ID.me is the next-generation digital identity wallet that simplifies how individuals securely prove their identity online. Consumers can verify their identity with ID.me once and seamlessly login across websites without having to create a new login and verify their identity again. Over 152 million users experience streamlined login and identity verification with ID.me at 20 federal agencies, 45 state government agencies, and 70+ healthcare organizations. More than 600+ consumer brands use ID.me to verify communities and user segments to honor service and build more authentic relationships. ID.me's technology meets the federal standards for consumer authentication set by the Commerce Department and is approved as a NIST 800-63-3 IAL2 / AAL2 credential service provider by the Kantara Initiative. ID.me is committed to "No Identity Left Behind" to enable all people to have a secure digital identity.
ID.me is seeking a Staff GRC Engineer to lead the technical infrastructure build, management, and tooling supporting Governance, Risk, and Compliance operations. This individual will design, build, and maintain automation and tooling that streamline control testing, continuous monitoring, evidence collection, and compliance reporting.
As a Staff GRC Engineer, you'll turn governance and compliance into systems: codified controls, automated evidence, and opinionated guardrails that keep pace with rapid feature development and refactoring. You'll partner tightly with Security Engineering, Product/AppSec, Privacy, IT, and ERM to prevent compliance drift and make the secure path the paved path. As the technical owner of the GRC platform, the Senior GRC Engineer will architect data relationships, automate control workflows, and integrate evidence sources from security tools. Your north star is reduced manual effort, lower the cost and burden of compliance, and improve audit readiness through technical innovation.
This is a fully onsite position in one of our hub locations (Mountain View CA or McLean VA).