Design and implement automation, dashboards, and integrations that power our Governance, Risk, and Compliance (GRC) operations.
Operationalizing and expanding our GRC platform (Drata), building AI-assisted workflows that automate evidence collection, control monitoring, and vendor risk.
Manage project delivery across multiple GRC automation initiatives simultaneously — maintaining clear scope, milestones, and stakeholder visibility without sacrificing quality.
1Password is building the foundation for a safe, productive digital future. They innovated the market-leading enterprise password manager and pioneered Unified Access Management, a new cybersecurity category built for the way people and AI agents work today. 1Password has surpassed $400M in ARR and has over 180,000 businesses using their product.
You'll partner directly with the Senior Manager of GRC to lead our commercial audit programs, from evidence collection and control testing to deep technical walkthroughs with external auditors and internal SMEs.
You'll own the question of what "good evidence" looks like across SOC 2 Type II, ISO 27001/27017/27018, and ISO 27701, and you'll know where to find it in the systems that generate it.
Help build the AI-assisted workflows and automation that make our audit programs more efficient and our compliance posture more continuous.
1Password is building the foundation for a safe, productive digital future. They ensure every identity is authentic, every application sign-in is secure, and every device is trusted. Over 180,000 businesses trust 1Password. We prioritize collaboration, clear and transparent communication, receptiveness to feedback.
Maintain and improve information security policies, standards, and procedures.
Support SOC 2, ISO 27001, and HITRUST readiness, audit preparation, and evidence collection.
Support vendor security reviews, third-party risk assessments, and remediation tracking.
Benepass is making benefits easy through its customizable fintech platform. They enable People teams to implement, administer, and track benefits that meet employees where they are. The company has raised approximately $75 million in equity capital and is backed by leading investors.
Build detections and security signal pipelines in Datadog.
Serve as the subject matter expert on AWS Cloud and on-prem infrastructure security.
Act as the technical lead during security incidents, including investigation and remediation.
Voltus is the leading platform connecting distributed energy resources to electricity markets, delivering less expensive, more reliable, and more sustainable electricity. Our company appears to be a remote-first company, and values diversity and inclusion.
Drive compliance efforts to unlock business capabilities
Secure Owner by helping teams successfully prevent and remediate vulnerabilities
Help teams build better and more secure systems by avoiding pitfalls of risk.
Owner is an AI-native system local business owners use to succeed, starting with restaurants. It's building the system that replaces the many tools owners use to run their business and powers everything from the restaurant’s website, online ordering, CRM, POS, and more. The team is in the low hundreds.
Serve as a senior security and compliance advisor for clients in finance, VC, PE, and biotech, translating complex requirements into practical action plans.
Lead consultative conversations on governance, risk, controls, AI adoption, and audit readiness, delivering clear executive-level recommendations.
Build and refine Outpost's service delivery playbooks, templates, and documentation to scale the offering and improve client experience.
Pliancy is fundamentally changing how businesses value technology, specializing in IT support for life sciences, capital management, and startups. With a people-first culture, the company prioritizes curiosity and empathy, investing in long-term employee success.
Lead control program maturity by designing an auditable framework fitting ezCater's SaaS, cloud, data, and engineering environment.
Build continuous control monitoring and automation by partnering with engineering teams to implement automated testing and evidence collection.
Expand data security policy and program quality by defining clear, enforceable policies tied to technical practices and operating cadences.
ezCater is the #1 food tech platform for workplaces in the US, making it easy for organizations to manage food needs and order from over 125,000 restaurants nationwide. The company values work/life harmony and offers a collaborative, innovative environment with passionate colleagues.
Lead security strategy across infrastructure, cloud systems, and enterprise applications.
Drive SOC 2, ISO 27001, and ISO 42001 readiness/certifications.
Own vulnerability management, threat monitoring, and incident response workflows.
SaaS Talent is a recruiting company, and a hiring, business development and growth partner with 20+ years of experience in SaaS and Hi-Tech that helps you scale and transform your business. They've worked with 100+ companies and helped them achieve their goals.
Design, develop, and implement cloud security architecture solutions in Microsoft Azure.
Build and maintain security automation using Infrastructure as Code (IaC) tools.
Collaborate with development teams to embed security into CI/CD pipelines.
Hanger, Inc. is the world's premier provider of orthotic and prosthetic (O&P) services and products, offering advanced O&P solutions. With 160 years of excellence, Hanger employs many to help people achieve new levels of mobility and freedom.
Lead and maintain the IT Compliance Program, ensuring alignment with industry best practices and regulatory requirements.
Stay abreast of relevant laws, regulations, and industry standards (e.g. GDPR, ISO 27001, NIS2, SOC 2,...).
Serve as a main point of contact for senior management and stakeholders on regulatory and IT compliance matters.
EcoVadis is the leading provider of business sustainability ratings, offering solutions backed by experts and technology. They analyze data to provide companies with insights into their environmental, social, and ethical risks, fostering a culture of global sustainability change.
Monitor security findings and support remediation workflows.
Develop scripts and automation to improve security workflows.
GuidePoint Security provides trusted cybersecurity expertise, solutions, and services. They help organizations make better decisions and minimize risk with a three-tiered, holistic approach to security. GuidePoint has over 1,200 employees and serves more than 6,200 customers.
Collaborate with multiple teams to build and enhance complex software and security tooling.
Help improve availability, performance, scalability, and security of security tools.
Focus on DevSecOps tooling and strategy to automate and enhance security posture.
UltraViolet Cyber is a leading platform-enabled unified security operations company providing comprehensive security solutions. Founded by security practitioners with decades of experience, the company serves Fortune 500, Federal Government, and Commercial clients and has global offices across the U.S. and in India.
Deliver world-class cyber security assessment and advisory services while ensuring customer satisfaction.
Work effectively as a team member on large engagements and remain current on technical knowledge.
Demonstrate GuidePoint’s Core Values at all times: Take Charge and Complete Our Mission.
GuidePoint Security provides trusted cybersecurity expertise, solutions, and services to help organizations make better decisions and minimize risk. They have over 1,200 employees and focus on core values to establish an enjoyable workplace atmosphere.
Own and strengthen the controls environment, ensuring compliance requirements are effectively implemented and maintained.
Support and mature the GRC program, including SOC 2 operations and alignment with security frameworks such as NIST.
Build and maintain Business Continuity and Disaster Recovery programs, including BIAs, continuity plans, and recovery runbooks.
Mesh enables consumers to pay and be paid with any asset, bridging the gap between tokenized assets and everyday commerce. Backed by investors like PayPal Ventures and Paradigm, they are a high-growth company building the infrastructure for the global economy.
Design and implement authorization frameworks and just-in-time access controls for cloud resources.
Develop security automation scripts and tools in Python and Go to streamline operations and incident response.
Collaborate with engineering teams to integrate security controls into CI/CD pipelines and infrastructure.
Included Health is a healthcare company delivering integrated virtual care and navigation. It has a remote-first culture and offers comprehensive benefits.
Lead integration of security across the SDLC, embedding automated testing into CI/CD pipelines.
Secure cloud-native AWS architectures and enforce least privilege access and runtime protections.
Perform threat modeling, automate compliance, and innovate with AI security standards.
TrueML is a mission-driven financial software company that uses machine learning to improve customer experiences for distressed borrowers. The team includes data scientists, financial services experts, and customer experience fanatics building inclusive financial technology.
Build, operate, and maintain core security infrastructure to protect enterprise systems.
Collaborate with engineering, IT, and security teams to implement security tools and policies.
Mentor team members and drive automated alerting and response capabilities.
Samsara is the pioneer of the Connected Operations Cloud, a platform that helps organizations harness IoT data to improve safety, efficiency, and sustainability of physical operations. As a recently public company with thousands of employees, Samsara fosters a culture of ownership, collaboration, and growth, aiming to digitally transform industries that represent over 40% of global GDP.
Partner with engineering teams to design, build, and operate secure-by-default cloud infrastructure across AWS and Google Cloud.
Build reusable Terraform modules and policy-as-code guardrails to make secure implementation easier for engineering teams.
Operate CSPM/CNAPP tooling and drive remediation of cloud vulnerabilities and misconfigurations.
Fullscript is a health technology company that provides a platform for practitioners to access clinical insights, lab interpretations, and high-quality supplements, serving over 125,000 practitioners and 10 million patients. The company has a remote-first culture, emphasizes work-life balance, and values inclusivity and continuous learning.
Lead and own the ongoing operation and maintenance of Samsara’s vulnerability management program.
Collaborate with engineering teams to track and support the remediation of identified vulnerabilities.
Champion Samsara’s cultural principles in daily work.
Samsara is the pioneer of the Connected Operations Cloud, enabling organizations to harness IoT data for actionable insights. As a recently public company with a global team, they foster a culture of rapid career development and encourage employees to architect their own careers.
Lead cyber risk assessments and control reviews to identify gaps.
Act as a bridge between GRC and technical teams.
Own and maintain the Internal Control Framework.
Inetum is a global leader in IT services, dedicated to delivering innovative solutions to our clients. They are committed to fostering a dynamic and inclusive work environment that values diversity, where creativity and collaboration can thrive. Present in 19 countries with more than 28,000 employees worldwide.