In this role, you will lead the team that designs and implements automated workflows, data pipelines, and integrations that transform manual compliance processes into scalable engineering systems. This is a greenfield opportunity to establish the team, architecture, and integrations that will define how we approach governance, risk, and compliance at Anthropic.

The core challenge is a data problem: compliance information lives across dozens of systems,cloud infrastructure, identity providers, HR platforms, ticketing tools, code repositories,and your job is to design systems that bring it together, normalize it, and make it actionable.

Success in this role comes from understanding how systems connect and how data flows between them, not from writing code yourself. At Anthropic, you'll also have a unique advantage: the ability to design AI-powered workflows where Claude acts as an extension of your team, handling tasks that would traditionally require additional headcount or manual effort.

You'll need ingenuity to identify where agentic AI can accelerate evidence collection, interpret unstructured data, triage compliance gaps, and augment human judgment in risk assessments. Working closely with Security, IT, and Engineering teams, you'll translate compliance and regulatory requirements into solutions that support audit programs including SOC 2, ISO, HIPAA, and FedRAMP, building systems that combine traditional automation with AI capabilities to achieve scale that wouldn't otherwise be possible.

Responsibilities:

• Lead the team that establishes foundational GRC processes and architecture.
• Design and build automated workflows for risk management and compliance, creating scalable systems that enable continuous monitoring as Anthropic grows.
• Build data pipelines that aggregate risk, control, and asset information from across our technology stack.
• Inform GRC platform strategy and implementation: in partnership with other programs, evaluate, select, and deploy tooling that meets our compliance requirements.
• Translate written policies and compliance requirements into policy-as-code,working with Engineering and Security teams to express requirements as enforceable rules, automated checks, and continuous validation rather than static documents.
• Establish feedback loops between policy and implementation: surface where technical controls diverge from written requirements, identify where policies need to evolve based on infrastructure realities, and ensure that compliance requirements are expressed in terms engineers can act on.
• Design and deploy agentic AI workflows that extend team capacity, using Claude to serve as a virtual GRC analyst to automate evidence analysis, monitor control effectiveness, draft audit responses, interpret policy documents, and handle other tasks that require reasoning over unstructured information.
• Design and maintain integrations connecting GRC tooling with cloud infrastructure, identity management systems, HRIS platforms, ticketing systems, version control, and CI/CD pipelines,working with engineers to implement integrations that enable automated evidence collection and continuous compliance validation.
• Build and lead an AI-forward GRC engineering function as we scale: hiring team members, establishing practices, and defining the technical roadmap for governance and compliance automation at Anthropic.

Requirements:

• 12+ years of total experience and 3-4+ years of experience managing technical individual contributors or systems-focused teams, with a proven track record of building or scaling small teams (2-5 people) in security, compliance, automation, or operations functions.
• A systems thinker first. You understand how complex environments work: how data flows between systems, where integration points exist, what breaks when systems don't talk to each other.
• 5+ years of experience designing automated workflows, data pipelines, or system integrations, whether through traditional development, low-code platforms, GRC tools, or process automation.
• A relentless focus on data integration: you understand how to pull data from multiple sources, normalize it, join it meaningfully, and surface insights.
• Strong analytical and problem-solving skills with attention to detail necessary for compliance work, balanced with pragmatism about risk-based prioritization in fast-paced environments.

Nice to Have:

• Experience designing or implementing AI-powered automation, agentic workflows, or LLM-based tooling in operational contexts.
• Experience with GRC platforms such as ServiceNow GRC, Vanta, Drata, OneTrust, RSA Archer, or similar tools including configuration, customization, and integration capabilities.
• Familiarity with scripting languages (Python or similar) for automation tasks, API interactions, and data transformation.
• Prior experience in high-growth startup environments demonstrating ability to build scalable processes and adapt quickly to changing requirements and priorities.
• Familiarity with Infrastructure as Code tools (Terraform, CloudFormation, Ansible) and DevSecOps practices including CI/CD pipeline integration and policy-as-code implementations.
• Familiarity with cloud platforms (AWS, GCP, Azure) and an understanding of how compliance-relevant data can be extracted from their APIs and logging systems.

Deadline to Apply: None, applications will be received on a rolling basis.

Annual Compensation Range: $405,000-$405,000 USD

XML job scraping automation by YubHub

The ideal candidate brings deep expertise in defense, shipbuilding, and advanced manufacturing, with exposure to AI-enabled, robotics, or autonomous vehicle technologies. This individual will have a proven record of designing and implementing world-class EHS programs in high-risk, high-technology, safety-critical maritime environments.

Responsibilities:

• Strategic Leadership & Organizational Development: Develop and execute a global EHS strategy that supports the rapid growth of defense, maritime, and AI/autonomous manufacturing programs.

• Scale the EHS organization across multiple international sites, ensuring regional compliance, consistent standards, and operational excellence.

• Coordinate with Security, Legal, and Compliance in all strategic planning, including facility expansion, technology integration, facility and operational controls, and entry into new international markets.

• Regulatory Compliance & Certification: Lead efforts to achieve and maintain ISO 14000 and ISO 45001 certifications and ensure compliance with ASTM E2920-24, DoD/NAVSEA standards, ISM, and other applicable defense and maritime environmental and health and safety regulations.

• Oversee audit programs, risk assessments, and corrective action plans across all operations, including those integrating AI, robotics, and autonomous technologies.

• Operational Excellence & Risk Management: Develop and implement scalable, data-driven EHS management systems.

• Drive advanced risk management initiatives.

• Oversight of serious incident investigations, regulator engagement, and executive communications.

Qualifications:

• Education & Credentials: Bachelor’s degree in Environmental Engineering, Safety Engineering, Industrial Hygiene, or related field (Master’s preferred).

• Professional certifications such as CSP, CIH, CHMM, ICS, PE, or CPEA preferred.

• Experience: Minimum 15+ years of progressive EHS leadership experience in a global EHS program in defense, maritime, shipbuilding, or advanced manufacturing industries.

• Experience in high hazard environments including shipbuilding or ship repair, aerospace or defense manufacturing, offshore oil & gas, heavy industrial manufacturing, large-scale energy.

• Maritime experience in shipyard safety, pier-side and at-sea testing, vessel commissioning and sea trials.

• Experience managing EHS for autonomous or remotely operated systems, robotics or unmanned platforms, complex software-hardware integration.

• Proven track record in achieving ISO 14001 and ISO 45001 certifications and ensuring ASTM E2920-24 compliance.

• Skills & Attributes: Strategic, visionary leadership with deep operational and technical EHS expertise.

• Strong understanding of risk management frameworks for autonomous and AI-enabled systems.

• Excellent cross-functional collaboration skills across engineering, software, and manufacturing disciplines.

• Exceptional communication, stakeholder engagement, and cross-cultural leadership abilities.

• Commitment to continuous improvement, sustainability, and ethical responsibility

Physical Requirements:

• Position occasionally requires the ability to work overtime and weekends when needed.
• Role requires up to 20% travel between CA, TX, LA, and VA with opportunities to travel to other US cities.
• Ability to lift 35 lbs unassisted.

Benefits:

• Medical Insurance: Comprehensive health insurance plans covering a range of services.
• Saronic pays 100% of the premium for employees and 80% for dependents.
• Dental and Vision Insurance: Coverage for routine dental check-ups, orthodontics, and vision care.
• Saronic pays 100% of the premium under the basic plan for employees and 80% for dependents.
• Time Off: Generous PTO and Holidays.
• Parental Leave: Paid maternity and paternity leave to support new parents.
• Competitive Salary: Industry-standard salaries with opportunities for performance-based bonuses.
• Retirement Plan: 401(k) plan with company match.
• Stock Options: Equity options to give employees a stake in the company’s success.
• Life and Disability Insurance: Basic life insurance and short- and long-term disability coverage.
• Pet Insurance: Discounted pet insurance options including 24/7 Telehealth helpline.
• Additional Perks: Free lunch benefit and unlimited free drinks and snacks in the office

XML job scraping automation by YubHub

We are seeking a GRC Automation Lead to join our GRC organisation and build the technical foundation for how we scale our risk and compliance programs. In this role, you will lead the team that designs and implements automated workflows, data pipelines, and integrations that transform manual compliance processes into scalable engineering systems.

This is a greenfield opportunity to establish the team, architecture, and integrations that will define how we approach governance, risk, and compliance at Anthropic. The core challenge is a data problem: compliance information lives across dozens of systems—cloud infrastructure, identity providers, HR platforms, ticketing tools, code repositories—and your job is to design systems that bring it together, normalise it, and make it actionable.

At Anthropic, you'll also have a unique advantage: the ability to design AI-powered workflows where Claude acts as an extension of your team, handling tasks that would traditionally require additional headcount or manual effort. You'll need ingenuity to identify where agentic AI can accelerate evidence collection, interpret unstructured data, triage compliance gaps, and augment human judgment in risk assessments.

Working closely with Security, IT, and Engineering teams, you'll translate compliance and regulatory requirements into solutions that support audit programs including SOC 2, ISO, HIPAA, and FedRAMP, building systems that combine traditional automation with AI capabilities to achieve scale that wouldn't otherwise be possible.

Responsibilities:

• Lead the team that establishes foundational GRC processes and architecture. Design and build automated workflows for risk management and compliance, creating scalable systems that enable continuous monitoring as Anthropic grows.

• Build data pipelines that aggregate risk, control, and asset information from across our technology stack. This means solving hard data integration problems: mapping disparate schemas, handling inconsistent data quality, and creating unified views of compliance posture through dashboards and reporting tools.

• Inform GRC platform strategy and implementation: in partnership with other programs, evaluate, select, and deploy tooling that meets our compliance requirements.

• Translate written policies and compliance requirements into policy-as-code—working with Engineering and Security teams to express requirements as enforceable rules, automated checks, and continuous validation rather than static documents.

• Establish feedback loops between policy and implementation: surface where technical controls diverge from written requirements, identify where policies need to evolve based on infrastructure realities, and ensure that compliance requirements are expressed in terms engineers can act on.

• Design and deploy agentic AI workflows that extend team capacity, using Claude to automate evidence analysis, monitor control effectiveness, draft audit responses, interpret policy documents, and handle other tasks that require reasoning over unstructured information.

• Design and maintain integrations connecting GRC tooling with cloud infrastructure, identity management systems, HRIS platforms, ticketing systems, version control, and CI/CD pipelines—working with engineers to implement integrations that enable automated evidence collection and continuous compliance validation.

• Build and lead the GRC Automation function as we scale: hiring team members, establishing practices, and defining the technical roadmap for governance and compliance automation at Anthropic.

You may be a good fit if you:

• Have 3-4+ years of experience managing technical individual contributors or systems-focused teams, with a proven track record of building or scaling small teams (2-5 people) in security, compliance, automation, or operations functions.

• Are a systems thinker first. You understand how complex environments work: how data flows between systems, where integration points exist, what breaks when systems don't talk to each other. Your strength is designing the right architecture and environment for security monitoring, not necessarily implementing it yourself.

• Have 5+ years of experience designing automated workflows, data pipelines, or system integrations, whether through traditional development, low-code platforms, GRC tools, or process automation. We care about your ability to solve integration problems, not your programming language proficiency.

• Proficiency to write production level code in at least one programming language (e.g., Python, Rust, Go)

• Have a relentless focus on data integration: you understand how to pull data from multiple sources, normalise it, join it meaningfully, and surface insights. You're comfortable reasoning about messy, inconsistent data and designing systems that handle edge cases gracefully.

• Understand APIs and integration patterns conceptually: REST APIs, webhooks, authentication flows, polling vs. push architectures, and can evaluate systems based on how well they expose data and support automation, even if you're not writing the integration code yourself.

• Can work independently with minimal guidance, taking ownership of complex problems from design through implementation while managing ambiguity inherent in early-stage programs.

• Have strong analytical and problem-solving skills, with the ability to break down complex problems into manageable parts and develop creative solutions.

• Are able to communicate complex technical ideas to both technical and non-technical stakeholders, with a strong focus on collaboration and teamwork.

• Are passionate about staying up-to-date with industry trends and emerging technologies, with a willingness to learn and adapt to new tools and techniques.

XML job scraping automation by YubHub