Scale is powering the generative AI wave by providing the data and infrastructure for companies to build large-scale foundation models. AI is rapidly changing the world, and Scale is growing to meet that rapid demand across global markets, including accelerating public sector and commercial business.
Scale seeks a Technical Assurance Lead to drive assurance programs across Scale's public sector and commercial business. Reporting to the Head of Global Assurance, this is a hands-on individual contributor role with significant autonomy. Scale is looking for an experienced security and compliance professional to support Security Risk Management Assessment and Authorization (A&A) audit activities for Scale’s products. You will be part of the global GRC team and work across Public Sector, Enterprise, Security, Engineering, Product, and Legal to deliver region-specific authorizations, certifications, and customer assurance outcomes, with a focus on the US markets. We are looking for relentlessly curious, deliberately open-minded, and action-oriented generalists who can advise on internal policies, and operational processes while employing an empathetic interpersonal style. If you enjoy solving novel and challenging problems and building strong relationships while doing it, we’d love to hear from you!
You Will- Lead public sector compliance programs (e.g., FedRAMP HIGH, DoD SRG IL4/IL5/IL6, NIST 800-53/800-171, CMMC, and RMF), owning controls mapping, gap analysis, evidence collection, ATO packages, and certification timelines, including coordination with 3PAOs and external assessors.
- Oversee Security Risk Management A & A processes, including cloud system risk assessments, POAM development and tracking, vulnerability management, STIG implementation, and security configuration oversight.
- Drive cross-functional control implementation by partnering with product, engineering, security, operations, legal, and people ops to deploy technical, administrative, and operational controls.
- Set priorities and cadences for intake, evidence collection, remediation tracking, and deadline management, and reporting program health and risks to the Head of Global Assurance.
- Manage external relationships with auditors, assessors, certification bodies, and regulatory counterparts to achieve and sustain compliance outcomes.
- Maintain system security documentation and GRC tooling, including continuous updates to security documentation and uploading control evidence to eMASS or Xacta throughout the monitoring phase.
- Lead compliance reviews for new products and features, and proactively advise the business on emerging certification programs, regulatory changes, and evolving requirements.
- Maintain and expand Scale's certification portfolio, including SOC 2, ISO 27001, ISO 42001, and ISO 9001, working with the global GRC team on renewals and new certifications.
- Support customer and stakeholder assurance activities, including security questionnaires, due diligence responses, compliance input to bids, and customer-facing assurance discussions.
- An active US Top Secret security clearance with minimum IAT Level 2 certification (Security +, CASP, or similar).
- 7+ years of experience in security compliance, technology audit, GRC, cloud security, or related roles, with meaningful exposure to the public sector markets.
- Experience implementing and maintaining some of the following frameworks and standards: FedRAMP, DoD Cloud Computing SRG, NIST 800-171, NIST 800-53, CMMC, NIST 800-53.
- Deep familiarity with one or more of: STIG/RMF policy knowledge & implementation, including validating compliance via ACAS and other relevant tests, ISO 27001, ISO 9001, ISO 42001, SOC 2, or equivalent frameworks.
- Experience in project management and taking projects from conception to launch.
- An ability to translate between business and technical risk and communicate clearly to leadership.
- Experience managing controls mapping, evidence collection, remediation tracking, and audit coordination across distributed engineering and infrastructure teams.
- Experience with cloud environments (one or more of: AWS, Azure, GCP) and the ability to assess cloud architecture against compliance requirements.
- Strong communication skills, sound judgment on escalation, and the ability to operate autonomously while maintaining alignment with a global program.
- Bachelor’s degree in accounting, information systems, computer science, or a related field.
- Relevant certifications such as CISSP, CISM, CISA, ISO 27001 Lead Auditor, ISO 42001 Internal Auditor, or CCSP.
- Experience at a high-growth technology company.
PLEASE NOTE: Our policy requires a 90-day waiting period before reconsidering candidates for the same role. This allows us to ensure a fair and thorough evaluation of all applicants.
About Us:
At Scale, our mission is to develop reliable AI systems for the world's most important decisions. Our products provide the high-quality data and full-stack technologies that power the world's leading models, and help enterprises and governments build, deploy, and oversee AI applications that deliver real impact. We work closely with industry leaders like Meta, Ernst & Young, Mayo Clinic, Time Inc., the Government of Qatar, and U.S. government agencies including the Army and Air Force. We are expanding our team to accelerate the development of AI applications.
We believe that everyone should be able to bring their whole selves to work, which is why we are proud to be an inclusive and equal opportunity workplace. We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability status, gender identity or Veteran status.
We are committed to working with and providing reasonable accommodations to applicants with physical and mental disabilities. If you need assistance and/or a reasonable accommodation in the application or recruiting process due to a disability, please contact us at [email protected]. Please see the United States Department of Labor's Know Your Rights poster for additional information.
We comply with the United States Department of Labor's Pay Transparency provision.
PLEASE NOTE: We collect, retain and use personal data for our professional business purposes, including notifying you of job opportunities that may be of interest and sharing with our affiliates. We limit the personal data we collect to that which we believe is appropriate and necessary to manage applicants’ needs, provide our services, and comply with applicable laws. Any information we collect in connection with your application will be treated in accordance with our internal policies and programs designed to protect personal data. Please see our privacy policy for additional information.
Skills Required
- Active US Top Secret security clearance with minimum IAT Level 2 certification (Security+, CASP, or similar)
- 7+ years of experience in security compliance, technology audit, GRC, cloud security, or related roles with public sector exposure
- Experience implementing and maintaining FedRAMP, DoD Cloud Computing SRG, NIST 800-171, NIST 800-53, CMMC
- Familiarity with STIG/RMF policy implementation and validating compliance via ACAS and related tools/tests
- Experience managing controls mapping, evidence collection, remediation tracking, and audit coordination across distributed engineering and infrastructure teams
- Experience with cloud environments (AWS, Azure, GCP) and assessing cloud architecture against compliance requirements
- Project management experience taking projects from conception to launch
- Ability to translate between business and technical risk and communicate clearly to leadership
- Strong communication skills, sound judgment on escalation, and ability to operate autonomously while aligning with a global program
- Experience with SOC 2, ISO 27001, ISO 42001, ISO 9001 and managing renewals/new certifications
- Bachelor's degree in accounting, information systems, computer science, or related field
- Relevant certifications such as CISSP, CISM, CISA, ISO 27001 Lead Auditor, ISO 42001 Internal Auditor, or CCSP
- Experience at a high-growth technology company
Scale AI Compensation & Benefits Highlights
The following summarizes recurring compensation and benefits themes identified from responses generated by popular LLMs to common candidate questions about Scale AI and has not been reviewed or approved by Scale AI.
-
Healthcare Strength — Healthcare coverage is described as comprehensive across medical, dental, and vision, with flexibility to choose plans that fit individual or family needs. A monthly wellness stipend further supports physical and mental wellbeing expenses.
-
Equity Value & Accessibility — Equity-based compensation is included in eligible packages, positioning ownership as a meaningful component of total rewards for many full-time roles. An employee stock purchase plan also provides an additional pathway to participate in potential upside.
-
Leave & Time Off Breadth — Paid time off is positioned as generous with a flexible policy intended to support recharging and burnout prevention. Paid holidays and paid sick days are also part of the time-off offering.
Scale AI Insights
What We Do
Scale accelerates the development of AI applications by helping machine learning teams generate high-quality ground truth data. Our advanced LiDAR, image, video and NLP annotation APIs allow machine learning teams at companies like OpenAI, Lyft, Pinterest, and Airbnb focus on building differentiated models vs. labeling data.








