Senior Staff Engineer, Compliance Automation
About The Position
We’re hiring a Senior Staff Engineer, Compliance Automation to build a high-rigor, audit-ready compliance engineering function across Nscale’s global AI infrastructure. This is a hands-on senior individual contributor role at the intersection of security, compliance, and engineering. You will work directly with infrastructure, platform, and product engineering teams to turn compliance requirements into durable engineering systems, automation, and continuous assurance mechanisms. As Nscale expands into regulated enterprise markets, this role is critical to how we earn and maintain customer trust. You’ll help define how compliance programs are operated, automated, and scaled, creating the automation-first foundation that enables the GRC function to grow with the business.
Requirements
- 10+ years of experience in security compliance, GRC, or assurance engineering
- Deep, hands-on expertise across ISO 27001, SOC 2 Type II, and NIST CSF
- Strong understanding of cloud infrastructure, security controls, and modern engineering environments
- Demonstrated experience building automation-first compliance programs at scale
- Experience working directly with engineering teams to implement compliance-as-code
- Track record of replacing manual compliance work with sustainable automation
- Experience with continuous control monitoring in production environments
- Hands-on experience with modern GRC platforms such as Vanta, Drata, or ServiceNow GRC
- Experience with AI infrastructure, hyperscale, or other regulated environments
- Experience operating across multiple geographies, including NA, EMEA, and APAC
Responsibilities
- Lead the technical execution of compliance programs across ISO 27001 family, SOC 2 Type II, NIS2, NIST CSF, and other applicable frameworks.
- Build unified control mappings across frameworks to reduce duplicate evidence work and ensure controls satisfy multiple requirements simultaneously.
- Design evidence repositories, remediation workflows, and reporting structures that scale with the business.
- Own audit readiness for major certifications, including evidence completeness, cross-framework control mappings, and audit defensibility.
- Support external audit engagements by providing auditor-ready evidence and control narratives.
- Partner alongside the customer-trust lead to address deep technical control questions.
- Report on compliance posture, control effectiveness, and audit risk to senior leadership.
- Build automation-first compliance systems using modern GRC platforms such as Vanta, Drata, or equivalent.
- Implement continuous control monitoring to shift the function from point-in-time evidence collection to ongoing assurance.
- Evaluate and deploy AI-assisted workflows where they improve evidence collection, control validation, audit preparation, or remediation tracking.
- Reduce manual compliance effort through integrations, automation, and engineering-led tooling.
- Partner directly with infrastructure, platform, and product engineering teams to embed compliance into systems by design.
- Translate framework requirements into engineering-actionable controls.
- Build mechanisms for compliance validation in production environments instead of relying on manual checks.
- Help shape the broader GRC program architecture as it grows.
- Contribute to roadmap planning, tooling decisions, and team strategy.
Benefits
- Highly competitive US compensation package (base + bonus + equity)
- Performance reviews every 12 months
- Dynamic progression plan tailored to your ambitions
- Flexible workplace
- Medical, dental, vision
- Flexible paid time off
- Parental leave
- Retirement plan participation
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Senior
Education Level
No Education Listed
