GRC Automation & Assurance Lead
$214k - $255kROKT
GRC Automation & Assurance Lead Target total compensation ranges from $214,000 - $255,000, including a fixed annual salary of $174,000–$215,000, an employee equity plan grant, and world‑class benefits. Equity grants are issued in good faith and are subject to company policies, board approval, and individual eligibility. About The Role We are looking for a GRC professional who is equal parts auditor and builder. Rokt's information security management system is ISO 27001 and SOC 2 certified, and protects personal customer data entrusted to us by leading global e‑commerce brands with a combined 100 million transactions each month. As we scale, we are reimagining GRC as an AI‑first function — one where agents and automation do the heavy lifting on evidence collection, control monitoring, questionnaire response, and audit preparation, freeing humans to focus on judgment, strategy, and stakeholder partnership. You will own the audit, assurance, and compliance pillar of our GRC program and will lead the design and engineering of the agentic systems that run it. This is not a “use ChatGPT to summarise a policy” role. You will architect and ship agents on our internal Security Agent Suite, build internal GRC tools using AI coding agents like Claude Code and Cursor, and treat automation as a first‑class deliverable alongside the audits you lead. You will work closely with engineering, product, legal, finance, people, and our external auditors to drive ISO 27001, SOC 1, and SOC 2 programs to clean outcomes — and to make sure that next year, the same outcomes are achieved with materially less manual effort. You move fast, you prefer significant leaps over small iterations, and you genuinely enjoy the intersection of compliance rigor and AI engineering. Responsibilities AI Automation and Tooling Architect, build, and maintain agents on Rokt's internal Security Agent Suite for GRC workflows, including client security questionnaires, evidence collection, control testing, vendor assessments, DPIAs, and audit preparation. Design new GRC automations end‑to‑end: scope the workflow, build the agent or tool, validate outputs, and roll it out with the rest of the GRC team. Build internal tools and integrations using AI coding agents (Claude Code, Cursor, or equivalents) to extend our in‑house GRC systems and Jira‑based workflows. Continuously evaluate agent performance, refine prompts and tool definitions, and improve coverage and accuracy of automated controls. Audit, Assurance, and Compliance Lead the ISO 27001:2022 surveillance and recertification cycles, and SOC1 and SOC2 Type2 audits, end‑to‑end. Plan and execute Rokt's internal audit program (user access, exemptions, DPIAs, SCF controls, AI controls), ideally with agent‑assisted execution. Drive external auditor engagement, evidence collection, and remediation tracking. Manage the processing of client security questionnaires using and continuously improving the questionnaire agent. Maintain and evolve ISMS performance metrics, including new metrics covering AI control effectiveness and automation coverage. Coordinate Rokt's security calendar including audit windows. Produce and maintain quality procedure documentation co‑authored with AI assistance. Requirements Compliance and Audit Experience 4+ years of relevant experience in Governance, Risk & Compliance, ideally in a fast‑moving tech environment. Working knowledge of ISO27000 family, SOC1, SOC2, NISTCSF, and privacy regulations (GDPR, CCPA, CPRA); bonus for PCI‑DSS, CIS, SCF, ISO42001, NIST AIRMF. Hands‑on internal auditing experience against ISO27001 and SOC2. Track record managing external audits end‑to‑end, including evidence collection, auditor engagement, and findings remediation. Solid grasp of controller/processor concepts and broader privacy fundamentals. AI and Technical Skills (This is the differentiator) Demonstrated experience designing and shipping agentic AI systems — not just using a chatbot. You have built agents that take actions, call tools, integrate with APIs, and complete multi‑step workflows. Comfortable using AI coding agents (Claude Code, Cursor, Copilot, or similar) to build and maintain internal tools; able to read, modify, and ship code even if you don't consider yourself a software engineer. Familiarity with at least one agent framework (GoogleADK, LangGraph, OpenAI Agents SDK, MCP, or similar) and the core patterns: tool use, memory, evaluation, guardrails. Understanding of LLM risks and controls — prompt injection, model misuse, agent autonomy, data leakage — and how they map to frameworks like OWASP Agentic Top10 or NIST AIRMF. Working knowledge of basic IT, cloud (AWS preferred), APIs, and SQL. Comfort with version control (Git/GitHub) and basic scripting (Python or TypeScript). Ways of Working Strong written and verbal communication; able to translate technical detail into business language for leadership, clients, and auditors. Demonstrated ability to break complex compliance requirements into scalable, automated processes that don't slow the business down. Bias for shipping, comfort with ambiguity, and a builder mindset. Strong attention to detail balanced with willingness to use AI to extend it. Highly responsive, autonomous, and resilient. Benefits Become a shareholder. Every Rokt'star gets equity in the company. Enjoy catered lunch every day and healthy snacks in the office; plus join the gym on us. Access generous retirement plans like a 4% dollar‑for‑dollar 401K matching plan and fully funded premium health insurance. Dog‑friendly office. Extra leave (bonus annual leave, sabbatical leave, etc.). Work with the greatest talent in town. See the world! We have offices in New York, Seattle, Sydney, Tokyo, and London. We believe we're better together. We love spending time together and are in the office most days (teams are in the office minimum 4 days per week). We at Rokt choose to create a company that is as diverse and inclusive as the world we live in by attracting, growing & keeping the best talent. Equal employment opportunities are available to all applicants without regard to race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, or disability status. #J-18808-Ljbffr ROKT
$214k - $255k
...millions of customers, and is trusted to do this by the world’s leading companies. We are a team of builders helping smart... ...envelope of what is possible. We are looking for a GRC Automation & Assurance Lead Target total compensation ranges from $214,000 - $25...SuggestedLive inWork at office- ...the role Anthropic's Security Governance, Risk, and Compliance (GRC) team is the connective tissue that holds the company accountable... ...beyond frameworks. As part of Security GRC's technical controls assurance function, you will be the voice on what the control environment...Suggested
- Aimling is seeking a dedicated professional for its Security Governance, Risk, and Compliance (GRC) team in New York. You will be integral in translating compliance obligations into actionable control requirements, collaborating with engineering teams and validating adherence...Suggested
- Live Nation International is looking for a Director of GRC Operational Risk Management to lead their third-party risk management efforts. This role involves managing a team and working with corporate partners to ensure effective risk control. The ideal candidate will have...Suggested
$212k - $230k
Director, Governance, Risk, and Compliance (GRC) Remote - USA At Clover, the Business Enablement team leads our technological advancement while ensuring robust... ...or similar are a plus. Service‑management and automation mindset. Benefits Overview Financial Well‑Being...SuggestedTemporary workFixed term contractWork at officeImmediate startRemote workFlexible hoursShift work- BDO Capital Advisors, LLC is seeking an experienced Audit Supervisor to oversee audit engagements, ensuring compliance with GAAP and coordinating team assignments. The ideal candidate has a Bachelor’s degree in Accounting or related field, 2+ years of audit experience, ...
- BDO is seeking an Audit Associate to join their team in New York. This role involves applying knowledge of US GAAP, managing audit engagements, and offering insights to improve client controls. The ideal candidate will have a Bachelor’s in Accounting or related field and...
- Thoropass is looking for an experienced PCI Auditor to transform the audit process using innovative AI and automation. The ideal candidate has at least 3 years of PCI audit experience, familiarity with cloud technologies (AWS, GCP, Azure), and exceptional problem-solving...Remote jobWork from homeFlexible hours
$112k
...InfoSec Governance Risk and Compliance (GRC) New York City, New York, US Manager, InfoSec... ...States) Founded in 2000, Ivalua is a leading global provider of cloud-based... ...program globally. We provide peace of mind and assurance of protection and safety to our customers...Contract workFor contractorsFor subcontractorWork at officeWorldwide$112k - $208k
Sr Manager, InfoSec Governance Risk and Compliance (GRC) Location: New York City, New York, United States Responsibilities Lead and own the Governance, Risk, and Compliance (GRC) program globally, managing and developing a high‑performing team. Manage and drive compliance...- A leading provider of procurement solutions is seeking a Manager for InfoSec Governance Risk and Compliance (GRC) in New York City. This role involves leading a team to manage the GRC program, ensuring compliance with certifications, and serving as a subject matter expert...
- ...Reserv is an insurtech creating and incubating cutting‑edge AI and automation technology to bring efficiency and simplicity to claims.... ...people who can work in an evolving environment. If building a leading TPA and the prospect of tackling the long‑standing challenges...Remote work
$190k - $215k
Sigma is seeking an experienced GRC Manager to lead and scale our governance, risk, and compliance programs. This role is based in our San... ...employment regulations Experience with continuous compliance automation tools (Vanta, Drata, Secureframe, Tugboat, or similar)...Full timeContract workWork at officeRemote workFlexible hours- Disney Cruise Line - The Walt Disney Company is seeking a senior leader to transform their InfoSec Governance, Risk, and Compliance (GRC) program. This role will drive strategic initiatives to embed risk awareness across the organization while ensuring compliance with global...
- ..., and make independent decisions. The company is backed by a large multinational insurer and is investing in technology, AI, and automation tools to support underwriters in their administrative tasks and enhance the speed of service for brokers and clients. The ideal candidate...
- A leading insurance company is looking for an Underwriter to assess risk for individual insurance cases. This role involves evaluating medical and financial risks while collaborating with various teams to improve underwriting processes. Ideal candidates will have strong...Remote job
$99k - $252.45k
PwC is seeking an Assurance - Digital Assets Manager in New York. In this role, you will lead audit teams, oversee compliance, and enhance financial reporting accuracy. A Bachelor's degree and CPA license are preferred. The position offers a competitive salary range of...- CohnReznick is seeking an Assurance Experienced Associate in New York to lead engagement activities for the Commercial Real Estate Group. You will plan, execute, and deliver on complex engagements for developers, owners, and funds, while coaching staff and interns. Required...Flexible hours
- Life at UiPath The people at UiPath believe in the transformative power of automation to change how the world works. We’re committed to creating category-leading enterprise software that unleashes that power. To make that happen, we need people who are curious, self-propelled...Work at officeImmediate startRemote work
- Reserv is an insurtech creating and incubating cutting-edge AI and automation technology to bring efficiency and simplicity to claims.... ...people who can work in an evolving environment. If building a leading TPA and the prospect of tackling the long-standing challenges...Remote work
- A leading assurance firm in New York is seeking an Assurance Manager for its Capital markets practice. The role involves serving broker dealer clients and leading assurance teams. Candidates should have a BS/BA in Accounting, CPA or CA certification, and a strong background...
$90k - $150k
...generation AI‑native insurance wholesaler revolutionizing the industry with cutting‑edge technology, data‑driven insights, and seamless automation. Their platform empowers brokers with superior underwriting, real‑time analytics, and an efficient placement process. Role...Base plus commissionFull time$110k - $125k
Framework Ventures is seeking a Compliance Manager with over 5 years of experience in risk, compliance, or audit. The role involves managing law enforcement requests, vendor due diligence, and crypto transaction monitoring using Chainalysis. Candidates should have a strong...Remote jobFlexible hours$168k - $200k
About Us Fanatics is building a leading global digital sports platform. We ignite the passions... ..., and reporting logic. Drive control automation opportunities and oversee implementation... ...with regulators, auditors, or external assurance providers. Certified Information...- HSBC, a global leader in financial services, seeks a Head of Insurance Business Development, Americas to lead the US and Bermuda insurance strategy within HSBC Asset Management. You will drive client engagement, build plans, and partner across Asset Management and HSBC...
- TechnipFMC plc is seeking an Operations Assurance Specialist to support technical teams in managing complex offshore operations. The role... ...and a strong background in offshore installations. You will lead tasks, address technical concerns, and mentor team members. The...
$125k - $150k
...position involves collaboration with various stakeholders and offers a competitive salary between $125,000.00 and $150,000.00 based on experience. Join a leading firm with numerous employee benefits including generous PTO, and inclusion programs. #J-18808-Ljbffr Epic Insurance$200k - $300k
A leading financial services firm is seeking passionate Insurance Sales Advisors to work remotely and help families find the right coverage. You will engage with clients, conduct virtual consultations, and meet sales targets without the burden of cold calling. Ideal candidates...Remote job- Allstate Insurance Co. is seeking individuals to own and operate an insurance agency in New York. This position offers an opportunity to build a successful business while providing essential protection to customers in your community. Candidates should have prior business...
- Withfaye is seeking a Business Development Manager to join their team, focusing on the Mid-America region. You will lead business development strategies in the travel insurance sector, collaborating with travel advisors and agencies to create new opportunities. The ideal...Remote job
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to GRC Automation & Assurance Lead. Be the first to apply!
- director of automation New York, NY
- rockwell automation New York, NY
- automation project manager New York, NY
- automation test architect New York, NY
- automation anywhere New York, NY
- building automation manager New York, NY
- building automation system operator New York, NY
- automation manager New York, NY
- test automation lead New York, NY
- test automation manager New York, NY
