Senior Security GRC Lead
$121k - $185kGong.io
Senior Security GRC Lead
Austin | Chicago | New York City | Salt Lake City | San Francisco
Gong harnesses the power of AI to transform how revenue teams win. The Gong Revenue AI Operating System unifies data, insights, and workflows into a single, trusted system that observes, guides, and acts alongside the world's most successful revenue teams. Powered by the Gong Revenue Graph, AI-powered intelligence, specialized agents, and trusted applications, Gong helps more than 5,000 companies around the world deeply understand their teams and customers, automate critical sales workflows, and close more deals with less effort.
At Gong, you will join a company built on innovative products, ambitious goals, and passionate people. We are shaping the future of revenue intelligence and we want people who are excited to build what comes next. You will work with a team that dreams big, moves fast, and cares deeply about the craft and about each other. Here, transparency and trust are core to how we operate, and every person has the opportunity to make a visible impact. If you want to grow, stretch, and do work that truly matters, Gong is the place to do the best work of your career.
This is a high-visibility, high-impact role at the center of Gong's security and compliance story. As our Senior GRC Security Lead, you will be the architect of foundational programs we are building — Gong's first-ever Common Controls Framework, standing up a formal risk process and register, implementing a GRC tooling ecosystem, and owning the full policy, standards, and exceptions management lifecycle.
This is not a role for someone looking to inherit a mature program. It's a role for a builder — someone who thrives in ambiguity, operates with urgency, and finds energy in creating order from complexity. You will work directly with Legal, Sales, Engineering, Customer Audit teams, and executive stakeholders, and your fingerprints will be visible across everything Gong builds for compliance and trust for years to come.
Responsibilities
- Design and implement Gong's Common Controls Framework, mapping controls across SOC 2, ISO 27001, 27017, 27701, 27018, HIPAA, PCI, and other applicable frameworks.
- Rationalize overlapping requirements across frameworks to reduce compliance burden and create a single source of truth for control ownership.
- Partner with Engineering, Infrastructure, and Product Security to embed controls at the architecture level, not just as audit checkboxes.
- Establish control testing methodology, evidence collection standards, and continuous control monitoring processes.
- Serve as the subject-matter expert on control mapping during customer and external audits, RFPs, and enterprise sales engagements.
- Build Gong's product & enterprise risk register from the ground up — defining risk taxonomy, scoring methodology, risk appetite thresholds, and ownership models.
- Implementation of a GRC platform and system of record, and ability to build executive level dashboards to track vulnerability, risk, and control remediation.
- Create and maintain risk treatment plans in partnership with risk owners across the business, tracking remediation milestones and escalating blockers.
- Develop executive-level risk reporting cadences and dashboards for the Head of GRC and senior leadership.
- Own the complete lifecycle of Gong's information security policy suite — creation, review cycles, version control, and employee acknowledgment tracking.
- Establish and operate a formal exceptions management program, including intake, risk assessment, approval workflows, compensating controls, and periodic review.
- Ensure policies remain aligned with evolving regulatory requirements, industry frameworks, and Gong's rapidly changing technology environment.
- Drive policy adoption through clear communication, training support, and cross-functional partnership.
- Liaise with external auditors and certification bodies for SOC 2, ISO, and other certifications
Qualifications
- 7+ years of progressive experience in GRC, Information Security, or a closely related function — with meaningful time spent building or scaling programs, not just running them.
- Demonstrated hands-on experience building a GRC program at scale — ideally in a high-growth SaaS or technology company.
- Deep expertise across multiple compliance and security frameworks, including SOC 2 Type II, ISO 27001, NIST CSF, and at least one regulatory framework (GDPR, CCPA, HIPAA, or equivalent).
- Experience creating and implementing GRC Record of Truth/Tooling.
- Strong policy and standards writing ability — capable of translating complex regulatory language into clear, actionable documentation.
- Experience conducting and managing product & enterprise risk assessments, with a working knowledge of risk quantification methodologies.
- Proven ability to manage and communicate with senior stakeholders, including Legal, Engineering, and executive audiences.
- Bachelor's degree in Information Security, Computer Science, Business, or a related field; equivalent practical experience considered.
- Relevant certifications strongly preferred: CISSP, CISM, CRISC, CISA, CCSP, or comparable credentials.
The annual salary hiring range for this position is $121,000 - $185,000 USD.
Compensation is based on factors unique to each candidate, including, but not limited to, job-related skills, qualification, education, experience, and location. At Gong, we have a location-based compensation structure, which means there may be a different range for candidates in other locations. The total compensation package for this position, in addition to base compensation, may include incentive compensation, bonus, equity, and benefits. Some of our sales compensation programs also offer the potential to achieve above targeted earnings for those who exceed their sales targets.
We are always looking for outstanding Gongsters! So if this sounds like something that interests you regardless of compensation, please reach out. We may have more roles for you to consider and would love to connect.
We have noticed a rise in recruiting impersonations across the industry, where scammers attempt to access candidates' personal and financial information through fake interviews and offers. All Gong recruiting email communications will always come from the @gong.io domain. Any outreach claiming to be from Gong via other sources should be ignored.
Gong is an equal-opportunity employer. We believe that diversity is integral to our success, and do not discriminate based on race, color, religion, age, sex, sexual orientation, gender identity, national origin, disability, military status, genetic information, or any other basis protected by applicable law.
$105.79k - $141.05k
...our expansive fiber network and connected ecosystem. We enable secure, high‑performance connectivity across cloud, edge, and AI workloads... ...of AI‑ready connectivity, join us today. The Role As a SR Lead Commercial Strategist, you will play a crucial role in ensuring...SeniorTemporary workLocal area- ...Intermountain Health is seeking a Principal Analyst in Salt Lake City, Utah to lead the design and support of MyChart solutions. This senior role demands deep expertise in patient engagement and operational leadership. The ideal candidate must hold Epic MyChart certification...SeniorFull timeRemote work
- ...Salt Lake City is seeking a Senior Landscape Architect to oversee the design and management of public landscapes. This role involves supervision of major landscape architectural projects, collaboration with city departments, and technical guidance for staff. The ideal...Senior
- ...A leading electrical contractor is seeking a Foreman Electrician to oversee a team of electricians in the Salt Lake City area. The successful candidate will lead and mentor a crew while ensuring work quality and compliance with electrical standards. Ideal candidates should...SeniorFor contractors
$94k - $160k
...Prime Therapeutics is looking for a Senior Program Manager to lead core programs related to interoperability and API management. This remote position requires 5 years of experience in healthcare, strong critical thinking skills, and proficiency in Microsoft Office. The...SeniorWork at officeRemote work- ...SME-Industries in West Jordan, Utah, is seeking a Senior Estimator to lead a team in preparing project pricing and managing bids. The ideal candidate will have over 3 years of estimating experience and a strong knowledge of structural steel and estimating software. Benefits...Senior
$25.17 per hour
...Vault Lead Precious Metals Brink's Global Services is a division of Brink's Inc, the world's premier provider of secure logistics and security solutions in more than 122 countries across 5 continents. Brink's Global Services specializes in the secure transportation...Hourly payFlexible hours$99.3k - $159.33k
...Windows designs, implements, and supports cloud-hosted Windows server environments that underpin mission-critical applications in secure federal cloud or hybrid infrastructures. This role builds and maintains virtual machines, images, and automation to provision Windows...Contract workWork at office$80k - $100k
...Covenant Aviation Security, LLC is looking for an experienced Site Manager to oversee airport security operations at Salt Lake City International... ...staff, maintaining compliance with security regulations, and leading incident response efforts. Ideal candidates will have a...- ..., land, sea and cyber domains in the interest of national security. Job Title: Lead, Program Management Job Code: 38394 Job Location: Salt... ...in industry and government Conduct briefings for senior leaders and customers Lead and manage through all phases...Contract workFor contractorsFor subcontractorWork at officeLocal area
$25 - $50 per hour
...Role Overview TSA is accepting applications for Lead and Supervisory Transportation Security Officers at airports in Salt Lake City. These roles are ideal for individuals looking to step into leadership positions within airport security operations. TSA provides training...Shift workNight shiftWeekend work$25 - $50 per hour
...Role Overview TSA is accepting applications for Lead and Supervisory Transportation Security Officers at airports in Sandy. These roles are ideal for individuals looking to step into leadership positions within airport security operations. TSA provides training to...Shift workNight shiftWeekend work$40 per hour
A cybersecurity firm is seeking experienced professionals to evaluate AI-generated security content and solve technical problems. This remote job allows you to work on your own schedule with competitive hourly pay starting at $40. Candidates must have 2+ years in cybersecurity...SeniorHourly payRemote work- ...air, land, sea and cyber domains in the interest of national security. Job Title: Lead, Program Management Job Code: 33973 Job Location: Salt Lake... ...strategic partners in industry and government. Influence senior leadership and stakeholders to adopt new concepts, practices...Temporary workLocal area
$130.2k - $143.9k
...A leading public sector solutions firm is seeking an experienced Product Management leader to drive product strategy and oversee a team of Product Managers. The role requires a minimum of 10 years of experience with enterprise-level products and at least 5 years in product...SeniorRemote work$161.5k - $184.3k
...A leading financial services firm is seeking a Senior Manager for Client Development Affiliate Marketing. In this remote role, you'll partner with top merchants, leveraging a suite of products to ensure client success. Key responsibilities include integrating solutions...SeniorRemote work- ...A technology services firm in Salt Lake City seeks a Senior Database Administrator to lead the design and management of enterprise database platforms... ...position requires a Bachelor's degree and an active security clearance, further emphasizing the firm's commitment to...Senior
- ...Senior AI Security Engineer Shape the Future of AI Security We are seeking a Senior AI Security Engineer to join our innovative team at Tricentis. As a Senior AI Security Engineer, you will lead the development and implementation of security frameworks for our end user...SeniorWork experience placementVisa sponsorshipWork visa
- ...Senior Infrastructure / Networking Engineer Applied Signal Technology (AST), a national asset in the SIGINT domain is seeking a Senior... ...be part of a team that strengthens our nation and improves the security of our world. AST provides trusted strategic and tactical...Senior
$60k - $65k
...Join a well-established HOA Community Association team in Salt Lake City! We’re a thriving HOA Community seeking a Senior Community Association Manager to lead the operations of a portfolio of community associations. In this dynamic role, you’ll oversee financial...SeniorFull timeTemporary workPart timeFreelanceLocal area- ..., land, sea and cyber domains in the interest of national security. Job Title: Senior Specialist, Systems Engineer Job Code: 38802 Job Location... ...communication systems. Responsibilities: Lead and support vehicle integration efforts focusing on mechanical...SeniorLocal area
- ...than 1,500 customers globally and as the leading contributor to the vibrant and fast-growing... ...critical capabilities built in such as security, compliance controls, and observability.... ...only** We are looking for a confident Senior IT Infrastructure Engineer who has demonstrated...SeniorRemote work
$70k
...federal partner supporting mission‑critical programs across national security, defense, and public service delivery. Our work focuses on... ...Citizen without dual citizenship. This role is remote. The Senior System Administrator provides senior‑level IT operations and ServiceNow...SeniorContract workRemote work$82.5k - $153k
...deliver end-to-end technology solutions connecting the space, air, land, sea and cyber domains in the interest of national security. Job Title: Senior Specialist, Program Scheduler Job Code: 39982 Job Location: Salt Lake City, UT; Melbourne, FL; Carlsbad, CA...SeniorContract workFor contractorsFor subcontractorLocal areaFlexible hours- ...deliver end‑to‑end technology solutions connecting the space, air, land, sea and cyber domains in the interest of national security. Job Title: Senior Specialist, Electronic Warfare Systems Engineer Job Code: 35694 Job Location: Salt Lake City, UT Job Schedule: 9/80 –...SeniorFor subcontractorLocal area
$161.7k - $338.5k
...critical role in sustaining OCI’s performance, security, and operational resilience by ensuring... ...worldwide. Role Overview As Senior Director, Operations, you own day-to-day... ...operational outcomes. Key Responsibilities • Lead multi-site operations organizations,...SeniorTemporary workWorldwideFlexible hours$150k - $185k
...address their most significant and complex challenges in science, security and sustainability. Our people apply undaunted curiosity,... ...in more than 70 countries across all 7 continents. Pricing Senior Manager directs the administration and strategic planning, analysis...SeniorHourly payContract workLocal areaRemote work$175k - $215k
...Senior Manager, Government Contracts Austin, TX United States Who We Are Verkada is transforming how organizations protect... ...sensitive AI-powered platform that includes solutions for video security, access control, air quality sensors, alarms, intercoms, and visitor...SeniorFull timeContract workLocal areaWork visaFlexible hoursShift work$86.4k
...Fusion Center, capable of working any kind of incident, leading investigations, and ensuring incidents are properly... ...lead projects and aid in formulation and execution of security strategy for the team. The Senior Cyber Incident Responder interfaces with other internal...SeniorFor contractorsWork at officeLocal areaRemote work- ..., air, land, sea and cyber domains in the interest of national security. Job Title: Sr. Specialist Contracts Job Code: 37454 Job... ...to inquiries regarding contract obligations and revisions Leads and organizes negotiation teams Critical part of the negotiating...SeniorFull timeContract workWork at officeLocal areaShift workWeekend work
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Senior Security GRC Lead. Be the first to apply!
- senior cloud service delivery manager Salt Lake City, UT
- senior business analyst contract Salt Lake City, UT
- senior marketing account manager Salt Lake City, UT
- senior customer service manager Salt Lake City, UT
- senior strategic account manager Salt Lake City, UT
- senior software engineer Salt Lake City, UT
- senior application security Salt Lake City, UT
- senior data manager Salt Lake City, UT
- senior database analyst Salt Lake City, UT
- senior cloud data engineer Salt Lake City, UT

