[Remote] Senior Director, GRC Engineering at Vanta

United States

Apply Now
Vanta Logo
$303,000 – $356,000Compensation
Senior (5 to 8 years), Expert & Leadership (9+ years)Experience Level
Full TimeJob Type
UnknownVisa
Security, Technology, ComplianceIndustries

Requirements

  • 10+ years of experience working in the Governance, Risk, and Compliance industry
  • Strong leadership experience and an ability to lead a team from a foundation of transparency and trust
  • Experience working with security and privacy frameworks, including SOC II, ISO 27001, ISO 27701, and FedRAMP
  • Demonstrable expertise in SOC II, ISO 27001, NIST 800-53 at minimum
  • Experience managing a large team of people (10+)
  • Experience working and interfacing with C-level customer contacts
  • Technical expertise to understand and explain security and GRC concepts
  • Familiarity with Cloud Infrastructure, Risk Management, Policy Management, Security Training and Awareness, Vendor Risk Management, Vulnerabilities Management, and their related security processes
  • Experience in building productive relationships and driving collaboration with both technical and non-technical teams
  • Knowledge of the audit process and experience owning SOC2, ISO, and FedRAMP audits
  • Security compliance management experience within a SaaS environment (preferred, but not required)
  • Professional customer facing experience (preferred, but not required)

Responsibilities

  • Oversee the work of our governance, risk, and compliance functions that include Vendor Risk Management, Risk Management, Policy Management, Training and Awareness, and Customer Trust
  • Ensure ongoing compliance to our SOC II and ISO certifications
  • Drive the next evolution of our program to meet FedRAMP Authorization (Moderate 20x and Moderate Rev 5)
  • Lead and grow a team of the best security professionals in the world, with a view of security that is forward thinking, human-centric, and trust-based
  • Drive concepts of GRC Engineering throughout your organization and lean into automated compliance strategies to show ongoing commitment to security
  • Shape the next evolution of internal GRC strategy internally and be an active voice externally
  • Provide, both individually and through your teams, expert feedback to Vanta’s Engineering, Product and Design teams on our product offerings and serve as a strong customer voice in product development
  • Represent Vanta’s products, vision, and voice as a trusted security thought leader in public security forums
  • Participate within the CISO leadership team and collaborate extensively with other leaders within the Security Engineering and Operations teams
  • Track the team’s performance and report goals and objectives to leaders outside of the security team
  • Partner with Vanta's Sales and Customer Success teams to represent Vanta’s Trust Management Platform to prospects and customers
  • Become an expert on the security features available for customers to deploy within Vanta, including best practices for implementation
  • Serve as Vanta customer zero by testing and implementing all Vanta capabilities within our own GRC program
  • Coordinate with cross-functional teams to provide customers with meaningful updates on features and programs

Skills

Key technologies and capabilities for this role

GRCGovernanceRisk ManagementComplianceVendor Risk ManagementPolicy ManagementTraining and AwarenessSOC 2ISOFedRAMPAutomated Compliance

Questions & Answers

Common questions about this position

What is the salary range for the Senior Director, GRC Engineering role?

The salary range is $303K - $356K.

Is this position remote?

Yes, the position is remote.

What experience is required for this role?

Candidates need 10+ years of experience working in the Governance, Risk, and Compliance industry along with strong leadership skills.

What is the company culture like at Vanta?

Vanta has a kind and talented team that is innovative, forward-thinking, human-centric, and trust-based, with a focus on continuous security monitoring and verification.

What makes a candidate successful for this Senior Director role?

Success requires 10+ years in GRC, strong leadership to oversee functions like Vendor Risk Management and compliance certifications, and the ability to drive forward-thinking strategies while leading a high-performing team.

Vanta

Automates SOC 2 compliance for businesses

Website

About Vanta

Vanta simplifies the process of obtaining and maintaining SOC 2 certification, which is essential for organizations that manage sensitive customer data. The company offers a software-as-a-service (SaaS) platform that automates numerous checks to ensure that security controls are effective and compliant with industry standards. This automation helps small to medium-sized enterprises (SMEs) and tech companies monitor risks and vulnerabilities continuously, significantly reducing the time and cost associated with achieving SOC 2 compliance. Vanta's subscription-based model provides clients with a more efficient and cost-effective way to maintain compliance compared to traditional methods. The goal of Vanta is to transform the compliance process, allowing organizations to focus on their core operations while enhancing their security posture.

San Francisco, CaliforniaHeadquarters
2018Year Founded
$343.4MTotal Funding
SERIES_CCompany Stage
Enterprise Software, CybersecurityIndustries
501-1,000Employees

Benefits

100% Benefits Coverage
Flexible & Remote Work
Paid Parental Leave
Unlimited PTO
Health & Wellness
401(k)

Risks

Emerging competitors like ComplyCube could challenge Vanta's market position.
Healthcare data breaches may increase demand for more robust security measures.
Reliance on partnerships like HITRUST poses risks if standards evolve significantly.

Differentiation

Vanta automates up to 90% of audit preparation, reducing compliance costs significantly.
The platform offers real-time insights, enhancing trust and streamlining security reviews.
Vanta's HITRUST e1 solution automates 80% of requirements, ensuring continuous compliance.

Upsides

Vanta secured $150M in Series C funding, boosting its growth potential.
Partnership with HITRUST enhances Vanta's credibility in the healthcare sector.
Rising demand for automated compliance solutions supports Vanta's market expansion.

Related Jobs

United States
Remote iconRemote

VP of Marketing

Achievers
Salary not specified
  • Employment type iconFull Time
  • Experience level iconJunior (1 to 2 years)
Nashville +1 more
Remote iconRemote

Head of Legal, Risk, and Compliance

Built Technologies
Salary not specified
  • Employment type iconFull Time
  • Experience level iconSenior (5 to 8 years)
United States +1 more
Remote iconRemote

Director of Engineering

CSC Generation
Salary not specified
  • Employment type iconFull Time
  • Experience level iconExpert & Leadership (9+ years)
United States
Remote iconRemote

Chief Marketing Officer

LTSE
Salary not specified
  • Employment type iconFull Time
  • Experience level iconExpert & Leadership (9+ years)
Los Angeles +1 more
Remote iconRemote

Lead Community Manager, Trust & Safety

Rasa
Salary not specified
  • Employment type iconFull Time
  • Experience level iconSenior (5 to 8 years), Expert & Leadership (9+ years)
Berkeley +1 more
Remote iconRemote

Director of Engineering, Strategy Applications

The Voleon Group
Salary not specified
  • Employment type iconFull Time
  • Experience level iconExpert & Leadership (9+ years)
New York +1 more
Remote iconRemote

Head of Securities Compliance

Mercury
Salary not specified
  • Employment type iconFull Time
  • Experience level iconExpert & Leadership (9+ years)

Land your dream remote job 3x faster with AI

Try Jobo Free