Staff Governance Risk Compliance
@ ŌURA

New York, NY

$165,000

On Site

Full Time

Posted 22 days ago

Your Application Journey

Interview

Email Hiring Manager

XXXXXXXXXX XXXXXXXXXXX XXXXXX******* @oura.com

Recommended after applying

Job Details

About Oura

At Oura, our mission is to empower every person to own their inner potential. Our award-winning Oura Ring and connected app help 2.5 million people worldwide gain insights into their readiness, activity, and sleep quality. We value a healthy, inclusive work environment and provide the tools our team needs to excel both in and out of the office.

Role Overview: Staff Governance Risk Compliance

The Staff Governance Risk Compliance professional will lead and drive compliance, risk, and governance initiatives while collaborating with Security, Privacy, Product, and Engineering teams. You will own and mature security and compliance programs including SOC 2, HIPAA, ISO27001, ISO27799, HITRUST, NIST 800-171, CMMC, and FedRAMP.

What You Will Do

Program Ownership: Lead strategic GRC initiatives and industry certifications.
Policy & Governance Leadership: Develop and implement security and compliance policies.
Cross-Functional Risk Leadership: Integrate security and compliance with Product, Engineering, and Privacy.
Regulatory Alignment: Monitor regulatory changes and evolve GRC strategy.
Audit & Assurance: Oversee audit readiness and risk assessments.
Team Enablement: Mentor peers and cultivate a compliance culture.

Requirements

7+ years experience in GRC, IT compliance, security, or risk management.
Expertise in SOC 2, HIPAA, HITRUST, NIST, ISO27001, ISO27799, CMMC, and FedRAMP.
Technical familiarity with IT environments (AWS, GCP) and compliance automation tools.
Strong leadership and communication skills across technical and non-technical teams.
Certifications such as CGRC, CISA, CRISC, or CISSP are preferred.

Benefits

Competitive salary and equity packages.
Comprehensive health, dental, vision, and mental health benefits.
Employee discount including your own Oura Ring.
Generous paid time off, holidays, and wellness time off.
Inclusive work culture with remote, hybrid, and office options.

Key skills/competency

SOC2, HIPAA, HITRUST, NIST, ISO27001, ISO27799, CMMC, FedRAMP, Risk Management, Compliance

Apply without a personalized resume

How to Get Hired at ŌURA

🎯 Tips for Getting Hired

Customize your resume: Emphasize GRC and compliance expertise.
Research Oura's culture: Understand their mission and values deeply.
Highlight technical skills: Showcase IT and cloud experience.
Prepare concrete examples: Demonstrate leadership in risk management.

📝 Interview Preparation Advice

Technical Preparation

Review SOC2 and HIPAA standards.

Learn cloud security controls (AWS, GCP).

Practice compliance automation tools usage.

Study risk assessment methodologies.

Behavioral Questions

Describe a risk management challenge.

Explain cross-team conflict resolution.

Share leadership experience in compliance.

Discuss a time of audit pressure.

Ready to optimize your application for Oura?

Our Al will adapt your resume for Oura's hiring patterns and similar Staff Governance Risk Compliance roles.

Frequently Asked Questions

What qualifications does Oura seek for the Staff Governance Risk Compliance role?

How important are certifications for the Staff Governance Risk Compliance position at Oura?

Can I apply for the Oura Staff Governance Risk Compliance role if I live outside the East Coast?

What makes the Staff Governance Risk Compliance role at Oura unique?