Staff GRC Engineer

Crusoe is on a mission to accelerate the abundance of energy and intelligence. As the only vertically integrated AI infrastructure company built from the ground up, we own and operate each layer of the stack — from electrons to tokens — to power the world’s most ambitious AI workloads. When you join Crusoe, you join a team that is building the future, faster.

We’re in the midst of the greatest industrial revolution of our time. The demand for AI compute is boundless, and power is a bottleneck. We’re solving that — with an energy-first approach that makes AI infrastructure better for the world and faster for the people innovating with AI.

We’re looking for problem-solving, opportunity-finding teammates with a sense of urgency, who believe in the scale of our ambition and thrive on a path not fully paved — people who want to grow their careers alongside a team of experts across energy, manufacturing, data center construction, and cloud services.

If you want to do the most meaningful work of your career, help our customers and partners advance their AI strategies, and be part of a high-performing team that believes in each other, come build with us at Crusoe.

About This Role

We’re seeking a Sr. GRC Engineer to design, build, and operate the automation and tooling that powers our Governance, Risk, and Compliance program. Reporting to the Head of GRC, this is an engineer-first role focused on replacing manual compliance workflows with scalable, code-driven systems.

You’ll build automation across evidence collection, control monitoring, and risk reporting; embedding compliance directly into engineering and infrastructure pipelines so it becomes continuous, not periodic. Deep regulatory expertise isn’t required, but you should understand how compliance requirements translate into automatable controls and repeatable workflows.

What You’ll Be Working On

• Designing and maintaining automation workflows that replace manual compliance processes (evidence collection, control testing, policy monitoring, audit reporting)

• Writing production-grade scripts, services, and integrations (Python, JavaScript, YAML, etc.) that connect GRC platforms to internal systems and CI/CD pipelines

• Implementing and customizing GRC platforms (e.g., Vanta, AuditBoard, Drata) through APIs, configuration, and custom automation

• Building dashboards and reporting systems that provide real-time visibility into control health and risk posture

• Embedding compliance checks into engineering workflows so evidence collection and monitoring happen continuously

• Applying AI and LLM-based tools to streamline GRC workflows such as evidence review, control mapping, and risk analysis

• Partnering with Security, IT, and Engineering teams to ensure GRC tooling integrates cleanly into existing environments

• Supporting audits through automated data collection and evidence generation

• Providing technical guidance and training to teams on GRC automation best practices

What You’ll Bring to the Team

• 5+ years in a technical role with strong experience in automation, scripting, and systems integration

• Strong programming skills in Python, JavaScript, or similar languages with experience shipping automation to production

• Experience with infrastructure-as-code and automation tools (e.g., Terraform, Ansible, Jenkins)

• Hands-on API integration experience across cloud platforms, SaaS tools, identity systems, and security tooling

• Familiarity with GRC platforms and the ability to extend them through code and automation

• Working knowledge of cloud environments (GCP preferred; AWS/Azure exposure helpful)

• Practical understanding of compliance and risk frameworks (SOC 2, ISO 27001, NIST, HIPAA, GDPR) and how they translate into controls

• Experience applying AI tools to automate workflows and scale operational processes

• Strong communication skills with the ability to bridge engineering and compliance teams

Bonus Points

• Certifications such as CISSP, CISA, or CRISC

• Experience embedding compliance controls directly into CI/CD (DevSecOps practices)

• Background in security or infrastructure engineering

• Familiarity with quantitative risk frameworks (FAIR, COSO, ISO 31000)

• Experience building continuous monitoring or continuous compliance systems

Benfits

• Competitive compensation

• Restricted Stock Units

• Paid time off & paid holidays

• Comprehensive health, dental & vision insurance

• Employer contributions to HSA account

• Paid parental leave

• Paid life insurance, short-term and long-term disability

• Professional development & tuition reimbursement

• Mental health & wellness support

• Commuter benefits (parking & transit)

• Cell phone stipend

• 401(k) Retirement plan with company match up to 4% of salary

• Volunteer time off

Compensation Range

Compensation will be paid in the range of up to $190,000 – $215,000 + Bonus. Restricted Stock Units are included in all offers. Compensation to be determined by the applicants knowledge, education, and abilities, as well as internal equity and alignment with market data.

Crusoe is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, disability, genetic information, pregnancy, citizenship, marital status, sex/gender, sexual preference/ orientation, gender identity, age, veteran status, national origin, or any other status protected by law or regulation.