Director, Governance, Risk and Compliance (GRC)

Confluent Inc.

Job Overview

Location

Remote, California

Job Type

Full-time

Full Job Description

📋 Description

• As Director of Governance, Risk and Compliance (GRC) at Confluent Inc., you will serve as the strategic architect of trust, transforming GRC from a compliance function into a business enabler that underpins customer confidence and supports secure innovation in real-time data streaming.
• You will lead the evolution of Confluent’s GRC program by designing a unified control framework aligned with SOC 2, ISO 27001, FedRAMP, NIST CSF, and PCI-DSS, enabling ‘test once, comply many’ efficiency while integrating AI-driven risk quantification and continuous compliance automation.
• In this role, you will partner closely with Information Security Engineering to translate risk findings into actionable engineering programs, lead Technical Program Management (TPM) initiatives like identity management and AI governance, and drive cross-functional projects that reduce risk without slowing developer velocity.
• You will act as a trusted advisor to sales, the Office of the CISO (OCISO), and executive leadership, using customer insights and pipeline data to shape a GRC roadmap that accelerates deals and builds trust with Fortune 500 clients and auditors.
• You will oversee third-party risk management (TPRM), ensuring vendors and AI sub-processors meet Confluent’s security standards, while orchestrating external audits and certifications as the primary liaison with regulators and audit firms.
• You will build and mentor a high-performing GRC team, fostering a culture of proactive risk management where engineering, product, and GRC collaborate as partners to enable secure, scalable innovation.
• You will develop executive-facing risk dashboards and scorecards that translate technical risk into business impact, empowering the C-suite and Board with data-driven insights on residual risk, top threats, and security posture.
• You will champion the integration of AI into GRC operations—automating evidence collection, enhancing control monitoring, and using predictive analytics to anticipate and mitigate emerging risks before they materialize.

🎯 Requirements

• 10+ years of progressive experience in Information Security, Risk Management, or IT Audit, with 5+ years of leadership experience managing GRC teams in high-growth SaaS or cloud-native environments, including experience leading managers and individual contributors.
• Expert-level knowledge of SOC 2 Type II, ISO 27001/27701, NIST 800-53, and PCI-DSS, with strong familiarity with FedRAMP High/Moderate authorization processes and continuous monitoring requirements highly preferred.
• Demonstrated ability to translate complex technical risks into business terms for C-suite and Board audiences, combined with proven Technical Program Management (TPM) skills using tools like Jira/Confluence and experience driving cross-functional engineering programs to closure.

🏖️ Benefits

• Opportunity to shape and lead a strategic GRC function at a pioneering data streaming company trusted by global enterprises, where your work directly enables customer trust and revenue acceleration.
• Hybrid remote work flexibility based in California, with access to Confluent’s inclusive culture that values diverse perspectives and empowers employees to lead, grow, and challenge the status quo.
• Comprehensive benefits package including health, wellness, and professional development support, backed by IBM’s resources as Confluent’s parent company, with strong emphasis on belonging, equity, and opportunity for all.

Skills & Technologies

React

AWS

Azure

GCP

Kubernetes

Remote

Degree Required

Ready to Apply?

Apply Externally

You will be redirected to an external site to apply.

Confluent Inc.

Visit Website

About Confluent Inc.

Confluent Inc. delivers a cloud-native data streaming platform built around Apache Kafka. It provides real-time data pipelines, stream processing, and event-driven architecture tools for enterprises. The company offers managed services, connectors, and analytics to unify data across on-premises and cloud environments. Industries use Confluent to power fraud detection, IoT, logistics, and customer experiences. Founded by Kafka creators, it operates globally with offices in the U.S., Europe, and Asia.

View Company Profile

Get more remote jobs like this

Subscribe to the weekly newsletter for similar remote roles and curated hiring updates.

Weekly remote jobs and featured talent.

No spam. Only curated remote roles and product updates. You can unsubscribe anytime.