GRC Engineer

Verkada is transforming how organizations protect their people and places with an integrated, privacy-sensitive AI-powered platform that includes solutions for video security, access control, air quality sensors, alarms, intercoms, and visitor management. 

We’ve got serious momentum in the market: more than 30,000 customers (including 100+ of the Fortune 500), a $5.8B valuation, more than $1 billion in annualized bookings, and backing from CapitalG, Sequoia Capital, General Catalyst, Felicis Ventures, Next47 and more. Physical AI is one of the most consequential technology shifts of our time, and Verkada is at the center of it.

You can look at all kinds of communities to see our platform’s impact in the world. It's the retailer that uses our agentic AI to deter theft before it happens. The warehouse that uses AI-powered alerts to make sure its team is protected on the floor with proper PPE. The school that’s alerted to a threat in real-time and triggers a lockdown in seconds, not minutes. We’re rapidly scaling this impact: today, more than 2 million Verkada devices are deployed across 170+ countries. 

Build and lead the GRCA function within Verkada’s Security Team. Manage risks, scale and meet Verkada’s growing compliance needs. Curate information provided to customers about Verkada’s security practices.

You'll build scalable, automated programs that enable rapid business growth while maintaining customer trust. As Verkada expands globally with increasing enterprise customers, this role is critical to meeting sophisticated security and compliance expectations that directly impact revenue and risk management.

• →Work cross functionally with Security, IT, Engineering, Product and Legal to provide guidance on security controls implementation including: effectiveness, implementation and automation
  • →Research, build and maintain tooling for testing and continuous monitoring of security controls across multiple platforms including: AWS, Github, etc.
• →Maintain the roadmap for continuous security compliance across Verkada’s Corporate, IT and Product environments with a goal of increasing automation coverage
• →Assist in the development and maintenance of company-wide security policies, procedures, and plans, and support communication to internal stakeholders regarding security and compliance best practices around applicable laws, regulations, and controls
• →Communicate progress, escalations, and issue resolution to management and team stakeholders
• →Create procedural documentation, including training materials or process documentation
• →Build relationships with a broad range of Verkada employees at all levels to accomplish program objectives and further Verkada GRC goals.
• →Implement the development and oversight of required corrective action plans relating to security compliance issues
• →Perform annual security risk assessments and prepare risk treatment plans
• →Conduct vendor security assessments to assess risks and evaluate security postures of new and existing third-party vendors/suppliers
• →Manage the Security Exception Process to enable Security teams to track exceptions, manage approvals, and improve automation
• →Assurance program (the A in GRCA) - Maintain the FAQ for customer questionnaires
• →Collaborate on Business Impact Assessments (BIA) and annual BCP/DR activities
• →Leverage AI and automation to scale the GRCA functions
• →Work closely with internal and external auditors to educate them and achieve continuous compliance over technology control environment 
• →Must be willing and able to work onsite five days per week

• Outstanding written and spoken communication skills
• Ability to effectively and autonomously accomplish outcomes across cross-functional teams in ambiguous situations
• Ability to multitask, prioritize work and meet deadlines in a fast paced environment
• Experience with AWS or another cloud service provider
• Prior experience with software companies’ compliance
• Experience with audits, risk and compliance (SOC 2, ISO27001, etc.) for cloud software products.
• 7+ years of security/IT compliance or equivalent experience
• Bonus: Experience with scripting languages such as: Python, JSON etc
• Bonus: Prior experience automating audit evidence collection

• We do sponsor and take over sponsorship of employment visas for this role. If we make you an offer, we will make every reasonable effort to get you a visa.

As an equal opportunity employer, Verkada is committed to providing employment opportunities to all individuals. All applicants for positions at Verkada will be treated without regard to race, color, ethnicity, religion, sex, gender, gender identity and expression, sexual orientation, national origin, disability, age, marital status, veteran status, pregnancy, or any other basis prohibited by applicable law.

Your application will be handled in accordance with our Candidate Privacy Policy.