Fireworks AI · 1 day ago
Governance, Risk & Compliance (GRC) Lead
San Mateo, CA
Full-time
Onsite
Senior Level
7+ years expFireworks AI is a Series C company focused on building generative AI infrastructure. They are seeking an experienced Governance, Risk & Compliance (GRC) Lead to build, scale, and mature their compliance and risk management program, partnering with various teams to establish controls and manage risk.
Artificial Intelligence (AI)SaaSBig DataSoftwareData Management
Responsibilities
Design and execute of our Governance, Risk, and Compliance (GRC) strategy, successfully implementing and maintaining key industry frameworks (e.g., SOC 2 Type II, ISO 27001/27701, PCI, HIPAA), ensuring all certification requirements are met
Oversee all continuous monitoring activities across the compliance program, including but not limited to formal access reviews, ongoing vendor due diligence, policy compliance reviews, and mandatory security training enforcement
Serve as the primary liaison for all external audit bodies, directing the end-to-end audit lifecycle, from scoping and evidence gathering to artifact review and timely remediation of findings
Establish and maintain a robust global privacy compliance program for all data processing activities, ensuring adherence to regulations like GDPR, CCPA, and CPRA
Design and implement scalable GRC processes, documentation, and tooling to support hyper-growth and the efficient adoption of new compliance frameworks (e.g., ISO 42001 for AI)
Develop and lead the company-wide risk assessment program, identifying, evaluating, and prioritizing data security and compliance risks, and driving the implementation of effective mitigation strategies
Own the Third-Party Risk Management (TPRM) program, conducting due diligence, and contract review
Author, update, and enforce all policies, specifically integrating security, data privacy, and the emerging field of AI safety and ethics into the policy lifecycle
Follow and help shape the AI regulatory and standards landscape to keep the company at the forefront of industry developments and best practices
Qualification
Required
7+ years of experience in Governance, Risk, and Compliance (GRC) roles, with at least 3 years in a leadership capacity overseeing audit and certification efforts
Leading GRC/Security in a high-growth, cloud-native technology environment
Demonstrated expertise with GRC platforms (e.g., Vanta) to automate and scale compliance operations
Ability to translate complex regulatory and audit requirements (e.g., ISO, SOC 2) into clear, documented, and actionable engineering work-streams
Strong commitment to cross-functional collaboration with IT, Security, GTM, and Engineering
Self-motivated, detailed and organized, with a diligent approach to project completion
Excellent written, verbal, and interpersonal communication skills
Company
Fireworks AI
Fireworks AI is an advanced platform that enables users to build, tune, and scale AI applications using open-source models
51-200 employees
H1B Sponsorship
Fireworks AI has a track record of offering H1B sponsorships. Please note that this does not
guarantee sponsorship for this specific role. Below presents additional info for your
reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2025 (11)
2024 (3)
2023 (1)
Funding
Current Stage
Growth StageTotal Funding
$327MKey Investors
Evantic Capital,Index Ventures,Lightspeed Venture PartnersSequoia CapitalBenchmark
2025-10-28Series C· $230M
2025-10-28Secondary Market· $20M
2024-07-07Series B· $52M
Leadership Team
Lin Qiao
CEO and cofounder
Aishwarya Srinivasan
Head of AI Developer Relations
Recent News
Dynamic Business
2026-01-20
2026-01-19
2026-01-16
Company data provided by crunchbase