Join LegalVision as a motivated lawyer (2 - 4 PQE) in the Commercial and Regulatory Practice. Work with NDIS providers and healthcare organizations to navigate complex regulatory requirements.
About the role
- GRC Lead at Replit guiding compliance and risk management across the organization. Leading team and architectural vision for automated compliance systems in software development.
Responsibilities
- Act as the technical anchor for the GRC team, mentoring GRC analysts and engineers.
- Own the technical vision for Replit’s GRC program, moving toward "Compliance-as-Code" and automated evidence collection.
- Champion a culture of security and privacy across the company, educating teams on *why* controls exist.
- Partner with Architects and Engineering Leads to incorporate compliance requirements early in the design phase.
- Work closely with Legal Counsel to implement requirements for Privacy (GDPR, CCPA) and emerging AI-specific regulations.
- Enable the Sales team by managing the Customer Trust Center and handling security questionnaires.
- Own and cultivate the relationship with external auditors, ensuring requests are relevant to our tech stack.
- Manage the Cybersecurity Risk Register, identifying, quantifying, and tracking risks.
- Manage compliance posture across SOC 2, ISO 27001, and prepare for future certifications in regulated markets.
- Drive the shift from manual evidence collection to continuous monitoring and assess third-party vendors.
Requirements
- 8+ years of experience in GRC or Information Security
- Leadership Experience: Proven experience mentoring other GRC professionals or leading complex cross-functional projects.
- Technical Fluency: Ability to speak the language of engineering, cloud (GCP/AWS), and security architecture. You can anticipate how architectural decisions impact risk and compliance.
- Regulatory Breadth: Deep experience with SOC 2, ISO 27001, PCI, HIPPA, and Privacy laws.
- Collaborative Communication: Strong ability to explain risk and tradeoffs to technical (Engineers), legal, and commercial (Sales/Execs) stakeholders.
- Automation Mindset: Experience with GRC automation tools (e.g., Vanta, Drata) and a bias toward reducing manual toil.
Benefits
- Competitive Salary & Equity
- 401(k) Program with a 4% match
- Health, Dental, Vision and Life Insurance
- Short Term and Long Term Disability
- Paid Parental, Medical, Caregiver Leave
- Commuter Benefits
- Monthly Wellness Stipend
- Autonomous Work Environment
- In Office Set-Up Reimbursement
- Flexible Time Off (FTO) + Holidays
- Quarterly Team Gatherings
- In Office Amenities
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Director managing IT security strategies and policies for Abbott. Overseeing IT security functions and implementation of company - wide policies in a healthcare leadership role.
Join Rockwell Automation as an Analyst ensuring import/export compliance. Focus on regulations, documentation, and shipment monitoring in a hybrid environment.
Analista de Assuntos Regulatórios supporting regulatory strategies for multinational pharmaceutical company. Involves management of drug registration processes and performance monitoring in São Paulo.
Compliance Specialist working at Freetrade to help meet regulatory requirements and support product development. Engaging with teams across the business and delivering training and reporting solutions.
Manager of Regulatory Affairs & Public Policy at Rowan Digital Infrastructure shaping communications and strategies. Leading advocacy in the evolving regulatory landscape for data centers.
Compliance Specialist supporting various Compliance initiatives and ensuring regulatory adherence in healthcare. Reporting to the Compliance Manager and collaborating with internal departments on compliance - related projects.
Air Compliance Manager developing safety programs and conducting risk assessments at a global logistics leader. Ensuring compliance with regulations and maintaining staff certifications.
Senior Consultant in Cybersecurity advising clients on EU cyber and digital compliance requirements. Collaborating with a team of experts to implement regulatory frameworks and solutions.
Senior Manager of Medicare Compliance at CVS Health overseeing Medicare compliance initiatives and operations. Leading oversight of delegated functions and engaging with internal stakeholders for compliance control.