Sierra - Security GRC Manager: Customer Trust Enablement

• You may be a good fit if you: • Have 10+ years of progressive experience in compliance, security operations, or customer trust, with 3+ years building or scaling customer-facing security programs from early stage through high growth and seniority and judgment. • Have a proven track record managing enterprise security relationships at scale: you've personally led customer audits and security meetings, built trust with Fortune 500 CISOs, and know how to balance rigor with deal velocity. • Have hands-on experience selling into or supporting highly regulated buyers financial services, banks, healthcare, or insurance and can navigate the depth of their security and regulatory diligence with credibility. • Understand the regulatory landscape across customer industries and geographies well enough to know what each is genuinely accountable for, and bring empathy to those obligations, balancing customer needs, deal velocity, and what Sierra can credibly commit to, and turning that judgment into clear internal priorities. • Have experience supporting global customers and navigating international data protection and AI regimes (e.g., GDPR, UK GDPR, EU AI Act, cross-border transfer and data-residency requirements). • Have strong technical acumen you can explain complex security architectures, compliance frameworks (NIST 800-53, SOC 2, ISO 27001, PCI DSS, HIPAA), and multi-cloud implementations (AWS, GCP) in customer-friendly language. • Have experience implementing trust automation platforms or building scaled questionnaire-management processes. • Can identify broken processes, design scalable solutions, and implement the right tools to maximize efficiency without sacrificing quality. • Are comfortable presenting to C-level executives and translating technical security concepts for business audiences. • Have a proven track record of cross-functional influence without direct authority — you build partnerships that get things done. • Have experience partnering with Revenue Operations, Deal Desk, or Sales teams to integrate security into go-to-market motions. • Strong candidates may also: • Have worked in AI/ML or high-growth SaaS companies navigating rapid compliance expansion. • Bring Field CISO or Customer Success Security experience supporting enterprise deals. • Have familiarity with emerging AI standards (ISO 42001, NIST AI RMF). • Possess relevant certifications (CISA, CRISC, CISM, CISSP, ISO 27001 Lead Auditor). • Have experience with AI safety or AI agent / model security considerations. • Our values • Our values • Trust: We build trust with our customers with our accountability, empathy, quality, and responsiveness. We build trust in AI by making it more accessible, safe, and useful. We build trust with each other by showing up for each other professionally and personally, creating an environment that enables all of us to do our best work. • Trust: • Customer Obsession: We deeply understand our customers’ business goals and relentlessly focus on driving outcomes, not just technical milestones. Everyone at the company knows and spends time with our customers. When our customer is having an issue, we drop everything and fix it. • Customer Obsession: • Craftsmanship: We get the details right, from the words on the page to the system architecture. We have good taste. When we notice something isn’t right, we take the time to fix it. We are proud of the products we produce. We continuously self-reflect to continuously self-improve. • Craftsmanship: • Intensity: We know we don’t have the luxury of patience. We play to win. We care about our product being the best, and when it isn’t, we fix it. When we fail, we talk about it openly and without blame so we succeed the next time. • Intensity: • Family: We know that balance and intensity are compatible, and we model it in our actions and processes. We are the best technology company for parents. We support and respect each other and celebrate each other’s personal and professional achievements. • Family: