Cohere AI Logo

Cohere AI

Senior GRC Specialist

Reposted 9 Days Ago
In-Office or Remote
Hiring Remotely in Toronto, ON
Senior level
In-Office or Remote
Hiring Remotely in Toronto, ON
Senior level
This role involves building and scaling compliance programs, translating security and regulatory requirements into scalable solutions, and collaborating across teams, specifically in AI governance and technical compliance automation.
The summary above was generated by AI

Who are we?

Cohere is the leading security-first enterprise AI company. We build cutting-edge foundation AI models and end-to-end products that are designed to solve real-world business problems.

We’re training and deploying frontier models for enterprises who are building AI systems. We believe that our work is instrumental to the widespread adoption of AI and we are looking for folks that want to be part of that.

We obsess over what we build. Each one of us is responsible for contributing to increasing the capabilities of our models and the value they drive for our customers. Cohere is a team of researchers, engineers, designers, and more, who are all passionate about their craft.

We are a global technology company co-headquartered in Toronto and San Francisco, with key offices in London, New York City, Montreal, Seoul, Germany and Paris. Join us!

Why this role?

The Governance, Risk, and Compliance (GRC) team at Cohere operates as a centralized function within the Security organization, leading efforts across governance, risk management, and compliance. This team is instrumental in reinforcing customer trust, ensuring adherence to regulatory requirements, and advancing robust internal governance and control practices across Cohere.

This role offers the opportunity to help build and shape Cohere’s compliance and governance foundation. As expectations around security, privacy, public sector readiness, and responsible AI continue to evolve, this individual will play a key role in translating complex requirements into scalable programs, practical controls, and durable governance processes. It is a high-impact role for someone eager to work at the intersection of security, compliance, technology, and AI governance, and to help enable responsible growth in a fast-moving environment.

This is not a purely policy-focused GRC role. We’re looking for someone who can pair compliance expertise with practical technical problem-solving, including automation, lightweight tool building, and process improvement.

What you’ll do
  • Build, implement, and scale compliance programs, controls, and processes across frameworks and regulatory requirements including SOC 2, ISO 27001, HIPAA, ISO 42001, Product Compliance, and FedRAMP/DoD (+others)

  • Support and mature compliance efforts related AI governance including work aligned to ISO 42001 and the EU AI Act

  • Drive compliance readiness for FedRAMP, DoD, and related public sector requirements, while supporting broader enterprise and customer-facing compliance obligations

  • Partner with Security, Engineering, Modeling, Product, Legal, and other cross-functional teams to translate requirements into practical, scalable controls

  • Improve compliance operations through automation, tooling, and scalable workflows

  • Help build scripts or lightweight tools for evidence collection, reporting, control tracking, and audit readiness

  • Manage cross-functional projects, timelines, remediation efforts, and audit preparation

  • Support audits, assessments, and customer or regulatory compliance requests.

What we’re looking for

You’ll ideally have 7+ years of progressive experience in the following:

  • Building and scaling compliance programs across multiple frameworks and regulatory requirements, including SOC 2, ISO 27001, HIPAA, with extensive experience in FedRAMP, DoD, and public sector or highly regulated environments

  • AI governance and frameworks such as ISO 42001

  • Strong project management and cross-functional execution skills

  • Technical fluency and comfort working with Engineering and Security teams

  • Automation, workflow tooling, or process design; some hands-on experience with Python or similar scripting for lightweight automation is a plus

  • Strong written communication, organization, and attention to detail.

Nice to have
  • Experience designing and implementing mature risk management frameworks, including FAIR, quantitative risk methodologies, and other structured enterprise risk models

  • Consulting experience in regulated environments, including multi-jurisdictional compliance programs and regulatory requirements across the U.S. and international markets

  • Experience with additional frameworks such as NIST CSF, NIST RMF, NIST AI RMF, CMMC, or similar standards

  • Experience working in cloud-native, SaaS, or highly technical product environments

  • Experience preparing reports, metrics, and presentations for senior leadership, including communicating compliance posture, program progress, and risk insights to executive stakeholders.

Apply:

If you are passionate about solving complex revenue challenges in a dynamic AI environment and want to join a team that values technical excellence and innovation, we encourage you to apply.

Working Location:

Remote US or Canada

Compensation:

Cohere is committed to fair and transparent pay practices. The salary range listed for this role reflects the expected base compensation. Actual compensation offered will be determined by factors such as location, level, job-related knowledge, skills, education, and experience.
For candidates in the US, the Compensation Range is: $140,000 - $220,000 [USD]

For candidates in Canada, the Compensation Range is: $200,000 - 245,000 [CAD]

Full-Time Employees at Cohere enjoy these Perks:
  • A weekly lunch stipend of $75/£75 or equivalent in your local currency for lunch.

  • Full health and dental benefits, including a separate budget for mental health.

  • RRSP matching, 401K, Pension Scheme.

  • 100% Parental Leave top-up for up to 6 months, for either parent.

  • Annual enrichment benefits:

    Arts & culture, fitness/wellness, quality time, and a workspace improvement credit.

    Education & learning stipend for conferences, courses, and coaching.

  • 6 weeks of paid vacation (30 working days!)

  • Budget for traveling to other offices if you are remote, plus an annual company offsite.

How and Where We Work:
  • Cohere is remote-friendly. We have offices in Toronto, San Francisco, New York City, London, Paris, Montreal, and more coming soon.

  • For those in the office: a daily lunch program, plenty of snacks, and regular community and social events.

  • For those not near an office: a co-working benefit so you can work alongside others in your city.

  • Everyone receives a $500 home office stipend to set up your workspace properly.

If any of the above doesn’t line up exactly with your experience, we still encourage you to apply.


We strive to create an inclusive work environment for all; we welcome applicants from all backgrounds and are committed to providing equal opportunities. Should you require any accommodations during the recruitment process, please submit an Accommodations Request Form, and we will work together to meet your needs.

We may use AI-enabled tools to screen and assess applicants against the criteria for this position. This helps our recruiters identify potentially qualified candidates, but it doesn't limit the applications our recruiters may review or consider.

Similar Jobs

85K-250K Annually
Senior level
Big Data • Food • Hardware • Machine Learning • Retail • Automation • Manufacturing
Perform monthly commodity analyses for grains and vegetable oils using supply/demand data and market forecasts; build and manage market intelligence databases; develop and improve constraint-optimization price models and long-range forecasts; support CPRM hedging and coverage strategy decisions; track team KPIs and deliver insights to inform pricing and risk management.
Top Skills: Artificial IntelligenceExcelPythonR
An Hour Ago
Easy Apply
Remote
Easy Apply
Mid level
Mid level
Cloud • Security • Software • Cybersecurity • Automation
Build, ship, and maintain backend features enabling AI agents to interact with GitLab. Design GraphQL/REST APIs, extend tests (RSpec), work with PostgreSQL, troubleshoot production issues, and collaborate cross-functionally to integrate AI tooling responsibly.
Top Skills: Background JobsGitlabGraphQLPostgresRest ApisRspecRubyRuby On RailsSQL
An Hour Ago
Easy Apply
Remote
Easy Apply
Senior level
Senior level
Cloud • Security • Software • Cybersecurity • Automation
Ownership of backend features for Agentic Tools: design and implement GraphQL/REST APIs, build secure scalable Ruby on Rails services, improve RSpec automated tests, collaborate across product and AI teams, participate in Tier 2 on-call, and shape architecture for AI agent interactions with GitLab.
Top Skills: Gitlab McpGraphQLPythonRestRspecRuby On RailsVue

What you need to know about the Boston Tech Scene

Boston is a powerhouse for technology innovation thanks to world-class research universities like MIT and Harvard and a robust pipeline of venture capital investment. Host to the first telephone call and one of the first general-purpose computers ever put into use, Boston is now a hub for biotechnology, robotics and artificial intelligence — though it’s also home to several B2B software giants. So it’s no surprise that the city consistently ranks among the greatest startup ecosystems in the world.

Key Facts About Boston Tech

  • Number of Tech Workers: 269,000; 9.4% of overall workforce (2024 CompTIA survey)
  • Major Tech Employers: Thermo Fisher Scientific, Toast, Klaviyo, HubSpot, DraftKings
  • Key Industries: Artificial intelligence, biotechnology, robotics, software, aerospace
  • Funding Landscape: $15.7 billion in venture capital funding in 2024 (Pitchbook)
  • Notable Investors: Summit Partners, Volition Capital, Bain Capital Ventures, MassVentures, Highland Capital Partners
  • Research Centers and Universities: MIT, Harvard University, Boston College, Tufts University, Boston University, Northeastern University, Smithsonian Astrophysical Observatory, National Bureau of Economic Research, Broad Institute, Lowell Center for Space Science & Technology, National Emerging Infectious Diseases Laboratories

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account