ZenGRC Logo

ZenGRC

GRC software with AI for compliance, risk, and audit programs.
Overview Jobs

About ZenGRC

We started in San Francisco, CA in 2009 and currently have 51-200 employees. We develop GRC (Governance, Risk, and Compliance) software to help organizations manage cyber risk as a business issue, not just an IT problem. Our goal is to make risk management more strategic, helping security executives explain risk in business terms for board decisions.

Our platform automates compliance and risk management. It includes AI, a Trust Center, and supports the Secure Controls Framework (SCF) and other regulatory frameworks like ISO, SOC, HIPAA, PCI, CCPA, NIST, and COBIT. GRACI, our AI component, functions as an intelligent assistant. It handles tasks an analyst would, such as scoping new programs, advising on objectives, designing controls, and creating audit structures. GRACI runs securely on isolated instances on AWS Bedrock. It’s trained only on customer data and doesn’t keep information between sessions.

The platform provides a single solution for third-party risk management, vendor management, and risk scoring. We designed it for easy use with automation, data visualizations, and dashboards. It’s customizable and scales to match an organization’s risk posture and scoring needs, allowing external auditors limited system access. We offer all our key features with simple, all-inclusive pricing. In 2024, ISACA gave us their Global Innovation Award, and G2 has recognized our performance.

Mission & Values

Our mission is to provide a single, flexible, and complete GRC tool. We want it to support organizations no matter where they are in their GRC journey, offering features and ease of use that can grow with their needs.

Our core values include innovation (constantly improving and adapting our solutions to client needs), simplicity (making GRC processes straightforward), integrity (building trust through transparency and ethical practices), and customer-centricity (prioritizing our clients’ success).

Team & Culture

We are a team of collaborators and problem-solvers, with members spanning from San Francisco to Slovenia. We have a “Yes, and …” culture that encourages employees to build on ideas, which helps us share creativity and innovate.

This culture is supported by principles of ownership (where employees are empowered to shape their roles), optimism (seeing challenges as opportunities and learning from new projects), and openness (characterized by collaborative teams, accessible leadership, curiosity, and a receptiveness to original ideas).

We offer flexible schedules and a remote-first work environment.

Benefits & Perks

For our US employees, we offer:

  • Unlimited PTO
  • 13 paid holidays
  • Stock options
  • Flexible working hours
  • A remote-first policy
  • A 401k match up to 3%
  • Health, dental, and vision plans

For our employees in Latin America, we offer:

  • 20 paid days off
  • Stock options
  • Flexible working hours
  • The option to work from home or anywhere
  • Salary in USD

Frequently Asked Questions

What products or services does the company offer?

ZenGRC offers GRC software that automates compliance and risk management. Its platform includes AI capabilities (GRACI) for tasks like program scoping and control design, a Trust Center, and support for various frameworks such as ISO, SOC, HIPAA, PCI, CCPA, NIST, and COBIT. The software also provides third-party risk management, vendor management, and risk scoring.

What are the employee benefits?

For employees in the United States, benefits include unlimited PTO, 13 paid holidays, stock options, flexible working hours, a remote-first policy, 401k match up to 3%, and Healthcare, Dental, and Vision plans. For employees in Latin America, benefits include 20 paid days off, stock options, flexible working hours, the option to work from home or anywhere, and salary in USD.

What is the company's work culture like?

ZenGRC fosters a “Yes, and …” culture that encourages building on ideas, shared creativity, and innovation. The culture emphasizes ownership, empowering employees to shape their roles; optimism, viewing challenges as opportunities; and openness, with collaborative teams, accessible leadership, and a focus on curiosity and continuous learning. The company operates with a remote-first and flexible schedule approach.

How does ZenGRC approach governance, risk, and compliance (GRC)?

ZenGRC aims to elevate cyber risk management from an IT problem to a strategic business concern. It provides a unified GRC platform that uses agentic AI to simplify compliance, risk, and audit programs, helping security executives communicate risk to boards in business terms. The platform integrates automation and intelligence to support needs across governance, risk, and compliance.

When was ZenGRC founded?

ZenGRC was founded in 2009.

What industries and sectors does ZenGRC specialize in?

ZenGRC is active in the Grc Software, Governance, Risk, Compliance, It Risk Management, Soc2, Pci, Iso, Scf, It Risk, It Risk Management Software, Risk Management Platform, Cyber Security Platform, Cyber Risk Software, Cyber Risk Platform, Cyber Assurance Program, and Risk Operations Center markets.

How many people work at ZenGRC?

ZenGRC has 51-200 employees.

Where does ZenGRC hire?

ZenGRC hires globally with a remote-first approach, allowing employees to work from anywhere.

Is ZenGRC hiring?

ZenGRC is not actively hiring at the moment. Check back later for new opportunities.

Does ZenGRC hire for remote and work from home roles?

Yes, ZenGRC is a remote-first company.

What is ZenGRC's website?

ZenGRC's website is zengrc.com .

Where to find ZenGRC on social media?

You can find ZenGRC on LinkedIn .

Remote companies like ZenGRC

Find your next opportunity with companies that specialize in Grc Software, Governance, Risk, Compliance, It Risk Management, and Soc2. Explore remote-first companies like ZenGRC that prioritize flexible work and home-office freedom.

All companies
ProcessUnity Logo

ProcessUnity

51-200 www.processunity.com

Cloud-based solutions for automating risk and compliance programs, focusing on third-party and cybersecurity risk management.

View company profile →
ThreatConnect Logo

ThreatConnect

51-200 threatconnect.com

Solutions for cyber defenders to continuously manage threat exposure and improve cyber resilience.

2 open positions →
SixMap, Inc. Logo

SixMap, Inc.

11-50 www.sixmap.io

Preemptive exposure management for organizations, mapping external attack surfaces.

1 open positions →
Coalfire Logo

Coalfire

1001-5000 www.coalfire.com

Delivers cybersecurity and compliance services for technology, healthcare, and finance industries.

2 open positions →
VComply Logo

VComply

11-50 www.v-comply.com

Agile GRC SaaS platform

View company profile →
FireMon Logo

FireMon

201-500 www.firemon.com

Firewall policy management software and services for hybrid, cloud, and on-premises IT environments.

3 open positions →

Project: Career Search

Rev. 2026.2

[ Remote Jobs ]
Direct Access

We source jobs directly from 21,000+ company career pages. No intermediaries.

Search Jobs Post a Job
01

Discover Hidden Jobs

Unique jobs you won't find on other job boards.

02

Advanced Filters

Filter by category, benefits, seniority, and more.

03

Priority Job Alerts

Get timely alerts for new job openings every day.

04

Manage Your Job Hunt

Save jobs you like and keep a simple list of your applications.

21,000+ SOURCES UPDATED 24/7