We are an in-office company, and our expectation is that employees primarily work from their Applied Intuition office 5 days a week. However, we also recognize the importance of flexibility and trust our employees to manage their schedules responsibly. This may include occasional remote work, starting the day with morning meetings from home before heading to the office, or leaving earlier when needed to accommodate family commitments.
We are looking for a multifaceted Risk and Compliance Lead to lead our security compliance initiatives across the organization. You will be responsible for ensuring adequate security controls to identify and mitigate risk across the organization. Additionally, you will collaborate with legal, engineering, operations and customers, as necessary, to ensure the state of compliance is well communicated.
At Applied Intuition, you will:- Own and mature the security GRC program, including policy lifecycle management, risk register maintenance, and control framework alignment across the organization
- Conduct comprehensive enterprise and product-level risk assessments to identify, prioritize, and track risks against the company's risk appetite - translating findings into actionable remediation plans for stakeholders
- Lead, manage and support compliance efforts such as, but not limited to, SOC2, ISO 27001, ISO 9001, TISAX, and federal/defense requirements - owning audit readiness, evidence collection, and remediation tracking end to end
- Drive Third Party Risk Management (TPRM) program, including vendor assessments, contract security reviews, and ongoing monitoring of critical third parties
- Build and maintain the GRC program infrastructure - including risk tracking, compliance tooling, reporting cadences, and executive-level risk reporting
- Partner with Legal, Engineering, IT, and Operations to embed compliance and risk requirements into business processes, product development, and infrastructure decisions
- Develop and maintain security policies, standards, and procedures that are practical, enforceable, and aligned to regulatory and contractual obligations
- Support customer-facing security assurance activities including questionnaires, audits, and contractual security reviews
- 6+ years of experience in security GRC, risk management, or compliance program ownership - with a track record of building or maturing programs, not just executing within them
- Hands on experience in running Enterprise Risk Assessments aligned with industry standard frameworks, risk register ownership, and translating technical risk into business-level impact
- Past experience of running Security Maturity Assessments against NIST 800-53, CCF, and more
- Deep hands-on experience managing SOC 2, ISO 27001, and TISAX audits - including scoping, control mapping, evidence coordination, and auditor management
- Experience running Third Party Risk Management programs including vendor tiering, security assessments, and ongoing monitoring
- Ability to interpret compliance frameworks in practical terms and drive cross-functional remediation without direct authority
- Strong communication skills - comfortable presenting risk posture and program status to executive leadership and board-level stakeholders
- Experience with GRC tooling such as Vanta, Drata, OneTrust, or similar platforms
- Experience with Automotive security and safety compliance frameworks such as ISO 21434, ISO 26262
- Certifications such as CISSP
Compensation at Applied Intuition for eligible roles includes base salary, equity, and benefits. Base salary is a single component of the total compensation package, which may also include equity in the form of options and/or restricted stock units, comprehensive health, dental, vision, life and disability insurance coverage, 401k retirement benefits with employer match, learning and wellness stipends, and paid time off. Note that benefits are subject to change and may vary based on jurisdiction of employment.
Applied Intuition pay ranges reflect the minimum and maximum intended target base salary for new hire salaries for the position. The actual base salary offered to a successful candidate will additionally be influenced by a variety of factors including experience, credentials & certifications, educational attainment, skill level requirements, interview performance, and the level and scope of the position.
Please reference the job posting’s subtitle for where this position will be located. For pay transparency purposes, the base salary range for this full-time position in the location listed is: $160,000 - $190,000 USD annually.
Don’t meet every single requirement? If you’re excited about this role but your past experience doesn’t align perfectly with every qualification in the job description, we encourage you to apply anyway. You may be just the right candidate for this or other roles.
Applied Intuition is an equal opportunity employer and federal contractor or subcontractor. Consequently, the parties agree that, as applicable, they will abide by the requirements of 41 CFR 60-1.4(a), 41 CFR 60-300.5(a) and 41 CFR 60-741.5(a) and that these laws are incorporated herein by reference. These regulations prohibit discrimination against qualified individuals based on their status as protected veterans or individuals with disabilities, and prohibit discrimination against all individuals based on their race, color, religion, sex, sexual orientation, gender identity or national origin. These regulations require that covered prime contractors and subcontractors take affirmative action to employ and advance in employment individuals without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status or disability. The parties also agree that, as applicable, they will abide by the requirements of Executive Order 13496 (29 CFR Part 471, Appendix A to Subpart A), relating to the notice of employee rights under federal labor laws.
Skills Required
- 6+ years of experience in security GRC, risk management, or compliance program ownership
- Hands on experience in running Enterprise Risk Assessments aligned with industry standards
- Deep hands-on experience managing SOC 2, ISO 27001, and TISAX audits
- Experience running Third Party Risk Management programs including vendor assessments
- Strong communication skills for presenting risk posture to executive leadership
Applied Intuition Compensation & Benefits Highlights
The following summarizes recurring compensation and benefits themes identified from responses generated by popular LLMs to common candidate questions about Applied Intuition and has not been reviewed or approved by Applied Intuition.
-
Healthcare Strength — Health, dental, and vision coverage are described as comprehensive with employee premiums fully covered. Feedback suggests additional wellness and mental‑health provisions reinforce the overall healthcare offering.
-
Parental & Family Support — Paid parental leave of up to 12 weeks is offered for birth, adoption, or foster placement. Feedback suggests this policy provides meaningful support for families.
-
Wellbeing & Lifestyle Benefits — Catered meals, snacks, expensed dinners, and fitness/learning stipends are part of the package. Feedback suggests these perks enhance day‑to‑day convenience and personal development.
Applied Intuition Insights
What We Do
As the foremost enabler of autonomous vehicle development, Applied Intuition equips engineering and product teams with software that makes it faster, safer, and easier to bring autonomy to market. Applied’s suite of products, focused on simulation and analytics, delivers sophisticated infrastructure built for scale. Companies of all sizes use Applied to comprehensively test and rapidly accelerate their autonomous vehicle development. Headquartered in Silicon Valley with offices in Detroit, Tokyo, and Munich, Applied is composed of software and automotive experts from the top companies in the world (such as Google, Amazon, Apple, Waymo, Tesla, Delphi, GM, and Bosch).
