and manage governance, risk, and compliance initiatives. The position is based in San Francisco or the upcoming New York office, reporting to the General Counsel. Candidates should... 
    Work at office

    Role, Inc.

    San Francisco, CA
    2 days ago
  • $181k - $262k

     ...Staff Technical Program Manager, Vehicle Security At the core of everything we do is our commitment to safety. Key Responsibilities Lead...  ...Security, Cloud Security, Security Engineering, Security Operations, GRC, and Enterprise IT. Own program governance for vehicle security... 

    NextGenEnergyJobs

    San Francisco, CA
    2 days ago
  •  ...CTO of Facebook. Bret was also one of Google's earliest product managers and co-creator of Google Maps. Before founding Sierra, Clay spent...  ...Enablement professional to join the Security Foundations and GRC team. This is a role for someone with 10+ years experience and has... 
    Full time
    Contract work
    Flexible hours

    Sierra

    San Francisco, CA
    1 day ago
  • $194k - $220k

     ...build and maintain trust at scale. As a Security Technical Program Manager, you'll be the connective tissue across the entire Security...  ...with meaningful time in a security context (security engineering, GRC, product security, infra security, or similar) Strong... 
    Work at office
    Local area
    Work from home
    Worldwide

    Asana

    San Francisco, CA
    2 days ago
  • CloudZero is looking for a GRC Manager to define and scale governance, risk, and compliance programs. This hybrid role involves collaborating with various departments to ensure effective risk management and compliance adherence. The ideal candidate will have over 5 years... 

    CloudZero

    San Francisco, CA
    2 days ago
  • A technology firm specializing in GRC is seeking a Head of Demand Generation to build the lead-generation engine. This strategic role involves creating campaigns to engage top GRC and security leaders. The ideal candidate will have over 5 years of experience in B2B SaaS... 
    Flexible hours

    Zania

    San Francisco, CA
    2 days ago
  • $185k - $296k

     ...Security team is growing, and we're looking for a Security Operations Manager to lead the strategy and execution of our security operations...  ...closely with Security Engineering, Platform Security, IT, GRC, and Legal to strengthen our detection and response capabilities... 
    Full time
    Remote work
    Work from home

    Figma

    San Francisco, CA
    4 days ago
  •  ...to Internal Audit and SOX leaders (VPs, CAEs, Heads of SOX, SOX Managers) with sharp discovery, demos, and business cases tied to time savings...  ...without SDRs or inbound Fluent in SOX, internal audit, GRC, controls, risk, or compliance Comfortable selling to conservative... 
    Relocation package

    Bead AI

    San Francisco, CA
    1 day ago
  •  ...successfully sold a SaaS application into the CISO / InfoSec and/or Cyber GRC business line(s.) for an early stage startup company. While this...  ...and benefits of migration to a new automated paradigm. Manage full-lifecycle sales processes, from prospect to close.... 
    Full time
    Remote work

    Cypago

    San Francisco, CA
    2 days ago
  • $150k - $200k

     ...building modern identity governance for the AI era—intelligent access management that empowers enterprises to move fast while staying secure....  ...security, infrastructure, and platform engineering, as well as GRC leaders at tech companies reaching scale. Our go‑to‑market is a... 
    Work at office

    Opal Security

    San Francisco, CA
    16 hours ago
  • $405k

    Anthropic is looking for an Engineering Manager, GRC in San Francisco, to lead the development of automated workflows and data pipelines for risk and compliance systems. This role offers an exciting opportunity to shape the team and architecture around governance and compliance... 

    Anthropic

    San Francisco, CA
    2 days ago
  • $140k - $200k

     ...preconstruction, engineering and field installation of all Mechanical, Electrical, Plumbing (MEP) systems. Reports to: Project Manager, Project Executive, Construction Executive Essential Duties & Responsibilities: Specifically relating to the mechanical and electrical... 
    Permanent employment
    Full time
    Contract work
    Temporary work
    For subcontractor
    Work at office

    Turner Corporation

    San Francisco, CA
    15 hours ago
  • $55k - $80k

     ...A national tour company is hiring a Business Development Manager in San Francisco. This role focuses on increasing sales, managing accounts, and requires 50% travel. Candidates should have 2 years of experience in the travel industry and excellent communication skills.... 

    Mayflower Cruises & Tours

    San Francisco, CA
    4 days ago
  •  ...leadership Oversee the planning of each trip, with input from multiple stakeholders, creating and making ongoing updates to itineraries, managing detailed budgets, timelines, and staff and volunteers Conduct extensive research into destinations in advance of trip, vetting... 
    Work experience placement
    Work at office
    Local area
    Flexible hours

    Jobtailor

    San Francisco, CA
    3 days ago
  •  ...build and scale the capabilities that power our security risk management function: an AI-assisted exception and risk-acceptance management...  ...timelines Familiarity with governance, risk, and compliance (GRC) tooling, KRI frameworks, or exception and risk-acceptance management... 
    Permanent employment
    Temporary work
    Casual work
    Live in
    Work at office
    Flexible hours
    Shift work

    CoreWeave

    San Francisco, CA
    2 days ago
  • $121k - $185k

     ...center of Gong’s security and compliance story. As our Senior GRC Security Lead, you will be the architect of foundational programs...  ..., and owning the full policy, standards, and exceptions management lifecycle. It’s a role for a builder — someone who thrives in ambiguity... 
    Remote work
    Work from home
    Flexible hours

    Gong.io

    San Francisco, CA
    16 hours ago
  •  ...to meet the needs of more companies, teams, and innovators in this way.  The Role:  We are seeking a Senior Technical Product Manager to own and evolve core platform and API capabilities that underpin our products and partner integrations. This role sits at the... 
    Work at office
    Local area
    Remote work

    GrabJobs

    San Francisco, CA
    1 day ago
  • $290k - $365k

     ...Technical Program Manager, Marketing Technology About Anthropic Anthropic’s mission is to create reliable, interpretable, and steerable AI systems. We want AI to be safe and beneficial for our users and for society as a whole. Our team is a quickly growing group of committed... 
    Visa sponsorship

    anthropic

    San Francisco, CA
    4 days ago
  • $79k - $95.61k

     ...every one is appreciated for their whole self. Schedule : Full Time, 35 hours/week, at least three days working onsite The Travel Manager works as a key member of the Annual Giving team, within the Philanthropy Department, to plan and implement all aspects of SFMOMA’s... 
    Full time
    Work experience placement
    Work at office
    Local area
    Flexible hours
    Weekend work
    Afternoon shift

    SFMOMA

    San Francisco, CA
    4 days ago
  •  ...pharmaceutical companies, biotech startups, and enterprise sourcing organizations. Job Role: The International Business Development Manager is a senior‑level commercial hunting role responsible for expanding the company’s CDMO and pharmaceutical outsourcing business... 
    Long term contract
    Contract work
    Remote work
    Worldwide

    MatchaTalent

    San Francisco, CA
    4 days ago
  •  ...approach to enterprise security, starting with Third-Party Risk Management, a domain that is mission critical, deeply human, and...  ...Preferred Skills and Experience Experience in cybersecurity, TPRM/GRC, risk management, or adjacent enterprise security categories Familiarity... 
    Immediate start

    Archer Faris

    San Francisco, CA
    16 hours ago
  •  ...science and business skills in the above-mentioned fields. Actively reach out to prospective customers, explore business opportunities, manage negotiations and secure contracts. Attend trade shows/relevant conferences. Support the Marketing Team in branding and building... 
    Temporary work

    BIOCYTOGEN, LLC

    San Francisco, CA
    1 day ago
  • $150k - $210k

     ...Excited to help us redefine how AI is built? Apply to be the newest Snorkeler! About The Role Snorkel AI is hiring a Technical Delivery Manager (TDM) to lead data development projects from start to finish. You will coordinate cross‑functional teams, manage risks, and keep... 
    Local area

    SupportFinity

    San Francisco, CA
    1 day ago
  • $180k - $220k

     ...Primer has offices in San Francisco, Pasadena, CA and Arlington, VA. For more information, please visit As a Senior Technical Delivery Manager (TDM), you’ll guide client engagements from ideation to deployment for some of the world’s largest enterprises. You’ll be... 
    Contract work
    Remote work
    Flexible hours

    3M HEALTHCARE

    San Francisco, CA
    4 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to GRC Manager. Be the first to apply!