Governance, Risk & Compliance; GRC Engineer
San Francisco, San Francisco County, California, 94199, USA
Listed on 2026-07-14
-
IT/Tech
Cybersecurity, Information Security
Hi there! We are fal, and we are on a mission to build world’s first generative media platform for developers.
We built a serverless runtime for Python that is optimized to run large ML models on 1000s of GPUs efficiently.
The applications built on our platform are currently serving millions of users around the world and our goal is to 1000x that over the next few years.
fal is an in‑person company based in San Francisco. Today, we are 80 people strong, and we are looking for team members who share our excitement about the fast‑moving nature of AI and can independently build world‑class infrastructure.
Governance, Risk & Compliance (GRC) Engineer LocationEmployment Type
Full time
Location TypeOn‑site
DepartmentRole Overview
As a GRC Engineer, you will be responsible for designing, implementing, and continuously improving Fal’s governance, risk management, and compliance programs. You will help ensure that our security controls meet regulatory, contractual, and customer requirements while enabling the business to move quickly.
This role combines technical security knowledge with compliance expertise and requires strong cross‑functional collaboration skills. The ideal candidate understands cloud infrastructure, modern security practices, and compliance frameworks and can translate technical controls into business and regulatory requirements.
What You’ll Do Governance & ComplianceManage and improve Fal’s security compliance programs, including:
- SOC 2
- ISO 27001
- GDPR
- Emerging AI governance frameworks
- Coordinate internal and external audits.
- Maintain security policies, standards, procedures, and control documentation.
- Develop compliance automation and continuous monitoring processes.
- Support security awareness and policy governance initiatives.
- Lead enterprise risk assessments and risk register management.
- Perform vendor and third‑party risk assessments.
- Conduct control gap analyses and remediation tracking.
- Facilitate risk reviews with stakeholders across engineering and business teams.
- Develop metrics and reporting for risk and compliance leadership.
Support enterprise security reviews and customer due diligence requests.
Assist with security questionnaires, audits, and RFP responses.
Help maintain trust center content and security documentation.
Partner with Sales, Legal, and Customer Success to address customer security concerns.
Security Engineering & Control ValidationCollaborate with Security and Infrastructure teams to implement and validate security controls.
Evaluate cloud and AI infrastructure against security requirements.
Assess effectiveness of technical safeguards including:
- Identity and access management
- Logging and monitoring
- Vulnerability management
- Data protection controls
Support evidence collection and control testing.
Program DevelopmentBuild scalable GRC processes that reduce manual effort.
Identify opportunities for compliance automation.
Develop governance frameworks for emerging AI and machine learning technologies.
Support strategic security initiatives and certifications.
Compensation Range: $150K - $250K
What we offer at fal- Interesting and challenging work
- Competitive salary and equity
- We are currently hiring in downtown San Francisco. We prefer to work in‑person but we also offer remote work opportunities for exceptional candidates.
- We offer visa sponsorship and will help you relocate to San Francisco.
- Health, dental, and vision insurance (US)
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).