Staff Governance Risk Compliance @ ŌURA
Your Application Journey
Email Hiring Manager
Job Details
About Oura
At Oura, our mission is to empower every person to own their inner potential. Our award-winning Oura Ring and connected app help 2.5 million people worldwide gain insights into their readiness, activity, and sleep quality. We value a healthy, inclusive work environment and provide the tools our team needs to excel both in and out of the office.
Role Overview: Staff Governance Risk Compliance
The Staff Governance Risk Compliance professional will lead and drive compliance, risk, and governance initiatives while collaborating with Security, Privacy, Product, and Engineering teams. You will own and mature security and compliance programs including SOC 2, HIPAA, ISO27001, ISO27799, HITRUST, NIST 800-171, CMMC, and FedRAMP.
What You Will Do
- Program Ownership: Lead strategic GRC initiatives and industry certifications.
- Policy & Governance Leadership: Develop and implement security and compliance policies.
- Cross-Functional Risk Leadership: Integrate security and compliance with Product, Engineering, and Privacy.
- Regulatory Alignment: Monitor regulatory changes and evolve GRC strategy.
- Audit & Assurance: Oversee audit readiness and risk assessments.
- Team Enablement: Mentor peers and cultivate a compliance culture.
Requirements
- 7+ years experience in GRC, IT compliance, security, or risk management.
- Expertise in SOC 2, HIPAA, HITRUST, NIST, ISO27001, ISO27799, CMMC, and FedRAMP.
- Technical familiarity with IT environments (AWS, GCP) and compliance automation tools.
- Strong leadership and communication skills across technical and non-technical teams.
- Certifications such as CGRC, CISA, CRISC, or CISSP are preferred.
Benefits
- Competitive salary and equity packages.
- Comprehensive health, dental, vision, and mental health benefits.
- Employee discount including your own Oura Ring.
- Generous paid time off, holidays, and wellness time off.
- Inclusive work culture with remote, hybrid, and office options.
Key skills/competency
SOC2, HIPAA, HITRUST, NIST, ISO27001, ISO27799, CMMC, FedRAMP, Risk Management, Compliance
How to Get Hired at ŌURA
🎯 Tips for Getting Hired
- Customize your resume: Emphasize GRC and compliance expertise.
- Research Oura's culture: Understand their mission and values deeply.
- Highlight technical skills: Showcase IT and cloud experience.
- Prepare concrete examples: Demonstrate leadership in risk management.