Frontier AI Research · San Francisco
About the Team
Governance, Risk, and Compliance (GRC) is foundational to Security delivering mission outcomes at OpenAI. The GRC team provides security assurances and builds compliance for OpenAI’s technology, people, and products. We are technical in what we build but operational in how we do our work, and we partner deeply with Product, Security, Legal, Privacy, GTM, and Field Security to help OpenAI move quickly while maintaining trust with customers, auditors, regulators, and the public.
About the Role
We are looking for an experienced Regulatory & Product Assurance IC to help scale OpenAI’s GRC function across product launches, regulatory readiness, and customer trust. You will partner closely with Product, Security, Legal, Privacy, Field Security, and GTM teams to make sure OpenAI can move quickly while maintaining our security and compliance claims and giving customers, auditors, and regulators accurate and actionable information about how OpenAI handles user data.
This role is not about supporting SOC or ISO audits; it's a highly cross-functional and deeply operational role to ensure that our products launch with the right controls; our external narratives remain true and GTM and customers are enabled with the right information to assess OpenAI’s security and compliance. You will help build the systems, content, escalation paths, and automation that allow OpenAI to support enterprise customers, strategic launches, and emerging regulatory expectations without turning GRC into a bottleneck. You should be comfortable working across high-visibility product launches, data handling policy creation, customer security reviews, public trust content, launch readiness, regulated products, release risk assessments, and product assurance evidence.
We’re looking for people who bring:
Strong product assurance, product launch review, customer trust, security compliance, or enterprise trust experience in a technical environment.
Ability to support GTM teams with accurate, approved, customer-facing security and compliance narratives.
Judgment to distinguish what can be answered directly, what requires Product/Security/Legal review, and what should not be claimed externally.
Experience building scalable operating models, metrics, content systems, and automation for repeated assurance workflows.
Excellent written communication and comfort translating technical security concepts for customers, auditors, regulators, Sales, and Field Security.
In this role, you will:
Own and improve the customer trust operating model with other org members and partner teams, including intake, triage, escalations, SLAs, metrics, and quality review.
Support strategic customer trust needs, including security questionnaires, customer calls, Trust Center updates, and high-priority deal support.
Partner with Product, Security, Legal, Privacy, and GTM teams to prepare accurate, approved trust materials for launches and regulated product changes.
Build reusable customer-facing narratives, FAQs, evidence paths, and whitepapers that reduce one-off work while keeping claims controlled.
Ensure external security and compliance claims are supported by internal processes and controls.
Ensure product launches support our external security and compliance narrative; scale launch reviews to ensure GRC is not a bottleneck.
Develop data handling guidance as needed to provide product teams a paved path consistent with our external commitments.
Use automation and AI-native workflows across internal and external tooling, Codex, and related systems to improve speed and consistency.
Turn recurring customer discovery into reusable content, product feedback, evidence improvements, and control-gap signals.
You might thrive in this role if:
You have operated as a senior IC in GRC, product assurance, customer trust/assurance, security compliance, enterprise trust, product security assurance, or a closely related function.
You have technical fluency across SaaS, cloud, security controls, product launches, and enterprise assurance workflows.
You have experience in scaling product launch reviews.
You have vertical specific experience in Healthcare, Financial Services and Advertising.
You have supported GTM, Field Security, Sales Engineering, Customer Success, or strategic enterprise customers.
You write clearly, precisely, and with excellent judgment about external claims and evidence.
You can build systems, metrics, and escalation paths that scale a high-volume assurance function without sacrificing quality.
You are excited to use Codex and other AI-native tools to reduce manual review, automate launch review processes, and keep approved content current.
About OpenAI
OpenAI is an AI research and deployment company dedicated to ensuring that general-purpose artificial intelligence benefits all of humanity. We push the boundaries of the capabilities of AI systems and seek to safely deploy them to the world through our products. AI is an extremely powerful tool that must be created with safety and human needs at its core, and to achieve our mission, we must encompass and value the many different perspectives, voices, and experiences that form the full spectrum of humanity.
We are an equal opportunity employer, and we do not discriminate on the basis of race, religion, color, national origin, sex, sexual orientation, age, veteran status, disability, genetic information, or other applicable legally protected characteristic.
For additional information, please see OpenAI’s Affirmative Action and Equal Employment Opportunity Policy Statement.
Background checks for applicants will be administered in accordance with applicable law, and qualified applicants with arrest or conviction records will be considered for employment consistent with those laws, including the San Francisco Fair Chance Ordinance, the Los Angeles County Fair Chance Ordinance for Employers, and the California Fair Chance Act, for US-based candidates. For unincorporated Los Angeles County workers: we reasonably believe that criminal history may have a direct, adverse and negative relationship with the following job duties, potentially resulting in the withdrawal of a conditional offer of employment: protect computer hardware entrusted to you from theft, loss or damage; return all computer hardware in your possession (including the data contained therein) upon termination of employment or end of assignment; and maintain the confidentiality of proprietary, confidential, and non-public information. In addition, job duties require access to secure and protected information technology systems and related data security obligations.
To notify OpenAI that you believe this job posting is non-compliant, please submit a report through this form. No response will be provided to inquiries unrelated to job posting compliance.
We are committed to providing reasonable accommodations to applicants with disabilities, and requests can be made via this link.
OpenAI Global Applicant Privacy Policy
At OpenAI, we believe artificial intelligence has the potential to help people solve immense global challenges, and we want the upside of AI to be widely shared. Join us in shaping the future of technology.