The OpportunityWe are hiring a US based, remote, SR GRC Engineer to support and scale our Assurance & Compliance function through an engineering-driven, automation-first approach.
This role is responsible for supporting compliance programs, audit readiness activities, and customer assurance initiatives while helping transform compliance from a point-in-time audit exercise into a continuous, measurable capability embedded into engineering and business operations.
You will partner closely with Engineering, Security, Legal, Privacy, Product, and business stakeholders to support compliance initiatives including SOC 2, ISO 27001, ISO 27701, CJIS, privacy programs, and future frameworks as the business evolves. You will help build scalable processes, improve audit readiness, and contribute to customer trust and regulatory alignment efforts.
This is a high-impact role for someone who enjoys operational excellence, process improvement, compliance automation, and partnering across teams to help scale a modern GRC program.
The Skillset- 5+ years of experience in GRC, cybersecurity, IT audit, or a related field
- Experience supporting audits such as SOC 2, ISO 27001, CJIS, or similar compliance frameworks.
- Experience supporting customer security reviews, audit requests, or due diligence activities.
- Experience working in SaaS or cloud-based environments, AWS preferred.
- Relevant certifications such as Security+, CISA, CRISC, ISO 27001 Internal Auditor, or similar certifications are a plus.
- Experience maintaining policies, standards, procedures, or compliance documentation.
- Ability to understand and interpret regulatory requirements and compliance frameworks.
- Familiarity with cloud environments and AWS security concepts.
- Familiarity with automation tools, workflow platforms, or technologies used to improve compliance operations.
What You BringExperience- 5+ years of experience in GRC, cybersecurity, IT audit, or a related field
- Experience supporting audits such as SOC 2, ISO 27001, CJIS, or similar compliance frameworks.
- Experience supporting customer security reviews, audit requests, or due diligence activities.
- Experience working in SaaS or cloud-based environments, AWS preferred.
- Relevant certifications such as Security+, CISA, CRISC, ISO 27001 Internal Auditor, or similar certifications are a plus.
- Experience maintaining policies, standards, procedures, or compliance documentation.
- Ability to understand and interpret regulatory requirements and compliance frameworks.
- Familiarity with cloud environments and AWS security concepts.
- Familiarity with automation tools, workflow platforms, or technologies used to improve compliance operations.
Communication and Collaboration- Strong organizational and project coordination skills.
- Excellent written and verbal communication skills.
- Ability to work effectively with technical and non-technical stakeholders.
- Ability to manage multiple priorities and deadlines.
Mindset- Process improvement mindset with a focus on efficiency and scalability.
- Strong problem-solving skills and ownership mentality.
- Strong attention to detail.
- Effective communicator and collaborator.
- Takes ownership and follows through on commitments.
- Ability to work across technical and non-technical teams.
- Comfortable learning new technologies, compliance frameworks, and business processes.
- Curious, adaptable, and eager to grow within a GRC Engineering organization.
What Success Looks Like- Audit evidence is collected accurately and efficiently.
- Compliance documentation remains accurate, organized, and current.
- Customer trust activities are completed efficiently and consistently.
- Stakeholders view compliance as a valuable business partner.
- Compliance requirements are integrated smoothly into business and engineering operations.
- Compliance processes become more efficient through automation and process improvements.
- Audit readiness activities become more proactive and scalable.
- Compliance reporting and program data remain accurate, measurable, and actionable.
- Engineering and business stakeholders receive timely support for compliance requirements.
Feeling uneasy that you haven't ticked every box? That's okay; we've felt that way too. Studies have shown women and minorities are less likely to apply unless they meet all qualifications. We encourage you to break the status quo and apply to roles that would make you excited to come to work every day.
90 Days at FlockWe prescribe to 90 day plans and believe that good days lead to good weeks, which lead to good months. This serves as a preview of the 90 day plan you will receive if you were to be hired in this role at Flock.
The First 30 Days- Learn Flock architecture, products, and compliance programs.
- Review current audit obligations and compliance initiatives.
- Build relationships with Engineering, Security, Product, Privacy, and Legal teams.
- Learn audit evidence management and compliance workflows.
The First 60 Days- Support active audit and compliance activities.
- Contribute to evidence collection and audit readiness efforts.
- Identify opportunities for process improvement and automation.
- Begin managing assigned compliance activities independently.
90 Days & Beyond- Deliver measurable improvements to compliance operations.
- Improve audit readiness and evidence management processes.
- Contribute to compliance automation initiatives.
- Become a trusted partner to stakeholders across the organization.
- Support long-term compliance maturity efforts.
Salary & EquityIn this role, you'll receive a starting salary between $130,000 and $145,000, as well as Flock Stock Options. Base salary is determined by job-related experience, education/training, as well as market indicators. Your recruiter will discuss this in-depth with you during our first chat.
LocationWe're building the impossible, together. To drive innovation through in-person collaboration, we're prioritizing candidates in our key hubs: Atlanta, Austin, Boston, Chicago, Denver, Los Angeles, New York City, and San Francisco. While we value the energy of our hub communities, we embrace remote work and welcome applications from exceptional talent across the United States.
The PerksFlexible PTO: We offer non-accrual PTO, plus 11 company holidays.
Fully-paid health benefits plan for employees: including Medical, Dental, and Vision and an HSA match.
👪
Family Leave: All employees receive 12 weeks of 100% paid parental leave. Birthing parents are eligible for an additional 6-8 weeks of physical recovery time.
Fertility & Family Benefits: We have partnered with Maven, a complete digital health benefit for starting and raising a family. Flock will provide a $50,000-lifetime maximum benefit related to eligible adoption, surrogacy, or fertility expenses.
Spring Health: Spring Health offers a variety of mental health benefits, including therapy, coaching, medication management, and digital tools, all tailored to each individual's needs.
💖
Caregiver Support: We have partnered with Cariloop to provide our employees with caregiver support.
Carta Tax Advisor: Employees receive 1:1 sessions with Equity Tax Advisors who can address individual grants, model tax scenarios, and answer general questions.
ERGs: We want all employees to thrive and feel like they belong at Flock. We offer four ERGs today - Women of Flock, Flock Proud, LEOs and Melanin Motion. If you are interested in talking to a representative from one of these, please let your recruiter know.
WFH Stipend: $150 per month to cover the costs of working from home.
Productivity Stipend: $300 per year to use on Audible, Calm, Masterclass, Duolingo and so much more.
Home Office Stipend: A one-time $750 to help you create your dream office.