Crusoe is on a mission to accelerate the abundance of energy and intelligence. As the only vertically integrated AI infrastructure company built from the ground up, we own and operate each layer of the stack — from electrons to tokens — to power the world's most ambitious AI workloads. When you join Crusoe, you join a team that is building the future, faster.

We're in the midst of the greatest industrial revolution of our time. The demand for AI compute is boundless, and power is a bottleneck. We're solving that — with an energy-first approach that makes AI infrastructure better for the world and faster for the people innovating with AI.

We're looking for problem-solving, opportunity-finding teammates with a sense of urgency, who believe in the scale of our ambition and thrive on a path not fully paved — people who want to grow their careers alongside a team of experts across energy, manufacturing, data center construction, and cloud services.

If you want to do the most meaningful work of your career, help our customers and partners advance their AI strategies, and be part of a high-performing team that believes in each other, come build with us at Crusoe.

About This Role

We’re seeking a Staff GRC Risk Specialist to own and operationalize our enterprise risk function across Security Risk, AI Risk, and Third-Party Risk Management (TPRM). This is a highly technical role, not a traditional analyst position, requiring deep fluency in product architecture, AI systems, data flows, and infrastructure to ensure compliance requirements are effectively embedded into how our platform is built and operated.

Working closely with the Head of GRC, you’ll drive the maturity of our risk management program, maintain the Risk Register, lead technical risk assessments, and deliver strategic risk reporting to leadership. You’ll also design scalable, automated GRC workflows that strengthen audit readiness, customer trust, and regulatory alignment as the business evolves.

What You’ll Be Working On

• Owning the enterprise risk function, including development and continuous improvement of the Risk Register across identification, assessment, mitigation, and monitoring
• Conducting deep technical risk assessments across AI systems and products, data architectures, and inference infrastructure
• Reviewing risk for new products, features, applications, and datasets to embed security and compliance early in the development lifecycle
• Tracking mitigation efforts, escalating critical risks, and providing clear, contextualized risk insights to stakeholders and leadership
• Designing and delivering executive risk reporting, including quarterly briefings on emerging regulations, business changes, and compliance impact forecasts
• Building real-time risk and control health dashboards using GRC and data visualization platforms
• Leading AI risk assessments aligned with emerging standards (e.g., ISO 42001, NIST AI RMF, EU AI Act considerations)
• Optimizing AI risk intake and assessment workflows within Jira Service Management (JSM) Atlassian
• Leveraging AI-driven automation to scale risk activities such as control mapping, evidence validation, and risk correlation analysis
• Owning the Third-Party Risk Management program, including vendor risk assessments and integration with procurement and vendor workflows
  
  
  

What You’ll Bring To The Team

• 7+ years of experience in GRC, security engineering, or IT risk roles with strong product and architecture fluency
• Proven ownership of risk management programs, including risk registers, technical risk assessments, and executive-level reporting
• Deep knowledge of security and risk frameworks (ISO 27001, ISO 42001, SOC 2, NIST 800-53, NIST CSF, NIST AI RMF, HIPAA) and their application to real-world systems
• Strong understanding of cloud-native architectures and security controls across AWS, GCP, or Azure
• Experience with GRC platforms (e.g., Vanta, Drata, OneTrust, ServiceNow GRC) and workflow tools such as Jira Service Management
• Demonstrated ability to leverage AI-powered tools and agents to automate GRC workflows and scale risk operations
  
  
  

Bonus Points

• Experience with quantitative risk frameworks such as FAIR, COSO, or ISO 31000
• Hands-on familiarity with AI/ML systems, agentic AI, MLOps, or AI safety governance
• Certifications such as CISSP, CISA, CRISC, or ISO 27001 Lead Auditor
• Prior experience navigating AI-specific regulations (e.g., EU AI Act) or emerging technology compliance frameworks
  
  
  

Benefits:

• Industry competitive pay
• Restricted Stock Units in a fast growing, well-funded technology company
• Health insurance package options that include HDHP and PPO, vision, and dental for you and your dependents
• Employer contributions to HSA accounts
• Paid Parental Leave
• Paid life insurance, short-term and long-term disability
• Teladoc
• 401(k) with a 100% match up to 4% of salary
• Generous paid time off and holiday schedule
• Cell phone reimbursement
• Tuition reimbursement
• Subscription to the Calm app
• MetLife Legal
• Company paid commuter benefit; $300/month
  
  
  

Compensation Range

Compensation will be paid in the range of up to $185,000 - $200,000 + Bonus. Restricted Stock Units are included in all offers. Compensation to be determined by the applicants knowledge, education, and abilities, as well as internal equity and alignment with market data.

Crusoe is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, disability, genetic information, pregnancy, citizenship, marital status, sex/gender, sexual preference/ orientation, gender identity, age, veteran status, national origin, or any other status protected by law or regulation.