Simplify Logo


Security Governance Risk and Compliance – Lead


Posted on 6/25/2024



1,001-5,000 employees

Integrated platform for payroll, benefits, and HR

Data & Analytics

Compensation Overview

$144k - $210kAnnually

Senior, Expert

Seattle, WA, USA + 3 more

Risk & Compliance
IT Support
IT & Security
Legal & Compliance
Required Skills
  • 8+ years of experience in the GRC, audit, compliance space assisting an organization in working towards SOX, SOC 1, SOC 2, ISO 27001, PCI and HIPAA.
  • Experience with ISO 27001, ISO 27002, NIST CSF and working knowledge of ISO 27005 and ISO 27018
  • Client-facing experience managing pre and post sales for IT & Security support
  • Relevant certifications (e.g., CISA, CISSP, CRISC, CISM) preferred.
  • Excellent analytical, problem-solving, and project management skills.
  • Ability to work collaboratively with cross-functional teams and stakeholders, from control owners up to the executive level.
  • High attention to detail and a commitment to upholding the highest standards of data security and compliance.
  • Experience with response coordination tools like Loopio, RFPio, etc.
  • Develop, implement, and maintain a comprehensive strategy and supporting documentation for pre and post sales IT & Security support for Gusto embedded payroll.
  • Support pre-sales initiatives with large potential customers by performing initial compatibility due diligence.
  • Support the refinement of tier-based security requirements and internal service level objectives (SLOs).
  • Align to a chosen security framework with explicit guidelines for each type of partner Gusto would work with.
  • Create playbooks to improve Gusto’s embedded payroll service and position IT & Security as a competitive advantage.
  • Develop project plans, understand partner due diligence requirements, and coordinate internal discussions for remediation.
  • Facilitate negotiations with partners to ensure risk reduction for both parties.
  • Ensure trust with Embedded Partners by proactive communication of security and IT requirements.
  • Monitor changes in compliance regulations, standards, and best practices, and adapt the company's GRC program accordingly.
  • Lead efforts to drive process improvement and enhance the effectiveness of the GRC function.

Gusto provides an integrated platform for automating payroll, benefits, and HR processes, leveraging advanced automation and HR technologies to streamline payroll processing and employee benefits management for businesses.

Company Stage

Series E

Total Funding



San Francisco, California



Growth & Insights

6 month growth


1 year growth


2 year growth



It’s a marathon, not a sprint: Employees celebrating 5 or 10 years at Gusto enjoy a month-long sabbatical to travel and relax after all their hard work.

Meals and conversations: Free meals, snacks, and drinks to keep us fueled, but more importantly: they bring people together and foster community.

Wellness for every body: We’re proud to offer inclusive health care such as hormone treatments, gender-affirming surgery, therapy, family planning, and more.

The time you need: Our flexible PTO policy means every employee is encouraged to take the time they need now to keep doing great work, long term.

Family-friendly benefits: Fertility treatments, primary and secondary parental leave, sleep coaching, house cleaning for new parents, and more.

Be well, be you: Get free, comprehensive medical, dental, and vision benefits, plus a monthly fitness stipend and mental health resources too.