Senior Risk and Compliance Engineer
San Francisco, CA
Applications have closed
Instacart
Order same-day delivery or pickup from more than 300 retailers and grocers. Download the Instacart app or start shopping online now with Instacart to get groceries, alcohol, home essentials, and more delivered to you <b>in as fast as 1 hour</b>...We're transforming the grocery industry
At Instacart, we invite the world to share love through food because we believe everyone should have access to the food they love and more time to enjoy it together. Where others see a simple need for grocery delivery, we see exciting complexity and endless opportunity to serve the varied needs of our community. We work to deliver an essential service that customers rely on to get their groceries and household goods, while also offering safe and flexible earnings opportunities to Instacart Personal Shoppers.
Instacart has become a lifeline for millions of people, and we’re building the team to help push our shopping cart forward. If you’re ready to do the best work of your life, come join our table.
Instacart is a Flex First team
There’s no one-size fits all approach to how we do our best work. Our employees have the flexibility to choose where they do their best work—whether it’s from home, an office, or your favorite coffee shop—while staying connected and building community through regular in-person events. Learn more about our flexible approach to where we work.
OVERVIEW
About the Role -
We are looking for a Risk and Compliance Senior Engineer to be a trusted compliance advisor at Instacart and connect with teams across the Engineering organization. You will establish controls across the enterprise, grow our risk management function, and build out automated controls.
The ideal candidate has experience designing and implementing controls, unifying multiple compliance frameworks under a single set of controls, and building automated control monitoring and alerting using leading GRC tools. You have experience in a platform technology company utilizing cloud and DevOps principles. You enjoy staying up-to-date on compliance best practices, finding tooling to automate processes, and understanding how changes in the technology landscape require us to continuously improve our strategy and approach.
About the Team -
The Governance Risk and Compliance (GRC) team works directly with our Engineering partners across Product, infrastructure, and Information Security. We also partner closely with other functions in Legal and Finance. GRC is part of the broader team driving strategic execution within Engineering and ultimately reporting to the CTO.
ABOUT THE JOB
- Design controls in a DevOps environment including change and logical access risks, and work directly with cross functional Engineering teams to meet compliance needs across several compliance frameworks (SOX, SOC-2, PCI, HIPAA, etc).
- Optimize the environment by rethinking legacy controls. align redundant controls, designing for automation, and focusing on the Engineers impacted by designed processes.
- Prioritize and execute control automations (enforcement, monitoring, evidence collection) using GRC tooling like Hyperproof.
- Define program objectives, identify key metrics, and drive stakeholder reporting.
- Scale compliance while supporting engineers and our broader business partners on compliance-related issues and providing them with the resources necessary to provide self-service solutions.
ABOUT YOU
Minimum Qualifications
- 8+ years of experience in managing compliance for complex information systems
- Experience with Technology companies building their own custom software in cloud environments
- Experience identifying commonalities in controls across multiple frameworks to drive efficiency
- Stellar written and verbal communication and relationship-building skills
- A strong sense of ownership; self-motivation and an enjoyment for a startup environment
- CISSP, CISA, CRISC, CISM, CIA, CPA, or similar qualifications/certifications
Preferred Qualifications
- Experience implementing and configuring GRC tools
- A Bachelor’s degree in Management Information Systems, Computer Science, Computer Engineering, or equivalent work experience
Accommodations & Accessibility
At Instacart, we strive to create an accessible and inclusive experience for all candidates. If you need assistance submitting an application through our career site due to a disability, please submit an Accommodations Request Form and someone from our team will reach out soon to see how we may be able to assist.
Tags: Automation CIA CISA CISM CISSP Cloud Compliance Computer Science CRISC DevOps Finance Governance HIPAA Monitoring Risk management SOC Strategy
Perks/benefits: Career development Home office stipend Startup environment Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Ethical hacker / Pentester H/F jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Chief Information Security Officer jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open Security Operations Analyst jobs
- Open Clearance-related jobs
- Open ISO 27001-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Agile-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open SaaS-related jobs
- Open Analytics-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Security Clearance-related jobs
- Open DevOps-related jobs
- Open IDS-related jobs
- Open Malware-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs
- Open CEH-related jobs
- Open Forensics-related jobs