Back to jobs

Director of Governance, Risk, and Compliance (GRC)

Sunnyvale CA or Toronto Canada

Cerebras Systems builds the world's largest AI chip, 56 times larger than GPUs. Our novel wafer-scale architecture provides the AI compute power of dozens of GPUs on a single chip, with the programming simplicity of a single device. This approach allows Cerebras to deliver industry-leading training and inference speeds and empowers machine learning users to effortlessly run large-scale ML applications, without the hassle of managing hundreds of GPUs or TPUs.  

Cerebras' current customers include global corporations across multiple industries, national labs, and top-tier healthcare systems. In January, we announced a multi-year, multi-million-dollar partnership with Mayo Clinic, underscoring our commitment to transforming AI applications across various fields. In August, we launched Cerebras Inference, the fastest Generative AI inference solution in the world, over 10 times faster than GPU-based hyperscale cloud inference services.

About The Role 

The Director of Governance, Risk, and Compliance (GRC) is accountable for establishing and scaling a risk-centric, engineering-driven compliance program that supports the security, privacy, and regulatory posture of the organization. The ideal candidate will bring a unique blend of deep technical acumen and regulatory expertise, enabling the creation of compliance mechanisms that are measurable, automated, and resilient. This is a strategic, cross-functional, and customer-facing leadership role reporting directly to the CISO. 

A successful candidate would have strong engineering background alongside a comprehensive understanding of regulatory frameworks (e.g., NIST, ISO, SOC 2, PCI-DSS). They will be responsible for transforming compliance into a proactive, testable discipline using automation, continuous auditing, and AI-based prioritization.  

Key Responsibilities 

GRC Strategy & Program Leadership 

  • Design and implement a compliance strategy that embeds engineering principles (e.g., code-based controls, CI/CD-integrated validations). 
  • Develop a compliance operating model that includes automated control testing, self-service reporting, and AI-enhanced risk analysis. 
  • Define and manage the GRC roadmap aligned with business priorities, regulatory requirements, and customer obligations. 
  • Establish a governance framework to enforce accountability across all compliance stakeholders. 

Security, Privacy, and Risk Management 

  • Build and maintain enterprise-level risk registers, control matrices, and audit readiness documentation. 
  • Oversee regulatory assessments, internal/external audits, and certification initiatives (e.g., SOC 2, ISO 27001). 
  • Implement continuous control monitoring and evidence collection pipelines integrated into cloud-native and on-prem environments. 

Engineering-Based Compliance Enablement 

  • Partner with engineering and product teams to define and codify security and compliance requirements as part of the SDLC. 
  • Introduce automated security/compliance tests into CI/CD pipelines to support shift-left practices. 
  • Drive usage of GenAI for compliance gap detection, policy mapping, risk triaging, and customer assurance functions. 

Customer-Facing Security Enablement 

  • Serve as the security and compliance representative in customer meetings, RFPs, and audits. 
  • Build and scale a customer trust program that provides transparency and assurance through real-time evidence, standardized reporting, and proactive communication. 
  • Lead internal readiness for third-party audits and external assessments and maintain ongoing compliance posture. 

Team Building and Leadership 

  • Build and lead a high-performing GRC team with expertise in both engineering and compliance domains.
  • Foster a results-driven, agile work culture focused on automation, clarity, and customer enablement.
  • Drive operational excellence by establishing key performance indicators (KPIs) and service-level objectives (SLOs). 

Skills And Qualifications 

Required Experience 

  • Bachelor’s degree in computer science, Cybersecurity, or related engineering field; advanced degree preferred. 
  • Minimum 10 years of progressive experience in security engineering, risk management, or compliance leadership. 
  • Proven success leading compliance programs in cloud-native, SaaS/PaaS environments with high automation maturity. 
  • Demonstrated ability to manage customer-facing compliance engagements and audit preparation. 

Technical and Domain Expertise 

  • Deep knowledge of regulatory frameworks (NIST 800-53, ISO 27001, SOC 2, PCI-DSS, HIPAA). 
  • Proficiency in cloud security, DevSecOps practices, and infrastructure-as-code (IaC) security tooling. 
  • Experience implementing automated compliance and control validation pipelines. 
  • Familiarity with AI/ML usage in security operations and risk analysis is highly desirable. 

Soft Skills 

  • Excellent communication, stakeholder management, and executive reporting skills. 
  • Ability to influence cross-functional teams and operate in fast-paced, high-growth environments. 
  • Strong analytical and decision-making capabilities. 

 

Why Join Cerebras

People who are serious about software make their own hardware. At Cerebras we have built a breakthrough architecture that is unlocking new opportunities for the AI industry. With dozens of model releases and rapid growth, we’ve reached an inflection  point in our business. Members of our team tell us there are five main reasons they joined Cerebras:

  1. Build a breakthrough AI platform beyond the constraints of the GPU.
  2. Publish and open source their cutting-edge AI research.
  3. Work on one of the fastest AI supercomputers in the world.
  4. Enjoy job stability with startup vitality.
  5. Our simple, non-corporate work culture that respects individual beliefs.

Read our blog: Five Reasons to Join Cerebras in 2025.

Apply today and become part of the forefront of groundbreaking advancements in AI!

Cerebras Systems is committed to creating an equal and diverse environment and is proud to be an equal opportunity employer. We celebrate different backgrounds, perspectives, and skills. We believe inclusive teams build better products and companies. We try every day to build a work environment that empowers people to do their best work through continuous learning, growth and support of those around them.

This website or its third-party tools process personal data. For more details, click here to review our CCPA disclosure notice.

Apply for this job

*

indicates a required field

Resume/CV*

Accepted file types: pdf, doc, docx, txt, rtf

Education

Select...
Select...
Select...

Voluntary Self-Identification

For government reporting purposes, we ask candidates to respond to the below self-identification survey. Completion of the form is entirely voluntary. Whatever your decision, it will not be considered in the hiring process or thereafter. Any information that you do provide will be recorded and maintained in a confidential file.

As set forth in Cerebras Systems’s Equal Employment Opportunity policy, we do not discriminate on the basis of any protected group status under any applicable law.

Select...
Select...
Race & Ethnicity Definitions

If you believe you belong to any of the categories of protected veterans listed below, please indicate by making the appropriate selection. As a government contractor subject to the Vietnam Era Veterans Readjustment Assistance Act (VEVRAA), we request this information in order to measure the effectiveness of the outreach and positive recruitment efforts we undertake pursuant to VEVRAA. Classification of protected categories is as follows:

A "disabled veteran" is one of the following: a veteran of the U.S. military, ground, naval or air service who is entitled to compensation (or who but for the receipt of military retired pay would be entitled to compensation) under laws administered by the Secretary of Veterans Affairs; or a person who was discharged or released from active duty because of a service-connected disability.

A "recently separated veteran" means any veteran during the three-year period beginning on the date of such veteran's discharge or release from active duty in the U.S. military, ground, naval, or air service.

An "active duty wartime or campaign badge veteran" means a veteran who served on active duty in the U.S. military, ground, naval or air service during a war, or in a campaign or expedition for which a campaign badge has been authorized under the laws administered by the Department of Defense.

An "Armed forces service medal veteran" means a veteran who, while serving on active duty in the U.S. military, ground, naval or air service, participated in a United States military operation for which an Armed Forces service medal was awarded pursuant to Executive Order 12985.

Select...

Voluntary Self-Identification of Disability

Form CC-305
Page 1 of 1
OMB Control Number 1250-0005
Expires 04/30/2026

Why are you being asked to complete this form?

We are a federal contractor or subcontractor. The law requires us to provide equal employment opportunity to qualified people with disabilities. We have a goal of having at least 7% of our workers as people with disabilities. The law says we must measure our progress towards this goal. To do this, we must ask applicants and employees if they have a disability or have ever had one. People can become disabled, so we need to ask this question at least every five years.

Completing this form is voluntary, and we hope that you will choose to do so. Your answer is confidential. No one who makes hiring decisions will see it. Your decision to complete the form and your answer will not harm you in any way. If you want to learn more about the law or this form, visit the U.S. Department of Labor’s Office of Federal Contract Compliance Programs (OFCCP) website at www.dol.gov/ofccp.

How do you know if you have a disability?

A disability is a condition that substantially limits one or more of your “major life activities.” If you have or have ever had such a condition, you are a person with a disability. Disabilities include, but are not limited to:

  • Alcohol or other substance use disorder (not currently using drugs illegally)
  • Autoimmune disorder, for example, lupus, fibromyalgia, rheumatoid arthritis, HIV/AIDS
  • Blind or low vision
  • Cancer (past or present)
  • Cardiovascular or heart disease
  • Celiac disease
  • Cerebral palsy
  • Deaf or serious difficulty hearing
  • Diabetes
  • Disfigurement, for example, disfigurement caused by burns, wounds, accidents, or congenital disorders
  • Epilepsy or other seizure disorder
  • Gastrointestinal disorders, for example, Crohn's Disease, irritable bowel syndrome
  • Intellectual or developmental disability
  • Mental health conditions, for example, depression, bipolar disorder, anxiety disorder, schizophrenia, PTSD
  • Missing limbs or partially missing limbs
  • Mobility impairment, benefiting from the use of a wheelchair, scooter, walker, leg brace(s) and/or other supports
  • Nervous system condition, for example, migraine headaches, Parkinson’s disease, multiple sclerosis (MS)
  • Neurodivergence, for example, attention-deficit/hyperactivity disorder (ADHD), autism spectrum disorder, dyslexia, dyspraxia, other learning disabilities
  • Partial or complete paralysis (any cause)
  • Pulmonary or respiratory conditions, for example, tuberculosis, asthma, emphysema
  • Short stature (dwarfism)
  • Traumatic brain injury
Select...

PUBLIC BURDEN STATEMENT: According to the Paperwork Reduction Act of 1995 no persons are required to respond to a collection of information unless such collection displays a valid OMB control number. This survey should take about 5 minutes to complete.