Open app
Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Principal, GRC Automation and Cyber Risk

F5 Networks, Inc.

Seattle, WA

  • # Principal, GRC Automation and Cyber RiskApplyremote type: Hybridlocations: Seattle: San Josetime type: Full timeposted on: Posted Yesterdayjob requisition id: RP1037823At F5, we strive to bring a better digital world to life. Our teams empower organizations across the globe to create, secure, and run applications that enhance how we experience our evolving digital world. We are passionate about cybersecurity, from protecting consumers from fraud to enabling companies to focus on innovation. Everything we do centers around people. That means we obsess over how to make the lives of our customers, and their customers, better. And it means we prioritize a diverse F5 community where each individual can thrive.The Principal, GRC Automation & Cyber Risk Quantification is a senior **engineering and strategic leadership** role responsible for designing, implementing, and scaling automated, data-driven cyber risk and GRC capabilities across the enterprise. This role blends deep cyber risk management expertise with **hands-on software engineering**, GRC platform architecture, workflow automation, **API development and systems integration**, and emerging AI-enabled and **Agentic c**apabilities to modernize how the organization manages risk, compliance, and governance at scale.Reporting to the VP, Cyber Governance, Risk & Compliance, this role serves as a force multiplier for the GRC organization, translating complex regulatory and risk frameworks into automated controls, continuous monitoring workflows, decision-ready dashboards, and audit-ready evidence. The principal is expected to **write, review, and own production-quality code** and partner closely with ERM, Engineering, IT, Legal, Privacy, Internal Audit, and Digital teams to embed risk intelligence directly into business and technology processes.## **Key Objectives*** Shift GRC from manual, point-in-time assessments to continuous, automated, and risk-informed execution by **leveraging purpose-built engineering solutions, Python-based tooling, and Agentic workflows.*** Enable executive and board-ready cyber risk insights grounded in quantitative and business-relevant data, **supported by automated data pipelines and integrations.*** Standardize and automate control mapping, testing, evidence collection, and risk reporting across frameworks and regulators **through scalable API-driven architectures.*** Act as the technical and architectural authority for ServiceNow IRM and adjacent GRC automation capabilities, **including custom-developed integrations and Agentic automation agents.**## **Primary Responsibilities**### **1. GRC Automation & Platform Architecture*** Design, build, and evolve end-to-end GRC automation across risk, compliance, policy, and issue management domains — **including writing and maintaining Python-based automation scripts, services, and tools.*** Integrate GRC workflows with source systems (cloud platforms, vulnerability tools, IAM, SDLC, third-party systems) **via RESTful APIs, webhooks, and event-driven integration patterns** to reduce manual effort and improve data quality.* **Architect and maintain a systems integration layer** connecting GRC platforms to enterprise data sources, enabling real-time risk signal ingestion and automated control validation.### **2. Cyber Risk Quantification & Decision Enablement*** Partner with Cyber Risk leadership to operationalize quantitative and scenario-based risk analysis (e.g., FAIR-aligned methods).* **Engineer automated pipelines** for ingesting threat, vulnerability, asset, and business context data to support risk-based prioritization, **leveraging Python data processing libraries (e.g., pandas, NumPy) integration APIs, and Agentic work flows.*** Enable financially grounded cyber risk outputs that inform: + Risk acceptance and investment decisions + Executive and board-level reporting + Program prioritization and roadmap planning### **3. Compliance Automation & Continuous Monitoring*** Translate regulatory and framework requirements into automated, testable, and traceable controls, **implementing these as code-driven workflows and API-integrated monitoring checks.*** Implement continuous control monitoring and evidence refresh to support ISO, SOX, SOC, and regulatory audits, **using automated evidence collection scripts and scheduled integrations.*** Reduce audit fatigue by standardizing artifacts, workflows, and control narratives across compliance programs.* Partner with Internal Audit and external auditors to improve transparency, timeliness, and defensibility of GRC outputs.### **4. AI-Enabled GRC & Agentic Development*** **Design, build, and deploy Agentic automation solutions** — autonomous AI-driven agents capable of reasoning across GRC data, identifying risks, triggering workflows, and recommending actions with minimal human intervention.* Identify and pilot AI-assisted capabilities to accelerate GRC outcomes, such as: + Control mapping and gap analysis + Risk scenario generation and prioritization + Policy-to-control alignment and impact analysis + **Agentic issue triage, intelligent remediation recommendations, and autonomous evidence collection*** **Develop and integrate LLM-based or agent-framework tooling** (e.g., LangChain, AutoGen, or comparable frameworks) into GRC workflows.* Ensure all AI-enabled and Agentic GRC use cases align with internal security, privacy, and governance standards.### **5. API and Systems Integration*** **Design, develop, and maintain RESTful and GraphQL APIs** that expose GRC data and capabilities to downstream consumers including dashboards, reporting tools, and integrated enterprise systems.* **Own the end-to-end systems integration architecture** connecting GRC platforms to security tools, cloud environments, HR systems, asset management, and third-party risk platforms.* Establish and enforce **API governance standards**, including versioning, authentication, documentation (OpenAPI/Swagger), and rate management.* **Build and maintain integration middleware, ETL pipelines, and event-driven connectors** to ensure consistent, reliable data flows across GRC systems.### **6. Stakeholder Partnership & Influence*** Serve as a trusted advisor to security, IT, engineering, and business leaders on risk-based automation, control design, **and engineering best practices for GRC tooling.*** Influence teams to embed GRC requirements directly into SDLC, cloud, procurement, and third-party workflows.* Translate technical implementations — **including architecture diagrams, API designs, and automation logic** — into clear, executive-ready narratives for leadership consumption.## **Knowledge, Skills & Abilities**### **Knowledge*** Deep understanding of cyber risk management and GRC frameworks (NIST CSF, NIST 800-53/171, ISO 27001, SOC 2, SOX).* Strong grasp of enterprise risk management (ERM) concepts and alignment.* Working knowledge of quantitative cyber risk analysis (FAIR or similar approaches).* Familiarity with audit, regulatory, and certification processes.* **Understanding of software engineering principles, API design patterns, and systems integration methodologies.*** **Knowledge of Agentic AI frameworks and multi-agent system design principles.**### **Skills*** Expertise designing and automating workflows within ServiceNow IRM or comparable GRC platforms.* **Proficient Python developer** — able to write clean, maintainable, production-ready code for automation scripts, data pipelines, API clients, and Agentic workflows.* **Experienced in API development and integration** — designing and consuming REST APIs, managing authentication (OAuth, API keys), and building integration layers.* **Demonstrated systems integration experience** — connecting heterogeneous enterprise systems through APIs, webhooks, message queues, or ETL frameworks.* **Hands-on experience with Agentic development** — building autonomous AI agents using frameworks.* Ability to translate abstract frameworks into practical, automated, and scalable implementations.* Strong systems thinking, connecting people, process, technology, and data.* Excellent written and verbal communication skills, including executive-level storytelling.### **Abilities*** Operate comfortably at both strategic and hands-on engineering levels.* Influence without authority in a highly matrixed environment.* Drive change from legacy/manual processes to modern, code-driven automated execution.* **Independently scope, build, and ship engineering solutions with minimal oversight.**## **Qualifications**### **Required*** Bachelor's degree in Cybersecurity, Information Systems, **Computer Science,** Engineering, Risk Management, or related field.* 10+ years of experience across cybersecurity, risk management, GRC, or security architecture roles — **with at least 3–5 years in a hands-on engineering or software development capacity.*** **Demonstrated Python programming proficiency** applied to automation, data processing, tooling, or security use cases.* **Proven API development and integration experience**, including designing, building, and consuming APIs in enterprise environments.* **Demonstrated systems integration experience**, connecting GRC, security, cloud, or enterprise systems at scale.* Demonstrated experience automating or scaling GRC, risk, or compliance programs using enterprise platforms.* Strong experience partnering with cross-functional technical and business teams.### **Preferred*** Master's degree in a related field.* Experience with FAIR or quantitative risk methods.* **Hands-on experience with Agentic AI development** — building and deploying autonomous agents for task automation, decision support, or workflow orchestration.* **Familiarity with LLM orchestration frameworks** (LangChain, LangGraph, AutoGen, CrewAI, or similar).* Experience with Python data and automation libraries (pandas, NumPy, FastAPI, Celery, Airflow, etc.).* **Experience with API gateway tooling, integration platforms (e.g., MuleSoft, Boomi, Workato), or message broker systems (Kafka, RabbitMQ).*** Hands-on experience with AI, data analytics, or workflow automation applied to GRC use cases.* Professional certifications (CISSP, CISM, CRISC, Open FAIR).## **Why This Role Matters**This role is foundational to advancing the organization's GRC maturity by reducing friction, increasing signal, and enabling leadership to make faster, better-informed risk decisions. It is a highly visible **engineering leadership** position with direct impact on executive confidence, audit outcomes, and enterprise risk posture. The ideal candidate is equally comfortable **writing Python code and building Agentic workflows** as they are presenting risk insights to a board of directors — a rare blend of engineering depth and strategic influence that will define the next generation of GRC capability.The Job Description is intended to be a general representation of the responsibilities and requirements of the job. However, the description may not be all-inclusive, and responsibilities and requirements are subject to change.The annual base pay for this position is: $167,200.00 - $250,800.00*F5 maintains broad salary ranges for its roles in order to account for variations in knowledge, skills, experience, geographic locations, and market conditions, as well as to reflect F5’s differing products, industries, and lines of business. The pay range referenced is as of the time of the job posting and is subject to change.**You may also be offered incentive compensation, bonus, restricted stock units, and benefits. More details about F5’s benefits can be found at the following link:** F5 reserves the right to change or terminate any benefit plan without notice.*
  • J-18808-Ljbffr F5 Networks, Inc.

Apply
Vacancy posted 5 days ago
Similar jobs that could be interesting for youBased on the Principal, GRC Automation and Cyber Risk in Seattle, WA vacancy
  • Principal GRC Automation & Cyber Risk Engineering
    F5 Networks, Inc. is seeking a Principal in GRC Automation and Cyber Risk Quantification in Seattle. This senior role combines engineering and strategic leadership, focusing on designing, implementing, and scaling automated cyber risk capabilities. The candidate will work... 
    Cyber
    Principal
    Risk

    F5 Networks, Inc.

    Seattle, WA
    5 days ago
  • Principal, GRC Automation and Cyber Risk
    ## Principal, GRC Automation and Cyber RiskApplyremote type: Hybridlocations: Seattle: San Josetime type: Full timeposted on: Posted Yesterdayjob requisition...  ...can thrive.The Principal, GRC Automation & Cyber Risk Quantification is a senior **engineering and strategic leadership... 
    Cyber
    Principal
    Risk
    Shift work

    F5 Networks

    Seattle, WA
    1 hour ago
  • Senior Analyst, Cyber Risk Quantification and GRC

    $119k - $193k

     ...research and deliver strategic advice for risk management leaders and their teams. The ideal...  ...methods; deep knowledge and expertise in cyber risk quantification; and deep experience...  ...management, internal or external audit, and GRC platforms is strongly desired. The... 
    Cyber
    Risk
    For contractors

    Forrester

    Seattle, WA
    1 day ago
  • GRC Automation Lead: Scale Compliance with AI Workflows

    $405k

     ...Anthropic is seeking a GRC Automation Lead in Seattle to design systems that transform compliance processes into scalable engineering solutions...  ...pipelines, ensuring a data-driven approach to governance, risk, and compliance. Candidates should have over 12 years' experience... 
    Risk

    Menlo Ventures

    Seattle, WA
    4 days ago
  • Senior Cybersecurity GRC Analyst

    $145.19k - $203.26k

    Senior Cybersecurity GRC Analyst page is loaded## Senior Cybersecurity...  ...and accomplished team of Cyber Security experts, you will...  ...but are not limited to:*** Use automation for various GRC tasks including...  ...actions.* Generate reports on risk assessments, compliance status... 
    Cyber
    Risk
    Permanent employment
    Temporary work
    Local area
    Immediate start

    Blue Origin LLC

    Seattle, WA
    2 days ago
  • Senior Compliance Automation Engineer

    $135k - $195k

     ...Your Mission We are seeking a Senior Compliance Automation Engineer to join our Governance, Risk, and Compliance (GRC) team and design and build True Anomaly's compliance...  ...from scan outputs. Exposure to EAR/ITAR cyber regulations and their implications for system design... 
    Cyber
    Risk
    Permanent employment
    Work experience placement
    Work at office
    3 days per week

    jobr.pro

    Seattle, WA
    4 days ago
  • Risk Consulting - Risk Technology - GRC/IRM Platforms - Manager

    $142.6k - $261.5k

     ...help to build a better working world. Risk Consulting – Risk Technology – GRC/IRM Platforms – Manager The risk...  ...economic changes, regulatory reforms, and cyber threats. Organizations are...  ...technology to simplify governance, automate compliance, and deliver forward‑looking... 
    Cyber
    Risk
    Work experience placement
    Summer holiday
    Work at office
    Flexible hours

    Ernst & Young Oman

    Seattle, WA
    4 days ago
  • Senior Principal TPM

    $109.2k - $223.4k

     ...Senior Principal Technical Program Manager Datacenter Software & Automation (DCSA) is part of Oracle Cloud Infrastructure (OCI) and builds the software and automation...  ...clear, consistent visibility into execution, risks, and progress. Synthesize insights, tradeoffs... 
    Principal
    Risk
    Temporary work
    Flexible hours

    Oracle

    Seattle, WA
    4 days ago
  • Cyber Risk Defense Principal Advisor
     ...Effectively communicates investigative findings to non-technical audiences. Provides consultation in regular operations meeting with Cyber Risk Defense Center (CRDC) teams. Drives closed loop processes on security efforts by providing feedback to the TDA leads and/or... 
    Cyber
    Principal
    Risk
    Work experience placement

    Kaiser Permanente

    Renton, WA
    1 day ago
  • Principal Infrastructure Technical Program Manager, Industrial Robotics Group

    $176.9k - $239.4k

     ...Principal Technical Infrastructure Program Manager We're seeking exceptional talent to...  ...advanced robotics systems that will transform automation at Amazon's scale. We're building...  ...reporting tools for visibility on progress, risks, changes, and mitigation strategies... 
    Principal
    Risk
    Flexible hours

    Amazon Technologies, Inc.

    Seattle, WA
    3 days ago
  • Principal Forward Deployed Engineering Manager
     ...Principal Forward Deployed Engineer Manager As a Principal Forward Deployed Engineer Manager...  ...with deep technical fluency in AI and automation, strategic customer engagement, and...  ...upward and lateral leadership, surfacing risks early and stepping in to resolve execution... 
    Principal
    Risk

    UiPath

    Bellevue, WA
    a month ago
  • Principal AI Researcher (Agentic Systems & AI Infrastructure)

    $250k - $300k

    Principal AI Researcher (Agentic Systems & AI Infrastructure) Seattle, WA or McLean, VA or Remote...  ...distinct practice areas: healthcare, cyber, and national security. United by a...  ...AI without the associated complexity and risks. We are an end-to-end solution for deploying... 
    Cyber
    Principal
    Risk
    Remote work
    Shift work

    Red Cell Partners

    Seattle, WA
    2 days ago
  • Cloud - Principal Technical Product Manager - (Seattle, WA)

    $115k - $250k

     ...low latency infrastructure solutions, proactively guard against cyber threats, and leverage machine learning alongside financial engineering...  ...problem-solvers, building solutions in Artificial Intelligence, risk management, big data, mobile and more. As part of Core... 
    Cyber
    Principal
    Risk

    Goldman Sachs

    Seattle, WA
    2 days ago
  • Principal Engineer Software (Prisma AIRS Backend)

    $147k - $237.5k

     ...Principal Software Engineer At Palo Alto Networks®, we're united by a shared mission—to...  ...challenge, and empowered by the unknown risks facing our everyday lives that are only enabled...  ..., urgency, and drive Familiarity with Cyber Technologies, Information Security, and... 
    Cyber
    Principal
    Risk
    Full time
    Work at office
    3 days per week

    Palo Alto Networks

    Seattle, WA
    8 hours ago
  • Staff Software Engineer, Applied AI

    $230k - $280k

     ...security, HackerOne delivers measurable, continuous reduction of cyber risk for enterprises. Industry leaders, including Anthropic, Crypto...  ...approach to improve vulnerability detection and security automation. Partner across Product, Security Research, and Engineering... 
    Cyber
    Risk
    Apprenticeship
    Work at office
    Local area
    Remote work
    Flexible hours
    Shift work
    1 day per week

    HackerOne

    Seattle, WA
    1 day ago
  • Principal Backend Software Development Engineer, Agentforce for Supply Chain

    $13 per hour

     ...reimagining the supply chain with an AI-powered platform for designing, automating, and running end-to-end business processes, with seamless...  ...within the platform. Identify and mitigate architectural risks associated with scaling our data infrastructure to support exponential... 
    Principal
    Risk

    B Capital

    Seattle, WA
    3 days ago
  • Customer Success Manager, Commercial

    $100k

     ...security, HackerOne delivers measurable, continuous reduction of cyber risk for enterprises. Industry leaders, including Anthropic, Crypto...  ...performance. Build scalable workflows and leverage automation tools to improve efficiency and consistency in customer interactions... 
    Cyber
    Risk
    Apprenticeship
    Local area
    Remote work
    Flexible hours
    Shift work

    HackerOne

    Seattle, WA
    8 hours ago
  • Principal Product Security Engineer

    $100k - $172.5k

     ...are searching for the best talent for a Principal Product Security Engineer to be located...  ...you are eager to leverage your security risk and compliance skills to make a difference...  ...product security processes. Act as a SME on cyber security matters and provide guidance to... 
    Cyber
    Principal
    Risk
    Full time
    Temporary work
    Work at office
    Local area
    Immediate start
    Remote work
    3 days per week

    Johnson & Johnson

    Bellevue, WA
    2 days ago
  • Executive Director, InfoSec GRC Strategic Risk & Governance
     ...Company is looking for a seasoned leader for their InfoSec Governance, Risk & Compliance team in Seattle. This role requires over 12 years of...  ...leadership and strategic insight are essential to transform GRC at one of the world’s leading entertainment companies. #J-18808-... 
    Risk

    Disney Cruise Line

    Seattle, WA
    3 days ago
  • Senior Cybersecurity GRC Lead for Aerospace & Space Tech

    $145.19k - $203.26k

    Blue Origin LLC in Seattle seeks a Senior Cybersecurity GRC Analyst to protect and secure infrastructure supporting spaceflight systems. Responsibilities include automating GRC tasks, conducting risk assessments, and ensuring compliance with cybersecurity standards. Candidates... 
    Risk

    Blue Origin LLC

    Seattle, WA
    5 days ago
  • AVP, GRC Risk & Systems Analyst
    Synchrony is seeking a highly motivated Senior Business Analyst in Seattle to join the GRC Risk Management Systems team. This role is crucial for achieving organizational risk management goals through data-driven decision-making. The ideal candidate has a strong background... 
    Risk
    Work at office
    Work from home

    Synchrony

    Seattle, WA
    2 days ago
  • Cybersecurity Analyst

    $90k - $100k

     ...Cybersecurity Analyst to advance our Human Cyber Risk Management program while supporting...  ...exposure to both security awareness and GRC functions ~ Demonstrated experience running...  ...principles Familiarity with automation and scripting to support security and risk... 
    Cyber
    Risk
    Visa sponsorship

    Russell Investments

    Seattle, WA
    3 days ago
  • Senior ATO Subject Matter Expert

    $140k - $165k

     ...of Prisons (BOP) Contract: IT Cyber Security Support Services (IT...  ...full compliance with FISMA, NIST Risk Management Framework (RMF),...  ...scanning, configuration audits, and automated compliance checks Serve as...  ..., Qualys, or equivalent) GRC platforms (CSAM, Xacta, eMASS,... 
    Cyber
    Risk
    Contract work
    Work at office
    Remote work
    Monday to Friday

    Innosoft Corporation

    Seattle, WA
    3 days ago
  • GRC Program Manager: Risk & Compliance Strategy (Hybrid)

    $77 - $84 per hour

    A leading consulting firm is seeking a Program Manager - GRC (Governance, Risk & Compliance) for a 4-month contract in Bellevue, WA. This hybrid role involves overseeing compliance standards, conducting audits, and collaborating with departments to mitigate risks. The ideal... 
    Risk
    Contract work

    eTeam

    Bellevue, WA
    1 day ago
  • Security Compliance Assistant Director

    $128.1k - $239.6k

     ...Within Information Security we blend risk strategy, digital identity, cyber defense, application security and...  .... Governance, Risk, and Compliance (GRC) Management: Assist with managing the...  ...improvement, project management, and automation and innovation in security practices... 
    Cyber
    Risk
    Work experience placement
    Summer holiday
    Local area
    Flexible hours

    Ernst & Young Oman

    Seattle, WA
    4 days ago
  • Cyber Risk Manager

    $62.59 - $93.9 per hour

     ...energy efficiency and environmental stewardship. The Cyber Risk Manager is responsible for leading the cyber risk...  ...workflows, dashboards, and reports within Archer GRC to meet business and regulatory needs. Drive automation and efficiency through effective use of Archer... 
    Cyber
    Risk
    Hourly pay

    Accreditation Council For Graduate Medical Education

    Seattle, WA
    4 days ago
  • Senior Manager - Cyber Resiliency

    $106.61k - $284.28k

     ...executes on strategic direction related to Cyber Resiliency for CVS Health's Digital, Data,...  ...& Technology (DDAT) Cybersecurity GRC team, guiding colleagues in facilitating cyber...  ...industry best practices. Defines or develops risk management policies and procedures to support... 
    Cyber
    Risk
    Hourly pay
    Full time
    Temporary work
    Local area

    Hispanic Alliance for Career Enhancement

    Seattle, WA
    2 hours ago
  • Senior GRC Engineer - Automate Security & Compliance

    $153.6k - $192k

    Brex is seeking a Senior GRC Engineer in Seattle to drive critical Governance, Risk, and Compliance processes. This role involves automating security controls and building integrations to maintain compliance as Brex expands. Candidates should have over 5 years of experience... 
    Risk

    Brex

    Seattle, WA
    4 days ago
  • Program Manager - GRC (Governance, Risk & Compliance)
    Program Manager - GRC (Governance, Risk & Compliance) Location: Bellevue, WA, 98006 Duration: 04 months contract Pay Range: $77.00/hr - $84.00/hr on W2 all-inclusive without benefits Hybrid Role: 2 days remote, 3 days in office Seniority level: Not Applicable Employment... 
    Risk
    Contract work
    Work experience placement
    Work at office
    Remote work

    eTeam

    Bellevue, WA
    2 days ago
  • Marketing Operations Manager
    Rockstar is recruiting for a purpose-built cyber GRC platform designed to enable CISOs to...  ...legacy GRC tools by bridging security, risk, and compliance through controls lifecycle...  ...builder role for someone who is AI-native, automates everything that can be automated, and is... 
    Cyber
    Risk

    Rockstar

    Seattle, WA
    1 day ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Principal, GRC Automation and Cyber Risk. Be the first to apply!

Related searches