GRC Careers

JobsSOC 2

SOC 2 Compliance Jobs

SOC 2 is the AICPA's trust and security attestation, the standard SaaS and cloud companies use to prove their controls to customers.

New SOC 2 GRC roles, the moment they post. Tell us where to send them.

Unsubscribe anytime, one click.

SOC 2 is an attestation report, defined by the AICPA's Trust Services Criteria, that tells customers an organization's controls over security, and optionally availability, processing integrity, confidentiality, and privacy, are designed and operating effectively. A Type I report assesses design at a point in time, a Type II report assesses operating effectiveness over a period, usually three to twelve months. It is not a law, but for B2B software and cloud companies it has become the price of doing business, the report a prospect's security team asks for before signing.

Because almost every SaaS company needs one, SOC 2 readiness and audit work is one of the highest-volume entry points in GRC. The roles run from building the control environment and evidence collection to managing the audit and the auditor relationship, and they are a common on-ramp to broader security-compliance and GRC careers.

SOC 2: Frequently Asked Questions

What is SOC 2?

SOC 2 is an attestation report based on the AICPA Trust Services Criteria that demonstrates an organization's controls over security and, optionally, availability, processing integrity, confidentiality, and privacy are effective.

What is the difference between SOC 2 Type I and Type II?

Type I assesses whether controls are suitably designed at a point in time. Type II assesses whether they operated effectively over a period, typically three to twelve months.

Is SOC 2 required by law?

No. SOC 2 is voluntary, but it is effectively required by customers in B2B software and cloud, where security teams request it before purchasing.

Open SOC 2 GRC roles (33)

GRC and AI Governance - Senior Manager

CFGI
Hybrid · Remote · Full-time
AI Governance

Governance, Risk & Compliance (GRC) Manager

Sigma Computing
On-site · San Francisco, CA · Full-time · $190,000 to $215,000
Featured Governance

Senior GRC Engineer

Lantern
Hybrid · Dallas, TX · Full-time
Featured Governance

Manager, GRC Subject Matter Experts, Product

Vanta
Remote · Remote · Full-time
Featured Governance

Senior GRC Specialist

Cohere
On-site · Toronto · Full-time
Featured Governance

Senior AI GRC Engineer

Vanta
Remote · . · Remote · Full-time
Featured AI Governance

Senior GRC Lead

Brex
On-site · San Francisco, California · Full-time · $153,600 - $192,000
Featured Governance

Senior Compliance Advisor

Drata
Remote · Remote · Full-time
Featured Compliance

Security GRC Manager: Customer Trust Enablement

Sierra
On-site · San Francisco, CA · Full-time
Featured Governance

Senior Director of Governance, Risk and Compliance

Ripple
On-site · San Francisco, CA · Full-time · $300,000
Featured Compliance

Director of Governance, Risk, and Compliance (GRC)

Hyperproof
Remote · Remote · Full-time · $146,000
Featured Compliance

Senior Fullstack Engineer, Vendor Risk Management - UK

Vanta
On-site · London, UK · Full-time
Featured Risk

Compliance Program Assistant Manager

Cohere Health
On-site · Hyderabad, Telangana, India · Full-time
Featured Compliance

Senior Compliance Engineer

Anduril Industries
On-site · Costa Mesa, California · Full-time · $146,000
Featured Compliance Secret

Governance Risk and Compliance

Figma
On-site · San Francisco, CA • New York, NY • · Full-time · $153,000
Featured Compliance

Engineering Manager, GRC Platform

Anthropic
On-site · San Francisco, CA New York City, NY Seattle · Full-time · $405,000
Featured Governance

Staff+ Software Engineer, GRC Platform

Anthropic
On-site · San Francisco, CA New York City, NY Seattle · Full-time · $405,000
Featured Governance

Internal Audit IT Associate Manager

Coinbase
Remote · Remote · Full-time · $130,900
Featured Audit

Internal Audit IT Manager

Coinbase
Remote · Remote · Full-time · $166,345
Featured Audit

Senior IT Auditor

Ethos
On-site · Bangalore, India · Full-time
Featured Audit

GRC Specialist

Collibra
On-site · Raleigh, North Carolina · Full-time · $72,000 - $90,000
Featured Governance

Staff+ Security Engineer, Risk Engineering

Anthropic
On-site · San Francisco, CA New York City, NY Seattle · Full-time · $405,000
Featured Risk

Senior Fullstack Engineer, Vendor Risk Management

Vanta
On-site · London, UK · Full-time
Featured Risk

Insider Risk Analyst - SkillBridge Intern

Zscaler
Remote · Remote · Full-time
Featured Risk

Senior Engineering Manager, Privacy & Data Security

Vanta
On-site · London, UK · Full-time
Featured Privacy

Group Product Manager, GRC Workflows

Vanta
Remote · . · Remote · Full-time
Featured Governance

Senior Manager, Audit Partnerships

Vanta
Remote · . · Remote · Full-time
Featured Audit

HR Compliance, Risk & Policy Lead

Commure
On-site · Mountain View, CA · Full-time
Featured Compliance

Senior HR Compliance Manager

Commure
On-site · Mountain View, CA · Full-time
Featured Compliance

Senior Fullstack Software Engineer, Privacy & Data Security

Vanta
On-site · London, UK · Full-time
Featured Privacy

GRC Engineer

Verkada
On-site · San Mateo, CA · Full-time · $200,000
Featured Governance

Staff Analyst, Customer Audit

Okta
On-site · Bellevue, Washington; Chicago, Illinois; New York · Full-time
Featured Audit

Director of Security, GRC

Aledade
Remote · Remote · Full-time
Featured Governance
New SOC 2 GRC roles, the moment they post. Tell us where to send them.

Unsubscribe anytime, one click.
More regulations: EU AI Act · NIST AI RMF · ISO/IEC 42001 · GDPR · CCPA / CPRA · SR 11-7 · HIPAA · DORA · ISO/IEC 27001
All GRC jobs · Job alerts