Groq delivers fast, efficient AI inference. Our LPU-based system powers GroqCloud™, giving businesses and developers the speed and scale they need. From our Bay Area roots to our growing global presence, we are on a mission to make high performance AI compute more accessible and affordable. When real-time AI is within reach, anything is possible. Build fast.

Enterprise Risk Manager

Mission:

We are seeking an Enterprise Risk Manager to lead and evolve Groq’s Information Security Risk Management program. This role will own risk lifecycle processes under our Information Security Management System (ISMS), support critical audits and assessments (ISO 27001, SOC 2, FedRAMP), and act as a central point of accountability for both internal and third-party risk identification, evaluation, and remediation.

In the short term, this role will focus on remediating and streamlining our Vendor Risk Management (VRM) process, while also mentoring a Risk & Policy Intern to help operationalize and scale documentation, control rationalization, and program visibility.

Responsibilities & opportunities in this role:

Own and operate Groq’s ISMS-aligned risk management lifecycle, including risk identification, analysis, treatment planning, and exception handling
Lead the build up and scaling of our Vendor Risk Management program, ensuring proper control mapping, ownership, and decision traceability
Facilitate quarterly risk reviews, manage the central risk register, and drive prioritization aligned to Groq’s enterprise risk appetite
Translate technical and operational risks into business-aligned impact assessments and escalation pathways
Collaborate with cross-functional stakeholders (Legal, Procurement, IT, Engineering, Security) to align on roles and expectations
Mentor and guide a Risk & Policy Intern, delegating documentation, intake, and reporting tasks while coaching on program strategy
Support internal audit readiness for risk-related controls across SOC 2, ISO 27001, FedRAMP, and ECC-1
Recommend and help implement tools or dashboards to improve risk visibility, VRM automation, and evidence traceability

Ideal candidates have/are:

7–10 years of experience in risk management, GRC, security compliance, or vendor trust programs — ideally in fast-scaling or regulated tech environments
Strong knowledge of information security frameworks (ISO 27001, NIST 800-53, SOC 2, FedRAMP)
Experience managing or improving third-party risk assessments (TPRA), supplier reviews, and contract workflows
Ability to guide risk decisions across stakeholders with varied technical depth and business priorities
Demonstrated success building or maturing enterprise risk programs and managing risk registers
Familiarity with tools like Vanta GRC, ServiceNow GRC, ProcessUnity, Ariba, JIRA, Smartsheet, Confluence, or Tableau
Exceptional communication, stakeholder management, and mentoring skills

Bonus Points For

Experience with AI/ML infrastructure, data sovereignty, or global regulatory compliance
Experience with hybrid systems containing both hardware components and software services.
Previous success in applying automation, AI/ML, or self-service tooling to reduce risk ops overhead
Background in access remediation, contract lifecycle integration, or GRC process unification
Working knowledge of international privacy laws (GDPR, HIPAA, ECC-1)

Attributes of a Groqster:

Humility – Egos are checked at the door
Collaborative & Team Savvy – We make up the smartest person in the room, together
Growth & Giver Mindset – Learn it all versus know it all, we share knowledge generously
Curious & Innovative – Take a creative approach to projects, problems, and design
Passion, Grit, & Boldness – No-limit thinking, fueling informed risk taking

Compensation: At Groq, a competitive base salary is part of our comprehensive compensation package, which includes equity and benefits. For this role, the base salary range is $148,287 to $278,760, determined by your location, skills, qualifications, experience and internal benchmarks. This range is specific to roles in the United States, compensation for candidates outside the USA will be dependent on the local market.

#LI-Remote, #LI-Hybrid, #LI-Onsite

Groq is an Equal Opportunity Employer. We are committed to creating an inclusive environment for all employees and applicants. All qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, sex (including gender identity, sexual orientation, and pregnancy), age, disability, genetic information, protected veteran status, or any other characteristic protected by applicable law.

Groq complies with all applicable federal, state, and local laws governing nondiscrimination in employment. We do not tolerate discrimination or harassment based on any protected characteristic.

Groq is committed to working with and providing reasonable accommodations to qualified individuals with physical or mental disabilities. If you require a reasonable accommodation to complete an application or to participate in the hiring process, please contact us at talent@groq.com. This contact is for accommodation requests only, which will be considered on a case-by-case basis.

All offers of employment are contingent upon verification of the applicant’s identity and employment authorization in accordance with federal law.

Groq encourages people with criminal record histories to apply for employment, and values diverse experiences, including prior contact with the criminal legal system. To that end, Groq welcomes such applicants in accordance with the California Fair Chance Act, Los Angeles City Fair Chance Act Ordinance, Los Angeles County Fair Chance Act Ordinance, and San Francisco Fair Chance Act Ordinance. Philadelphia applicants can review information pertaining to Philadelphia’s Fair Criminal Record Screening Standards Ordinance here: https://www.phila.gov/documents/fair-chance-hiring-law-poster.

Req ID: R658

Apply now

See more open positions at Groq

Privacy policy Cookie policy