×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security

GRC Risk Architect AI & Third-Party Risk

Job in San Francisco, San Francisco County, California, 94199, USA
Listing for: Crusoe Energy Systems
Full Time position
Listed on 2026-06-24
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security
Salary/Wage Range or Industry Benchmark: 60000 - 80000 USD Yearly USD 60000.00 80000.00 YEAR
Job Description & How to Apply Below
Position: Staff GRC Risk Architect for AI & Third-Party Risk

Crusoe is on a mission to accelerate the abundance of energy and intelligence. As the only vertically integrated AI infrastructure company built from the ground up, we own and operate each layer of the stack — from electrons to tokens — to power the world's most ambitious AI workloads. When you join Crusoe, you join a team that is building the future, faster.

We’re in the midst of the greatest industrial revolution of our time. The demand for AI compute is boundless, and power is a bottleneck. We’re solving that — with an energy-first approach that makes AI infrastructure better for the world and faster for the people innovating with AI.

We’re looking for problem‑solving, opportunity‑finding teammates with a sense of urgency, who believe in the scale of our ambition and thrive on a path not fully paved — people who want to grow their careers alongside a team of experts across energy, manufacturing, data center construction, and cloud services.

If you want to do the most meaningful work of your career, help our customers and partners advance their AI strategies, and be part of a high‑performing team that believes in each other, come build with us at Crusoe.

About This Role

We’re seeking a Staff GRC Risk Specialist to own and operationalize our enterprise risk function across Security Risk, AI Risk, and Third‑Party Risk Management (TPRM). This is a highly technical role, not a traditional analyst position, requiring deep fluency in product architecture, AI systems, data flows, and infrastructure to ensure compliance requirements are effectively embedded into how our platform is built and operated.

Working closely with the Head of GRC, you’ll drive the maturity of our risk management program, maintain the Risk Register, lead technical risk assessments, and deliver strategic risk reporting to leadership. You’ll also design scalable, automated GRC workflows that strengthen audit readiness, customer trust, and regulatory alignment as the business evolves.

What You’ll Be Working On

  • Owning the enterprise risk function, including development and continuous improvement of the Risk Register across identification, assessment, mitigation, and monitoring

  • Conducting deep technical risk assessments across AI systems and products, data architectures, and inference infrastructure

  • Reviewing risk for new products, features, applications, and datasets to embed security and compliance early in the development lifecycle

  • Tracking mitigation efforts, escalating critical risks, and providing clear, contextualized risk insights to stakeholders and leadership

  • Designing and delivering executive risk reporting, including quarterly briefings on emerging regulations, business changes, and compliance impact forecasts

  • Building real‑time risk and control health dashboards using GRC and data visualization platforms

  • Leading AI risk assessments aligned with emerging standards (e.g., ISO 42001, NIST AI RMF, EU AI Act considerations)

  • Optimizing AI risk intake and assessment workflows within Jira Service Management (JSM) Atlassian

  • Leveraging AI‑driven automation to scale risk activities such as control mapping, evidence validation, and risk correlation analysis

  • Owning the Third‑Party Risk Management program, including vendor risk assessments and integration with procurement and vendor workflows

What You’ll Bring to the Team

  • 7+ years of experience in GRC, security engineering, or IT risk roles with strong product and architecture fluency

  • Proven ownership of risk management programs, including risk registers, technical risk assessments, and executive‑level reporting

  • Deep knowledge of security and risk frameworks (ISO 27001, ISO 42001, SOC 2, NIST 800‑53, NIST CSF, NIST AI RMF, HIPAA) and their application to real‑world systems

  • Strong understanding of cloud‑native architectures and security controls across AWS, GCP, or Azure

  • Experience with GRC platforms (e.g., Vanta, Drata, One Trust, Service Now GRC) and workflow tools such as Jira Service Management

  • Demonstrated ability to leverage AI‑powered tools and agents to automate GRC workflows and scale risk operations

Bonus Points

  • Experience with quantitative risk frameworks such as FAIR, COSO, or ISO 31000

  • Hands‑…

To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search