Compliance Manager

Details

Groq is seeking a Compliance Manager to lead cross-functional compliance operations, coordinate external audits and certifications, and own the intake and response process for customer security questionnaires and RFIs. This hands-on, senior-level role is ideal for a candidate with extensive experience in security compliance, GRC, or audit readiness in fast-scaling technology environments.

Responsibilities

• Lead preparation and coordination for external audits and assessments (SOC 2, ISO 27001, FedRAMP, HIPAA, ECC-1, and others)
• Manage audit timelines, artifacts, evidence collection, and stakeholder readiness
• Partner closely with the Audit & Control Testing Specialist to translate internal testing into external deliverables
• Own and streamline the intake and response process for customer security questionnaires, RFIs, and due diligence requests
• Maintain a library of up-to-date security & compliance documentation, certifications, and FAQs for external stakeholders
• Track regulatory, certification, and customer trust requirements to ensure proactive readiness
• Identify and drive improvements in audit and compliance workflows to reduce cycle time and operational burden
• Partner with Legal, Security Engineering, and Operations to ensure controls are effectively designed, implemented, and documented
• Provide compliance training and guidance to teams to promote awareness and accountability

Requirements

• 7–10 years of experience in security compliance, GRC, or audit readiness roles
• Strong working knowledge of ISO 27001, SOC 2, FedRAMP, HIPAA, and related frameworks
• Demonstrated success managing external audits and certifications, including coordination of evidence and stakeholders
• Experience managing customer RFIs and security questionnaires at scale
• Familiarity with data sovereignty and residency controls across regions
• Proficiency with GRC platforms, evidence repositories, and workflow tools (examples: ServiceNow GRC, Vanta, Tugboat Logic, Smartsheet, Confluence, SharePoint)
• Exceptional organizational skills and attention to detail under deadlines
• Ability to communicate complex compliance requirements to both technical and non-technical audiences

Bonus

• Experience in highly regulated environments (AI/ML, public sector, critical infrastructure)
• Experience with hybrid systems containing both hardware components and software services
• Background in vendor risk management or third-party assurance
• Track record of implementing self-service compliance dashboards or automation
• Industry certifications (CISA, CISM, CCSK, ISO 27001 Lead Implementer/Auditor)

Location and Work Model

• Groq is geo-agnostic; work from wherever you’re most effective. Exceptional candidates thrive in async collaboration environments. Some roles may require periodic travel or presence at primary sites.

Compensation and Benefits

• Base salary range (United States): $148,287 to $267,145, determined by location, skills, qualifications, experience, and internal benchmarks. Compensation for candidates outside the USA will be dependent on the local market.
• Comprehensive compensation package including equity and benefits.

Company and Culture

• Groq delivers fast, efficient AI inference and is on a mission to make high performance AI compute accessible and affordable. Groq values problem solvers, owners, collaborative team players, growth mindset, systems thinkers, and bold executors.

Equal Opportunity and Accommodations

• Groq is an Equal Opportunity Employer and is committed to creating an inclusive environment for all employees and applicants. Reasonable accommodations are available for qualified individuals with disabilities. Accommodation requests can be sent to [email protected].