Senior Governance, Risk & Compliance Analyst

CoreWeave
New York, NY, US
$150K-$170K a year
Full-time

Job Description

Job Description

CoreWeave is the AI Hyperscaler™, delivering a cloud platform of cutting edge services powering the next wave of AI. The company's technology provides enterprises and leading AI labs with the most performant, efficient and resilient solutions for accelerated computing.

Since 2017, CoreWeave has operated a growing footprint of data centers covering every region of the US and across Europe.

CoreWeave was ranked as one of the TIME100 most influential companies of 2024.

As the leader in the industry, we thrive in an environment where adaptability and resilience are key. Our culture offers career-defining opportunities for those who excel amid change and challenge.

If you're someone who thrives in a dynamic environment, enjoys solving complex problems, and is eager to make a significant impact, CoreWeave is the place for you.

Join us, and be part of a team solving some of the most exciting challenges in the industry.

CoreWeave powers the creation and delivery of the intelligence that drives innovation. To learn more about our values, please visit our careers website.

The Senior Governance, Risk & Compliance (GRC) Analyst at CoreWeave will be responsible for supporting the GRC Manager and internal stakeholders with the design, implementation and enforcement of security, operational and privacy controls to govern the protection of CoreWeave Cloud.

The primary focus of this role will be to conduct control readiness assessments, prepare control owners for external audits and track upcoming regulatory and compliance obligations to support CoreWeave's growth.

Core job duties include, but are not limited to :

  • Assist GRC Manager and control owners with internal assessments and external audit engagements
  • Manage technical and business stakeholders across CoreWeave to identify, design and implement controls aligned to compliance requirements.
  • Track the lifecycle of regulatory and compliance scope to ensure control assessments, evidence collection and reporting requirements are fulfilled.
  • Collaborate with Product, Solutions Architect and Engineering teams to simplify and consolidate product related compliance requirements.
  • Perform on-going control maturity assessments to identify opportunities for improvement and evidence collection automation.

Qualifications :

  • Minimum of 5 years work experience in IT, Security Compliance or Audit function, preferably in the cloud service provider industry
  • Educational Qualification : Bachelor's in Information Security, Computer Science, or related degree; Certified Information Systems Auditor (CISA) or Certified Information Systems Security Professional (CISSP) Certification or equivalent
  • Experience conducting end to end control framework assessments; documenting control effectiveness, gaps, remediation requirements and / or maturity recommendations
  • In-depth knowledge of regulatory and compliance requirements, such as : SOX, SOC 2, ISO 27001 : 2022, ISO 27701, NIST 800-53, NIST CSF, PCI DSS, FedRAMP, GDPR, UK Cyber Essentials, HIPAA, etc.
  • Experience collaborating with cross-functional teams, including engineering, infrastructure, security, etc
  • Excellent knowledge of reporting procedures and record keeping
  • Ability to succeed in a team environment or work as an individual contributor

Our compensation reflects the cost of labor across several US geographic markets. The base pay for this position ranges from $150,000-$170,000.

Pay is based on a number of factors including market location and may vary depending on job-related knowledge, skills, and experience.

What We Offer

The range we've posted represents the typical compensation range for this role. To determine actual compensation, we review the market rate for each candidate which can include a variety of factors.

These include qualifications, experience, interview performance, and location.

In addition to a competitive salary, we offer a variety of benefits to support your needs, including :

  • Medical, dental, and vision insurance - 100% paid for by CoreWeave
  • Company-paid Life Insurance
  • Voluntary supplemental life insurance
  • Short and long-term disability insurance
  • Flexible Spending Account
  • Tuition Reimbursement
  • Mental Wellness Benefits through Spring Health
  • Family-Forming support provided by Carrot
  • Paid Parental Leave
  • Flexible, full-service childcare support with Kinside
  • 401(k) with a generous employer match
  • Flexible PTO
  • Catered lunch each day in our office and data center locations
  • A casual work environment
  • A work culture focused on innovative disruption

Our Workplace

At CoreWeave, we are committed to operating as a hybrid workplace, offering employees flexibility in how they structure their time between in-office and remote work.

We recognize the significance of fostering connections, collaboration, and creativity within our office culture and its positive impact on our business.

Our philosophy operating as a hybrid workplace underscores our dedication to enabling employees to tailor work-life balance to their individual preferences.

For those who do not live within 30 miles of one of our offices, we are open to considering remote work for candidates whose skills and experience strongly align with the role.

While we prioritize a hybrid work environment for most roles, we understand the importance of flexibility and are open to remote work for specific positions and specialized skill sets.

Onboarding is essential to your success. New employees not based out of an office will be invited to attend onboarding training at one of our hubs within their first month of employment.

We continue to foster a collaborative environment by bringing teams together quarterly.

California Consumer Privacy Act - California applicants only

CoreWeave is an equal opportunity employer, committed to fostering an inclusive and supportive workplace. All qualified applicants and candidates will receive consideration for employment without regard to race, color, religion, sex, disability, age, sexual orientation, gender identity, national origin, veteran status, or genetic information.

As part of this commitment and consistent with the Americans with Disabilities Act (ADA) , CoreWeave will ensure that qualified applicants and candidates with disabilities are provided reasonable accommodations for the hiring process, unless such accommodation would cause an undue hardship.

If reasonable accommodation is needed, please contact : [email protected].

5 days ago
Related jobs
Promoted
VirtualVocations
Queens, New York

A company is looking for a Senior Analyst, Governance, Risk and Compliance. ...

Selby Jennings
New York, New York

We are partnered with a top reinsurance firm in NYC seeking talent for their insurance risk vertical. Enhance new product launches - update risk models that will undergo regular changes, new features. ...

Promoted
VirtualVocations
Queens, New York

A company is looking for a Senior Compliance Analyst to join their team remotely during US shifts. ...

Pelham Berkeley Search
New York, New York

Assess and evaluate Information Risks by conducting annual risk assessment, vulnerability Assessments and special risk assessments for new information risk related processes and trend analysis of key information risk measurements. Information Security Risk Governance Analyst. Perform key Information...

First Citizens Bank
New York, New York

The Credit Risk - Senior Risk Analyst will provide risk analytics and expert support at the highest level of operational complexity to the business (1st line of defense) and credit risk (2nd line of defense) units. The Senior Risk Analyst creates methods to evaluate credit risk and develops high-imp...

EY
New York, New York

The Sector Compliance Team focuses on services to financial organizations that address SEC, CFTC, FINRA, NFA OCC and other regulatory requirements for retail and institutional broker dealer compliance, capital markets, banking, swap dealer trading, investment management and investment advisor compli...

S&P Global
New York, New York

In the role of Digital Communication Surveillance Analyst, you will be keeping up with developments in digital communication and surveillance technology and be challenged to devise proactive compliance and risk management responses. Your work as a Digital Communications Surveillance Analyst, monitor...

City of New York
New York, New York

Reporting to the Citywide Chief Information Security Officer (CISO), the Deputy CISO for Governance, Risk & Compliance (GRC) provides leadership, executive support, strategic and tactical guidance, and complete execution for the GRC program for Cyber Command. The Deputy CISO will lead an adaptable a...

EY
New York, New York

Financial crimes compliance, Anti-Money Laundering (AML); Transaction Monitoring; Know-Your-Customer (KYC) and Customer Due Diligence (CDD); sanctions and payment screening; trading compliance within brokerage, banking and asset management; asset management compliance, surveillance and forensics; fr...

Starr Insurance Companies
New York, New York

Gather, analyze and document requirements for system changes working closely with Product Filing & Compliance Analyst and Executive Underwriting. Collaborate with IT Business Analyst for system changes and testing. Outline Compliance system changes for release notes to end users. Monitor production ...