GRC Manager

CloudZero, Inc.

Job Overview

Location

Boston

Job Type

Full-time

Full Job Description

📋 Description

• As the GRC Manager at CloudZero, you will own and scale governance, risk, and compliance programs to support the company’s rapid growth and complex regulatory landscape, ensuring trust and enabling secure business velocity.
• You will design and operate a comprehensive GRC framework, lead SOC 2 audits, maintain risk registers, own business continuity and third-party risk programs, and drive security awareness training while partnering across Legal, Engineering, Product, Sales, and G&A teams.
• You will enable sales revenue by owning security questionnaire processes (VSAs, SIGs), reviewing contract language, building compliance artifact libraries, automating response workflows, and maintaining the trust center to accelerate deal cycles without compromising quality.
• You will serve as a key stakeholder in AI governance and strategic risk initiatives, track evolving regulations (GDPR, CCPA), and leverage AI tools to automate repetitive GRC tasks and improve operational efficiency.
• Reporting to the Sr. Director of IT & Security in the Office of the CTO, you will operate in a hybrid model (2–3 days/week in Boston) and help CloudZero prove cloud efficiency through strong governance that turns compliance into a competitive advantage.

🎯 Requirements

• 5+ years of experience in governance, risk, and/or compliance roles, preferably in a SaaS or cloud technology company
• Proven experience building or maturing a GRC program with hands-on involvement in SOC 2 or similar certification audits
• Working knowledge of risk management frameworks such as COSO, ISO 31000, or NIST RMF
• Solid understanding of GDPR, CCPA, and how data privacy obligations translate into practical controls and policies
• Strong communicator able to make risk and compliance topics accessible to technical teams, business partners, and senior leadership
• Ability to drive initiatives from scoping to completion while managing multiple workstreams in a fast-paced environment

🏖️ Benefits

• Opportunity to own and scale a critical GRC function in a high-growth SaaS company solving major cloud cost challenges
• Hybrid work model with 2–3 days per week in-office in Boston, enabling collaboration and flexibility
• Exposure to cutting-edge AI tools (e.g., Claude, Claude Code) to automate GRC tasks and drive efficiency
• Involvement in strategic initiatives including AI governance, business continuity, and third-party risk management
• Backed by over $56 million in VC funding, CloudZero is solving problems of massive scale and business importance in a critical market

Skills & Technologies

AWS

Azure

GCP

Hybrid

Ready to Apply?

Apply Externally

You will be redirected to an external site to apply.

CloudZero, Inc.

Visit Website

About CloudZero, Inc.

CloudZero provides a cloud cost intelligence platform that helps engineering and finance teams understand, manage, and optimize their cloud spending. Its solution offers real-time visibility into cloud costs, breaking them down by application, team, feature, or any business dimension. This allows organizations to identify cost anomalies, allocate costs accurately, and make data-driven decisions to reduce waste and improve efficiency. By connecting engineering metrics with financial data, CloudZero enables proactive cost management, fostering a culture of cost accountability across the organization and ensuring that cloud investments deliver maximum business value. It integrates with major cloud providers like AWS, Azure, and GCP.

View Company Profile

Get more remote jobs like this

Subscribe to the weekly newsletter for similar remote roles and curated hiring updates.

Weekly remote jobs and featured talent.

No spam. Only curated remote roles and product updates. You can unsubscribe anytime.