Governance, Risk & Compliance Sr. Manager (San Francisco)
As the first Governance, Risk, and Compliance team member you’ll make a significant impact at a rapidly growing AI security startup. You will have the opportunity to drive the greenfield development of a comprehensive data and security governance framework that scales with the company as it grows and builds customer trust. As a bonus, you'll have the chance to actively drive the public discourse around what a great AI security governance framework should look like.
About Lakera
Lakera is on a mission to secure the era of intelligent computing. We are heading towards a future where AI-powered applications take center stage. Here at Lakera, we're not just dreaming about the future; we're building the security foundation for it. We empower builders, giving them the confidence to navigate this new dynamic landscape and unleash the next phase of innovation.
We work with Fortune 500 companies, startups, and foundation model providers to protect them and their users from adversarial misalignment. We are also the company behind Gandalf, the world’s most popular AI security game. If you're eager to be part of a team that's not just keeping pace but setting the pace, Lakera is the right place for you. Let's shape the future together.
What You’ll Do
- Regulatory Compliance Management:
- Ensure compliance with GDPR, CCPA/CPRA, and other relevant regulations.
- Create, implement, and update compliance policies and procedures.
- Audit and Certification Leadership:
- Lead audits and audit preparations for SOC2, ISO27001, and other relevant audits.
- Continuously ensure compliance with certification requirements and manage improvements post-audit.
- Customer Trust, Security, and AI Assurance:
- Engage with customers to foster a relationship of trust, emphasizing the company’s dedication to secure operations and adherence to AI best practices.
- Respond to security questionnaires and inquiries effectively in collaboration with sales and engineering to speed up the sales process.
- Develop and maintain public-facing trust pages.
- Risk Management:
- Identify and mitigate risks in data security and compliance.
- Conduct risk assessments, gap analyses and report findings to drive discussions and support the strategic decision-making process.
- Develop Risk programs centered on Vulnerabilities, Enterprise, Vendor, and other areas.
- Training and Awareness:
- Educate employees on compliance and security best practices.
- Keep updated on cybersecurity trends and threats for effective training.
- Follow and help shape the AI regulatory and standards landscape.
What You’ll Bring
- 6-8 years of experience as a GRC Officer, Compliance Manager, Customer Trust leader, or a similar role in a tech company.
- A track record of leading audit preparations and audits for SoC2, ISO27001, and similar information security standards.
- In-depth knowledge of GDPR, CCPA/CPRA, and other privacy standards and experience implementing and monitoring governance processes to ensure compliance with these standards.
- In-depth knowledge of security best practices.
- A strong desire for cross-team collaboration with IT, Security, Sales, and Engineering to move the company forward and gain customer trust.
- An organized, self-starter approach with an eye for finding creative ways to get projects to the finish line.
- Strong written and verbal communication, and interpersonal skills.
- A passion for what AI can do for the good of humanity and a desire to ensure that it is implemented securely and ethically.
Location: Zurich or San Francisco
Logistics: Hybrid. We’re excited about candidates who want to contribute to our in-office culture.
Deadline to apply: None. Applications will be reviewed on a rolling basis.
Compensation and Benefits: Our total compensation package is a blend of salary, equity, and benefits.
We are committed to paying fairly and aim for these three elements collectively to be highly competitive with market rates. Equity - On top of this position's compensation, equity will be a major component of the total compensation. We aim to offer higher-than-average equity compensation for a company of our size and communicate equity amounts at the time of offer issuance.
Benefits:
- Equity package.
- Comprehensive health, dental, and vision insurance (US).
- 401k plan with employer matching (US).
- Paid parental leave.
- Unlimited PTO (US) / 25 days vacation (Switzerland).
- Health, wellness, and commuter benefits.
👉 Let's stay connected! Follow us on LinkedIn, Twitter & Instagram to learn more about what is happening at Lakera.
ℹ️ Join us on Momentum, the slack community for AI Safety and Security everything.
❗To remove your information from our recruitment database, please email privacy@lakera.ai.
Apply for this jobOther AI Jobs like this
Compliance Program Manager
OpenAI
Senior Security GRC Analyst
Lambda
Director, Head of Compliance
Scale AI