As the GRC Lead, you will drive governance, compliance, and risk management initiatives while ensuring that our products and practices remain compliant. This role is instrumental in the advancement of our compliance and security posture and in achieving greater operational efficiency. You will be responsible for implementing the compliance plan, performing oversight, managing and mitigating organizational risk, and advising internal stakeholders.
Responsibilities
- Lead and build the company's compliance organization to establish an enterprise-wide culture of compliance and security.
- Develop and manage internal audit, risk assessment, and risk management programs aligned with industry standards to ensure compliance with applicable laws, regulations, security frameworks, and contractual obligations.
- Promote and drive risk awareness and governance related to data protection and information security.
- Develop and implement risk-based compliance policies, standard operating procedures, and security awareness training programs that incorporate the recommendation, implementation, and enforcement of relevant information security frameworks and standards.
- Collaborate with cross-functional teams to support risk management goals and objectives that align with established security controls.
- Own and manage existing security certifications and initiatives (e.g., SOC 2, ISO 27001, etc.), leading all external audit processes from end to end and coordinating all related tasks.
- Apply industry best practices, develop continuous improvement plans, and make recommendations based upon internal and external insights.
- Investigate compliance issues, analyze causes, direct appropriate actions, and track corrective action plans as needed.
Requirements
- Bachelor's Degree (BA/BS) from a four-year college or university.
- Minimum of seven years of experience working in a compliance, privacy, risk, and/or security capacity developing risk-based policies and controls.
- Ability to self-manage work and meet important deadlines in a fast-paced, rapidly evolving environment.
- Strong track record of successful collaboration across a diverse range of stakeholders, including internal teams and external parties (auditors, contractors, etc.).
- Excellent research and communication skills with the ability to effectively translate needs and requirements across multiple disciplines.
- Expertise leading compliance initiatives, such as SOC 2, ISO 27001, etc. and responding to security questionnaires and other requests for information.
- Deep knowledge of defining, documenting, updating, and/or mapping controls, policies, procedures, and exceptions.
- Experience in managing enterprise risks and mitigation efforts.
About Together AI
Together AI is a research-driven artificial intelligence company. We believe open and transparent AI systems will drive innovation and create the best outcomes for society, and together we are on a mission to significantly lower the cost of modern AI systems by co-designing software, hardware, algorithms, and models. We have contributed to leading open-source research, models, and datasets to advance the frontier of AI, and our team has been behind technological advancement such as FlashAttention, Hyena, FlexGen, and RedPajama. We invite you to join a passionate group of researchers and engineers in our journey in building the next generation AI infrastructure.
Compensation
We offer competitive compensation, startup equity, health insurance and other competitive benefits. The US base salary range for this full-time position is: $160k - 230k+ equity + benefits. Our salary ranges are determined by location, level and role. Individual compensation will be determined by experience, skills, and job-related knowledge.
Equal Opportunity
Together AI is an Equal Opportunity Employer and is proud to offer equal employment opportunity to everyone regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity, veteran status, and more.
Please see our privacy policy at https://www.together.ai/privacy
