GRC Careers

JobsNIST AI RMF

NIST AI Risk Management Framework Jobs

The NIST AI Risk Management Framework is the voluntary US standard for identifying and managing AI risk, organized around Govern, Map, Measure, and Manage.

New NIST AI RMF GRC roles, the moment they post. Tell us where to send them.

Unsubscribe anytime, one click.

The NIST AI Risk Management Framework (AI RMF 1.0), released in January 2023, is the reference point for managing AI risk in the United States. It is voluntary and not a law, but it has become the common language US enterprises and federal agencies use to structure responsible-AI programs. It is built around four functions: Govern, the culture and accountability that runs across everything, Map, understanding context and risk, Measure, assessing and tracking risk, and Manage, acting on it. A Generative AI Profile, added in 2024, extends it to the specific risks of generative systems.

Because it is principles-based and maps cleanly onto ISO/IEC 42001 and the EU AI Act, the AI RMF is usually the backbone of an AI governance program rather than a checkbox. Roles that ask for it want people who can operationalize the four functions: stand up the governance structure, build the risk register, define metrics, and keep the program honest as models move into production.

NIST AI RMF: Frequently Asked Questions

Is the NIST AI RMF mandatory?

No. It is a voluntary framework, but it is widely adopted by US enterprises and required of many federal agencies and contractors, which makes it a practical standard.

What are the four functions of the NIST AI RMF?

Govern, Map, Measure, and Manage. Govern runs across the other three and establishes the accountability and culture for managing AI risk.

How does the NIST AI RMF relate to the EU AI Act?

The AI RMF is voluntary and risk-based and maps closely onto the EU AI Act's requirements and onto ISO/IEC 42001, so organizations often use it as the operating backbone that helps satisfy multiple regimes.

Open NIST AI RMF GRC roles (18)

Sr. Architect, AI Governance & Risk

Babel Street
Hybrid · Reston, VA · Full-time · $140,000 to $180,000
AI Governance

GRC and AI Governance - Senior Manager

CFGI
Hybrid · Remote · Full-time
Featured AI Governance

Director, Governance, Risk, and Compliance (GRC)

Clover Health
Remote · Remote · Full-time · $212,000 to $230,000
Featured Governance

Senior GRC Engineer

Lantern
Hybrid · Dallas, TX · Full-time
Featured Governance

Senior GRC Specialist

Cohere
On-site · Toronto · Full-time
Featured Governance

Senior AI GRC Engineer

Vanta
Remote · . · Remote · Full-time
Featured AI Governance

Senior Director, Privacy, Security & Data Compliance

Snowflake
On-site · US-CA-Menlo Park · Full-time
Featured Privacy

Senior GRC Lead

Brex
On-site · San Francisco, California · Full-time · $153,600 - $192,000
Featured Governance

AI Compliance Officer

Anthropic
On-site · Dublin, IE · Full-time
Featured AI Governance

Security GRC Manager: Customer Trust Enablement

Sierra
On-site · San Francisco, CA · Full-time
Featured Governance

Director of Governance, Risk, and Compliance (GRC)

Hyperproof
Remote · Remote · Full-time · $146,000
Featured Compliance

Senior Analyst, Model Risk Management

Toast
On-site · Bangalore, India · Full-time
Featured Risk

Senior Model Risk Quant Manager

OKX
On-site · Hong Kong, Hong Kong SAR · Full-time
Featured Risk

AI and Agentic AI Risk Management Senior Specialist

Nubank
On-site · Miami;, Palo Alto;, Washington DC · Full-time
Featured AI Governance

Research Scientist, Frontier Risk Evaluations

Scale AI
On-site · San Francisco, CA; New York, NY · Full-time
Featured Risk

GRC Specialist

Collibra
On-site · Raleigh, North Carolina · Full-time · $72,000 - $90,000
Featured Governance

Director of Security, GRC

Aledade
Remote · Remote · Full-time
Featured Governance

Director, AI Ethics & Responsible Use

Marriott International
Hybrid · Bethesda, MD · Full-time · $118,900 to $191,600
Featured AI Governance
New NIST AI RMF GRC roles, the moment they post. Tell us where to send them.

Unsubscribe anytime, one click.
More regulations: EU AI Act · ISO/IEC 42001 · GDPR · CCPA / CPRA · SOC 2 · SR 11-7 · HIPAA · DORA · ISO/IEC 27001
All GRC jobs · Job alerts