CrawlJobs Logo
Lovable Logo Lovable · IT - Administration

Grc Engineer

Sweden, Stockholm · Job Posted April 15, 2026
Apply Position
Job Link Share

Job Description

We’re looking for a GRC Engineer who can turn regulatory requirements and security/privacy requirements into scalable engineering solutions.

Job Responsibility

  • Design and implement compliance-by-design systems across our infrastructure that people actually want to use
  • Automate compliance controls and monitoring using modern tooling
  • Work closely with engineering teams to ensure systems meet SOC 2, ISO 27001, GDPR, and emerging AI regulations
  • Partner with sales, product, platform, and legal teams to translate requirements and needs into technical implementations
  • Help shape the architecture around data handling, privacy, and responsible AI

Requirements

  • An engineer who has built compliance controls from the ground up
  • Experience with SOC 2, ISO 27001, GDPR, or similar frameworks
  • Strong architectural understanding and hands-on experience of common cloud infrastructures
  • Ability to automate compliance controls using code, scripts, or infrastructure tooling
  • A collaborative mindset - comfortable working with engineering teams and non-technical stakeholders like legal and marketing alike
Lovable - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Grc Engineer

8 matching positions

Software Engineer

Design roles for table specific transactions. Generate monthly user licenses rep...
Location
Location
United States , Piscataway, NJ and various unanticipated locations throughout the U.S.
Salary
Salary:
Not provided
ncsus.net Logo
National Computer Systems
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • SAP GRC
  • Omega
  • SOLV
  • R/3 (Profile Generator)
  • Portal
  • BI
  • CRM
  • HANA
  • BOBJ
  • Master degree in Computer Science, Technology or Engineering (any) with 1 year of experience in the job offered or related job
Job Responsibility
Job Responsibility
  • Design roles for table specific transactions
  • Generate monthly user licenses report
  • Prepare reports to determine security violations in production systems
  • Develop new security policies and procedures
  • Create get-roids.org manual changes adhering to defined process
  • Modify function groups and transaction codes
  • Conduct risk analysis
What we offer
What we offer
  • Referring employee will be eligible to receive an award of $1,000.00 for the successful referral
Read More
Arrow Right

Product Security Engineer - Secure SDLC Analyst

HPE Aruba Networking is looking for a person excited to work at the intersection...
Location
Location
United States , San Juan
Salary
Salary:
Not provided
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • BS in Information Security, Computer Science, or related technical field
  • A background in software security, either academic or work experience, including reverse engineering, vulnerability classes such as buffer overflows and their prevention, web application security, and/or cloud security
  • Programming knowledge of at least one programming language with the ability to look at source code and figure out what it’s doing
  • Familiarity with the purpose of tools such as IDEs, compilers, source code revision control systems, ASPM, SCA and code scanners
  • Minimum 3 years of experience working directly in software engineering or in an adjacent field with exposure to the software engineering environment
  • Experience conducting risk assessments, threat modeling, and/or compliance assessments
  • Experience supporting the integration of security practices through the software development lifecycle
Job Responsibility
Job Responsibility
  • Assist in the execution of product compliance assessments against various frameworks (e.g. NIST SSDF, NIST SP 800-218, SP 800-53, CIS Benchmarks)
  • Assist in the development and/or maintenance of GRC and SDLC tooling implementations, including scripting and automation
  • Operate as a representative of HPE Aruba in working groups, with government representatives, and with auditors
  • Provide consulting, information, and advice to product teams around implementing and improving the maturity of our SDLC
  • Document known issues and provide information to product teams in a manner which allows for easy interpretation and corrective actions to be performed
  • Monitor worldwide government standards and communicate to management and product teams when changes are made that may impact an existing control or introduce new requirements
What we offer
What we offer
  • Health & Wellbeing
  • Personal & Professional Development
  • Unconditional Inclusion
  • Fulltime
Read More
Arrow Right

Services Trust and Assurance Engineer

As HPE Aruba Networking's customers pivot to consume more of their networking ca...
Location
Location
United States
Salary
Salary:
101900.00 - 234500.00 USD / Year
https://www.hpe.com/ Logo
Hewlett Packard Enterprise
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5-10 years of relevant work experience
  • Background in Governance, Risk, and Compliance (GRC)
  • Bachelor’s degree from an accredited college or university, or equivalent broad-based experience in the workforce
  • Understanding of Amazon Web Services (AWS), Microsoft Azure, and Google Cloud Platform
  • Certifications such as AWS Cloud Practitioner or AWS Certified Solutions Architect are highly desirable
  • A broad understanding of IT service accreditation, attestation, and certification frameworks such as CSA CCM, FedRAMP, PCI-DSS, SOC2, and ISO 27001
  • Excellent verbal and written communications skills
  • Understanding of privacy frameworks such as GDPR and CCPA
  • Certifications such as CISSP or CCSP are desirable
Job Responsibility
Job Responsibility
  • Working collaboratively with R&D teams developing software for Aruba services to ensure understanding and adoption of the NIST Secure Software Development Framework (SSDF / SP800-218) and achievement of desired maturity targets
  • Synchronize additional R&D requirements from other applicable assessment or regulatory frameworks such as SOC2, ISO 27001, FedRAMP, and PCI-DSS
  • Develop, plan, and execute a compliance and accreditation program for each customer-facing service based on customer needs
  • Engage third-party consultants, auditors, and assessors as necessary
  • Work with the HPE Privacy Office and the Chief Privacy Officer to ensure global privacy requirements are actively addressed
  • Interface regularly with HPE Global Security, SRE, and the HPE Transformation Office
  • Serve as a coordinating function if and when security incidents occur
What we offer
What we offer
  • Health & Wellbeing
  • Personal & Professional Development
  • Unconditional Inclusion
  • Fulltime
Read More
Arrow Right

Senior Security Engineer, GRC Automation

1Password is looking for a Senior Security Engineer – GRC to design and implemen...
Location
Location
United States; Canada
Salary
Salary:
156000.00 - 210000.00 USD; CAD / Year
https://www.1password.com Logo
1Password
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 5+ years of experience in security engineering, DevSecOps, solutions engineering, or GRC automation roles
  • Proven experience working with GRC, compliance, or audit teams to build automation that supports evidence collection, control testing, or security monitoring
  • Direct experience implementing and integrating GRC platforms (e.g., Drata, Vanta, Tines, JupiterOne) into production environments
  • Strong scripting and integration skills using Python, JavaScript, APIs, webhooks, or workflow automation tools
  • Ability to work cross-functionally with security, compliance, legal, and infrastructure teams to translate policies into scalable technical systems
  • Familiarity with compliance frameworks such as SOC 2, ISO 27001, or NIST 800-53, and how they map to real-world infrastructure and operations
Job Responsibility
Job Responsibility
  • Lead the implementation and integration of our GRC platform, ensuring it is fully operationalized across key systems and workflows
  • Build out automated workflows for control testing, evidence collection, and audit readiness
  • Develop and maintain integrations between the GRC platform and systems of record (e.g., ticketing systems, IAM, asset inventories, configuration management)
  • Design dashboards and reporting to track control health, trust signals, and audit performance
  • Collaborate with teams across Security, GRC, and Engineering to embed compliance into operational processes like employee onboarding, change management, and incident response
  • Shape the roadmap for automated, resilient internal assurance infrastructure that grows alongside the business
What we offer
What we offer
  • Health and wellbeing: Maternity and parental leave top-up programs
  • Competitive health benefits
  • Generous PTO policy
  • Growth and future: RSU program for most employees
  • Retirement matching program
  • Free 1Password account
  • Community: Paid volunteer days
  • Peer-to-peer recognition through Bonusly
  • Remote-first work environment
  • Fulltime
Read More
Arrow Right

Solutions Consultant

We are looking for a dynamic, customer-facing Solutions consultant to be the pri...
Location
Location
United States , Los Angeles; Seattle; Portland; Denver; Chicago; Austin; Dallas; New Orleans; St. Louis; Baltimore; Boston; Miami; Philadelphia; Pittsburgh; Washington D.C.
Salary
Salary:
100000.00 - 130000.00 USD / Year
https://www.upguard.com Logo
UpGuard
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 3+ years in a customer-facing technical role such as a Solutions Consultant, Sales Consultant, Technical Account Manager, or Professional Services Consultant
  • Experience in a post-sales or expansion focused role is highly preferred
  • Deep understanding of the cybersecurity and GRC landscape (e.g., GRC platforms like ServiceNow
  • SIEMs like Splunk
  • or other security stack tools)
  • A passion for becoming a deep subject matter expert on a complex software platform
  • Hands-on experience with REST APIs is essential
  • You must be comfortable guiding customers on implementation, reading documentation, and using tools like Postman to troubleshoot
Job Responsibility
Job Responsibility
  • Drive Technical Expansion: Act as the key technical partner for Account Managers and CSMs during renewal and upsell motions. You will lead technical deep-dives, run customized product demonstrations, and build "proof-of-value" solution architectures for our new multi-product offerings
  • Serve as the Go-To Product Expert: Maintain an expert-level understanding of the UpGuard platform, its architecture, API capabilities, and competitive differentiators. You will be the technical authority the CS team relies on to answer complex customer questions
  • Architect Complex Solutions: Design, scope, and validate deep technical solutions for our customers. This includes architecting robust API integrations to connect UpGuard with our customers' key systems (like GRC platforms, SIEMs, and other security tools)
  • Manage Critical Technical Escalations: Act as an escalation point to "bridge the gap" between standard technical support and our CSMs. You will take ownership of high-priority technical issues that require deep, hands-on solutioning within a customer's environment
  • Enable the Team: Create and maintain a library of technical documentation, best-practice guides, integration playbooks, and demonstration scripts to empower the entire Customer Success team
What we offer
What we offer
  • Monthly Lifestyle subsidy: Use this for financial, physical, and mental well-being
  • WFH set-up allowance: To ensure you have the right environment to work in, we will help you get set up within your first 3 months at UpGuard
  • $1500 USD annual Learning & Development allowance: To support your career development, all team members will be able to expense development opportunities against this allowance
  • Annual leave: 6 weeks PTO plus two additional UpGuardian leave days to give you time to recharge your batteries
  • 18 weeks paid Parental Leave: Irrespective of parenting role
  • Personal Leave Allowance: This includes sick & carer’s leave
  • Fully remote working environment: While we have physical offices in Sydney & Hobart, we do not mandate compulsory attendance
  • Top-spec hardware: All team members will be provided with top-spec laptops for their role
  • Generative AI subsidy: UpGuard provides paid subscriptions for all team members to access generative AI tools to support their work
  • Health Insurance: Health, dental, and vision insurance
  • Fulltime
Read More
Arrow Right

Director, Security GRC Program Lead

Meta is seeking a highly skilled Security GRC Program Manager to join our Risk O...
Location
Location
United States , Bellevue
Salary
Salary:
227000.00 - 287000.00 USD / Year
meta.com Logo
Meta
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Significant experience as a leader and contributor in security risk management and compliance, including providing second-line oversight
  • Strong track record of operating effectively and influencing outcomes with Engineering, Product, GRC, and Legal partners
  • Extensive experience with Governance, Risk, and Compliance (GRC) and Legal functions
  • Deep expertise in security, with the ability to holistically understand relevant issues, partners, and products, and go deep on technical details
  • Proven ability to identify critical issues, balance competing priorities, translate technical and regulatory concepts for diverse audiences, and personally drive initiatives to completion
  • In-depth knowledge of complex global regulatory requirements (e.g., GDPR, SEC, PCI-DSS, NYDFS)
  • Demonstrated ability to build strong formal and informal networks with key influencers and decision makers inside and outside the company
  • Experience working in integrated privacy-security environments or familiarity with unified GRC frameworks across multiple risk domains
Job Responsibility
Job Responsibility
  • Lead and deliver on deeply complex, high-impact projects that shape Meta's risk profile and business trajectory
  • Proactively identify long-term, critical, and ambiguous problems, setting a clear vision and strategy for risk management in alignment with company goals
  • Partner with Central Security teams to analyze, streamline, and consolidate issues and risks from all sources (1LoD, 2LoD, 3LoD, external) into a clear, prioritized list for first-line-of-defense consumption and actioning
  • Integrate security risk management with Meta's Security Prioritization Framework (SPF) and contribute to capability maturity assessments to drive risk-based prioritization across the organization
  • Define and maintain clear interfaces and points of contact with the Security organization and other key partners, ensuring efficient governance and communication
  • Prepare regular updates and compliance documents to ensure Meta meets board and regulatory obligations, adapting processes and strategies to evolving regulatory and business environments
  • Drive cross-org execution, collaborating with Risk, Security, Legal, Product, and Engineering functions to deliver results and maximize impact
  • Champion organizational efforts to build and sustain diversity, culture, recruitment, onboarding, mentoring, and development programs, serving as a role model and mentor for others
  • Integrate learnings and best practices from/to sister 2LoD organizations (e.g., Integrity GRC, Privacy GRC), and partner with Product & Engineering teams on necessary second-line-of-defense tooling within the unified GRC framework
What we offer
What we offer
  • bonus
  • equity
  • benefits
Read More
Arrow Right

ServiceNow Engineer

FinXL by Randstad Digital focuses on developing client's Networking, Digital and...
Location
Location
Australia , North Sydney
Salary
Salary:
Not provided
finxl.com.au Logo
FinXL
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • ServiceNow Engineer background
  • ITSM modules - Incident, Change, Problem experience
  • GRC - IRM experience
  • Experience in ServiceNow engineering, scripting, workflows, integrations & platform customisation
  • Experience in enterprise scale environments and stakeholder engagement
  • Experience in end to end ServiceNow engineering capability
  • Enterprise transformation experience
  • ServiceNow certifications
Read More
Arrow Right

Privacy Engineer

We are excited to welcome a Privacy Engineer to join 1Password’s Privacy Enginee...
Location
Location
United States; Canada
Salary
Salary:
123000.00 - 172000.00 USD; CAD / Year
https://www.1password.com Logo
1Password
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 3–5 years of experience building and shipping software in a SaaS environment
  • Full stack engineering experience delivering customer-facing functionality and supporting backend services (APIs, services, and data flows)
  • Proficiency in one or more backend languages (e.g., Go, Rust, Java, TypeScript) and comfort working across the stack
  • Experience with modern web application patterns (authentication/authorization concepts, API design, frontend state/data handling)
  • Practical experience implementing privacy- and security-adjacent controls such as data minimization, access controls, encryption usage, retention/deletion, and privacy-safe telemetry/logging
  • Ability to translate privacy requirements (GDPR / CCPA / CPRA concepts) into engineering tasks
  • Strong collaboration skills and comfort partnering with GRC & Security, Product, Legal/Privacy, Data, and Engineering teams
  • A track record of writing reliable, maintainable code with testing and operational awareness (debugging, monitoring, incident follow-up)
Job Responsibility
Job Responsibility
  • Build privacy-by-design into product features and services
  • Partner with Product and Legal/Privacy to translate requirements (e.g., DPIAs/PIAs, consent, data subject rights) into concrete Privacy Engineering deliverables and implementation plans
  • Implement privacy-safe patterns for data flows, access boundaries, storage decisions, and user experiences, driving changes into production systems
  • Contribute to technical designs and reviews so privacy is addressed early, with GRC & Security Privacy Engineering providing consistent guidance and reusable patterns
  • Implement privacy controls across the stack
  • Build and improve backend controls such as authorization checks, data scoping, encryption usage, and privacy-aware service interfaces in collaboration with Security engineering partners
  • Build and improve frontend experiences that support privacy requirements (clear choices, consent signaling, privacy-respecting defaults, and user controls where applicable)
  • Improve data handling in logs/telemetry by limiting sensitive fields, and ensuring collection remains consent-aware, supporting goals for visibility without over-collection
  • Improve lifecycle controls and operational hygiene
  • Strengthen retention and deletion across production databases, logs, and relevant third-party systems with an engineering-first approach
What we offer
What we offer
  • Health benefits
  • Dental benefits
  • 401k/RRSP program
  • Generous PTO policy
  • Maternity and parental leave top-up programs
  • RSU program
  • Retirement matching program
  • Free 1Password account
  • Paid volunteer days
  • Peer-to-peer recognition through Bonusly
  • Fulltime
Read More
Arrow Right