Security GRC Analyst

Lambda's GPU cloud is used by deep learning engineers at Stanford, Berkeley, and Carnegie Mellon. Lambda's on-prem systems power research and engineering at Intel, Microsoft, Kaiser Permanente, major universities, and the Department of Defense.

If you'd like to build the world's best deep learning cloud, join us. 

*Note: This position requires presence in one of our San Francisco Bay Area office locations (Currently San Jose, expanding to Peninsula/SF) 4 days per week. Lambda’s designated work from home day is currently Tuesday.

The Security GRC Analyst is responsible for the facilitation, operation, and maintenance of Governance, Risk & Compliance efforts to support our Information Security and Compliance goals and objectives. The role will be heavily focused on remediating information security controls, supporting audits for the company certification programs and will report directly to the Head of Compliance, Elaine Tan. 

This position interacts with all levels of the business, and calls for adaptability, advocating for flexible strategies, and a thorough grasp of compliance requirements and our operations. Success in this position depends on the ability to drive new compliance initiatives across various departments while maintaining professionalism and composure under pressure. 

Here, you will not only witness the direct impact of your efforts but also shape the future of compliance and governance in a dynamic, fast-evolving industry.

What You’ll Do

•  Responsible for Third Party Risk Management Program including onboarding and renewals
• Implement and maintain Security GRC projects dashboard reporting
• Lead Internal Audit Program
• Assist with remediation of control deficiencies and gaps identified internally and externally for SOC 2 TYPE II
• Assist Control Owners in the maintenance & remediation of control activities for Internal Audit 

You

• Have 2-4 years experience in running audits, certification programs and control assessments, including but not limited to: scope planning, defining control procedures based on requirements, policies and standards, control testing, mapping issues to risks
• Possess strong knowledge of and experience in security risk management frameworks including related regulatory compliance requirements (e.g., SOC 2, SOX)
• Have a strong ability to define, drive and execute a program vision, strategy, approach and milestones in alignment with organization priorities and initiatives
• Are able to advocate for flexible strategies that still meet compliance requirements and operations needs
• You consistently maintain professionalism and composure under pressure

Nice to Have 

• Experience in the machine learning or computer hardware industry

About Lambda

• We offer generous cash & equity compensation
• Investors include Gradient Ventures, Google’s AI-focused venture fund
• We are experiencing extremely high demand for our systems, with quarter over quarter, year over year profitability
• Our research papers have been accepted into top machine learning and graphics conferences, including NeurIPS, ICCV, SIGGRAPH, and TOG
• We have a wildly talented team of 250, and growing fast
• Health, dental, and vision coverage for you and your dependents
• Commuter/Work from home stipends
• 401k Plan with 2% company match
• Flexible Paid Time Off Plan that we all actually use

Salary Range Information 

Based on market data and other factors, the salary range for this position is $110,000 -$145,000. However, a salary higher or lower than this range may be appropriate for a candidate whose qualifications differ meaningfully from those listed in the job description. 

A Final Note:

You do not need to match all of the listed expectations to apply for this position. We are committed to building a team with a variety of backgrounds, experiences, and skills.

Equal Opportunity Employer

Lambda is an Equal Opportunity employer. Applicants are considered without regard to race, color, religion, creed, national origin, age, sex, gender, marital status, sexual orientation and identity, genetic information, veteran status, citizenship, or any other factors prohibited by local, state, or federal law.