Senior GRC Engineer at Ro | Hybrid Hired

About the role

Governance Risk and Compliance Engineer at Ro, a telehealth company. Focus on risk management, compliance frameworks, and automation with AI.

Responsibilities

Serve as both a risk practitioner and automation engineer. Automate everything.
Own and maintain the compliance platform (Vanta), including control mapping, evidence collection, continuous monitoring, and audit workflows
Perform risk assessments, vendor security reviews, and control gap analyses, and track remediation through to completion
Manage control documentation, policies, procedures, and supporting artifacts across multiple compliance frameworks
Partner with Security, IT, Infrastructure, and Engineering teams to ensure technical and administrative controls align with documented policies and compliance requirements
Support internal and external audits (SOC 2, HIPAA, HITRUST)
Own and maintain the cyber risk register, collaborating with risk owners to quantify risks and develop remediation plans.
Develop and maintain risk reporting, metrics, and executive summaries with BI tools (Looker, Hex, etc)

Requirements

5+ years of combined experience across governance, risk, compliance, security engineering, or adjacent technical roles, including hands-on experience working with compliance frameworks such as SOC 2, HIPAA, HITRUST, NIST, and PCI in modern, technology-driven environments.
3+ years of experience with ongoing compliance operations, with demonstrated progression from manual evidence collection to automated, continuously monitored controls.
2+ years of hands-on experience implementing and administering continuous compliance and evidence automation platforms (e.g., Vanta, Drata, SecureFrame), including configuring and creating custom integrations as well as optimizing automated evidence workflows.
Working knowledge of cloud computing platforms (AWS, Azure, GCP) and how their native services and configurations support security and compliance requirements.
Expertise in using Looker (or similar BI tool; HEX) to create dashboards, generate reports, and visualize GRC data for stakeholders, with a focus on simplifying complex data into actionable insights.
Ability to automate data ingestion, transformation, and reporting using scripting or programmatic approaches (e.g., Python, JavaScript, APIs, Tines.)
Strong analytical and root cause analysis skills
Kindness, and an ability to communicate to all levels of the organization

Benefits

Full medical, dental, and vision insurance + OneMedical membership
Healthcare and Dependent Care FSA
401(k) with company match
Flexible PTO
Wellbeing + Learning & Growth reimbursements
Paid parental leave + Fertility benefits
Pet insurance
Student loan refinancing
Virtual resources for mindfulness, counseling, and fitness

Similar roles

Browse all Compliance jobs

1 hour ago

AI

Compliance Supervisor

Apotex Inc.

Compliance Supervisor leading Quality & Compliance programs at Apotex, overseeing audits and ensuring compliance with regulatory requirements in pharmaceutical manufacturing.

Onsite Role

Richmond Hill Canada Compliance

CA$83,126 - CA$116,377 per year

1 hour ago

CA

Analista Senior – Cumplimiento Tributario, Indirectos

Canva

Senior Tax Compliance Analyst for Votorantim's Excellence Center in Peru. Focused on electronic book preparation and review, ensuring compliance and process improvement.

Hybrid Role

Lima Peru Compliance

2 hours ago

3E

Regulatory Specialist, Chemical Regulations

3E

Regulatory Specialist at 3E analyzing global chemical regulations and ensuring compliance. Collaborating with teams to develop regulatory solutions and contribute to AI workflows.

Hybrid Role

Tokyo Japan Compliance

2 hours ago

KG

RLS Process – Compliance Lead

KION Group

Process & Compliance Lead at Dematic defining and implementing consistent content quality standards and audit criteria. Driving continuous improvement in compliance and documentation for global deployments.

Onsite Role

Holland United States Compliance

$84,750 - $113,000 per year

2 hours ago

VE

Compliance Specialist

Vero

Compliance Specialist at VERO responsible for implementing compliance programs. Ensures adherence to regulations and ethical standards through risk assessments and training initiatives.

Hybrid Role

São Paulo Brazil Compliance

3 hours ago

PA

Manager, Compliance – Escheatment & Credit Risk

PayPal

Manager of Compliance overseeing Escheatment and Credit Risk at PayPal. Ensuring regulatory compliance and enhancing risk management strategies across the organization.

Hybrid Role

Chicago United States Compliance

$106,000 - $157,300 per year

4 hours ago

ME

Senior Principal Regulatory Affairs Specialist

Medtronic

Senior Principal Regulatory Affairs Specialist at Medtronic leading regulatory strategies for Class II robotic devices. Responsible for compliance with US and EU regulations and product lifecycle support.

Onsite Role

Boston United States Compliance

$156,800 - $235,200 per year

5 hours ago

IB

Senior Regulatory Analyst – Open to Persons with Disabilities and Rehabilitated Candidates

ISA ENERGIA BRASIL

Senior Regulatory Analyst handling regulatory relationships and compliance for energy transmission at ISA ENERGIA BRASIL. Managing contracts and regulatory submissions to support their energy transition efforts.

Hybrid Role

São Paulo Brazil Compliance

7 hours ago

A[

Data Strategist, Regulatory

Alexander Thamm [at]

Data Strategist focusing on regulatory compliance working across information systems. Collaborating with various departments and leading workshops to optimize processes.

Hybrid Role

München Germany Compliance

8 hours ago

CO

TMS Compliance Lead Analyst

Coinbase

TMS Compliance Lead Analyst conducting Transaction Monitoring investigations within Coinbase compliance team. Ensuring adherence to AML requirements and documenting investigative outcomes.

Hybrid Role

Ireland Compliance

€67,000 per year