This job has closed.

Cerebras · 13 hours ago

Cybersecurity GRC Engineer

San Francisco, CA

Full-time

Onsite

Mid, Senior Level

4+ years exp

Cerebras Systems builds the world's largest AI chip, which revolutionizes AI compute power. The Cybersecurity GRC Engineer will drive compliance and enhance security governance, risk, and compliance processes while leveraging AI tools to automate and improve GRC activities.

AI InfrastructureArtificial Intelligence (AI)ComputerHardwareSemiconductorSoftware

Growth Opportunities

H1B Sponsor Likely

Responsibilities

Automation of Manual GRC Processes

Understand, Automate, and Enhance currently manual GRC activities (e.g. risk‑assessment questionnaires, risk register, control‑evidence collection, audit‑readiness, supplier management, exception handling, etc.)

Leverage generative AI and automation to prepare security questionnaire responses and evidence, synthesize findings, and propose remediation actions while embedding required human‑in‑the‑loop approvals

Integrate automated workflows across toolsets, CI/CD pipelines, and ticketing systems to create a single source of truth

Define success metrics (time saved, error reduction, audit‑readiness score) and continuously monitor, refine, and report on the automation’s impact

Translate frameworks (e.g., ISO 27001, SOC 2, NIST SP800-53 / CSF, GDPR, CCPA, HIPAA, FedRAMP, etc.) into policy‑as‑code

Engineer and automate security controls across infrastructure, cloud, and SaaS systems to strengthen our control environment and streamline evidence collection

Build reusable IaC modules that enforce security baselines and continuously verify compliance

Embed compliance checks into CI/CD pipelines (e.g., GitHub Actions, Jenkins)

Design environments where evidence is produced automatically

Design environments that cannot operate any other way than in-compliance with controls

Develop automated remediation playbooks and “push-button” routines to address suspected policy violations

Collaborate with cross-functional teams to ensure new projects and systems are designed with security and compliance embedded / integrated

Support internal and external audits by providing documentation, evidence, and responses to audit findings

Implement, configure, and maintain GRC solutions, platforms, and/or toolsets. Build API‑based connectors to ingest data from cloud services, security tools, ticketing systems, asset‑management tools, and AI‑generated outputs

Architect, develop, and maintain real‑time compliance dashboards that visualize risk scores, control coverage, policy drift, and remediation status

Automate the generation of periodic compliance posture and audit readiness reports (e.g., SOC 2, ISO 27001, NIST, etc.) and deliver them to management

Qualification

CybersecurityGRCCompliance-as-CodeAI ProficiencyScripting/ProgrammingIaCCI/CD IntegrationISO 27001Analytical thinkingCommunicationProblem-solving

Required

Education: Bachelor's degree in Computer Science, Information Security, Information Systems, or a related field (or equivalent practical experience)

Experience: 4+ years in Cybersecurity / Information Security, GRC, security engineering, or infrastructure automation; proven track record automating manual GRC processes and building compliance-as-code programs

Strong scripting/programming (e.g., Python, Shell, PowerShell, YAML/JSON)

AI Proficiency: Demonstrated proficiency using generative AI/LLMs for content creation, code assistance, and/or data summarization; ability to craft effective prompts, validate outputs, and embed AI into production workflows

Experience with IaC, Policy-as-Code, CI/CD pipeline integration, cloud-based platforms (AWS)

Industry Standard / Regulatory Knowledge: Practical understanding of ISO 27001, SOC 2, NIST SP800-53, NIST CSF, GDPR/CCPA, and ability to translate them into technical controls

Excellent communication - able to explain technical controls and AI-generated findings to non-technical stakeholders

Strong analytical thinking and problem-solving

Ability to thrive in a fast-growing, cross-functional environment

Preferred

Agentic AI Experience – Designing, training, and supervising autonomous AI agents (e.g. custom function calling bots) that can autonomously scan IaC, generate remediation code, draft evidence artifacts, and/or run periodic compliance checks

Professional Certifications: CISSP, CISM, CRISC, CCSP

Experience conducting security audits (e.g., SOC 2 Type II, ISO 27001 certification, ITGCs)

Experience configuring and/or administering Compliance Automation, TPRM, and/or GRC tools / apps (e.g. Vanta, Drata, ServiceNow, Archer, ProcessUnity, OneTrust, etc.)

Company

Cerebras

Cerebras Systems is the world's fastest AI inference. We are powering the future of generative AI.

Founded in 2016

Sunnyvale, California, USA

501-1000 employees

https://cerebras.ai

H1B Sponsorship

Cerebras has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)

Distribution of Different Job Fields Receiving Sponsorship

Represents job field similar to this job

Trends of Total Sponsorships

2025 (31)

2024 (16)

2023 (18)

2022 (17)

2021 (34)

2020 (23)

Funding

Current Stage

Late Stage

Total Funding

$1.82B

Key Investors

Alpha Wave VenturesVy CapitalCoatue

2025-12-03Secondary Market

2025-09-30Series G· $1.1B

2024-09-27Series Unknown

Leadership Team

Andrew Feldman

CEO & Founder

Bob Komin

Chief Financial Officer

Recent News

Qualcomm Ventures

Qualcomm Ventures Portfolio

2026-01-13

Crunchbase News

Sector Snapshot: US Semiconductor Startup Funding Hits Record High

2026-01-06

Benzinga.com

Who's Going Public Next? Kalshi Bets Drop US IPO Clues Before 2027— And It's Not Just SpaceX Or OpenAI

2026-01-03

Company data provided by crunchbase