Security GRC Manager

About us

Humaans is building the next generation of infrastructure for the workplace; software designed for companies that are scaling fast operating globally and pushing into new boundaries.

What started as a system of record has evolved into a broader platform for operating people globally. With Athena our agentic AI layer Humaans moves beyond data management into intelligent orchestration connecting workflows across HR IT Finance and Operations so organisations can act faster and with greater confidence redefining how work gets done.

We work with ambitious teams across Europe and the US from AI-native companies like Lovable Poolside Fyxer AI and Tandem Health to established high-growth organisations scaling internationally and through acquisition including Quantexa Sellpy Manychat Gigs Croud and Threecolts. These teams dont buy software for featuresthey buy leverage. The ability to run faster cleaner and with more control as complexity compounds.

To date weve raised $20m in venture funding from some of the most respected founders operators and funds in technology: Lachy Groom (Physical Intelligence) Stewart Butterfield (Slack) Tobias Lütke (Shopify) Dylan Field (Figma) Jeff Weiner (LinkedIn) Claire Johnson (Stripe) Oliver Jay (OpenAI) Jay Simmons (Bond) as well as Y Combinator Moonfire Frontline Ventures Pathlight Ventures and Exor.

If you have massive ambition and want to work on a hard problem with a small team that moves fast at a moment when the category is genuinely up for grabs - this is it.

Were looking for a Security GRC Manager - Trust and Compliance to own the systems processes audits and customer-facing trust work that help Humaans scale into more demanding markets.

This is a hands-on ownership role built around AI. Youll run our security compliance programme throughout the year not just during audit season. AI is how the work gets done here. It drafts policies speeds up questionnaire responses and keeps evidence current. You already use these tools daily and know how to get real leverage from them.

Youll own the operating rhythm for frameworks like ISO 27001 SOC 1 SOC 2 HIPAA and future standards that matter to our customers. Youll keep evidence organised controls running policies up to date vendors reviewed risks visible and audits moving smoothly.

Youll also be close to revenue. Youll support Sales and Customer Success on security and compliance questions help complete vendor security questionnaires maintain reusable trust materials and make sure enterprise buyers get accurate fast confidence-building answers.

This role sits at the intersection of Security Legal Product Engineering Revenue and Operations. You dont need to be the person configuring every system yourself but you do need to understand how modern SaaS companies operate ask sharp questions drive action across teams and keep the bar high.

Focus / Ownership

Youll own Humaans security compliance programme end-to-end including ISO SOC 1 SOC 2 HIPAA and future frameworks we choose to pursue.

Youll manage audit cycles throughout the year coordinating with external auditors internal control owners Engineering People Legal Finance and Operations.

Youll maintain the controls evidence policies risk register access reviews vendor reviews business continuity processes and incident response documentation that support our certifications and customer commitments. AI drafts and updates these artefacts and keeps evidence current year-round not only at audit time.

Youll support customer-facing trust work including sales calls security reviews procurement processes vendor questionnaires RFPs DPAs subprocessors data protection questions and enterprise diligence.

Youll build AI-assisted systems for answering repeated security questions quickly and accurately. The answer bank drafts responses. Trust collateral stays current. A review process holds quality as volume scales.

Youll work with Product and Engineering to translate compliance requirements into practical operational controls without slowing the company down unnecessarily.

Youll help the company make clear risk-based decisions escalating when something matters and cutting through noise when it doesnt.

Youll raise the maturity of how Humaans thinks about security privacy risk and customer trust as we move upmarket.

Requirements

You have 4 years of experience in security compliance GRC trust audit information security privacy operations or a closely related role.

Youve run or supported audits for frameworks such as SOC 2 ISO 27001 SOC 1 HIPAA GDPR or similar.

Youve used AI in security or compliance work and can speak to what you built and the outcome. Think drafting policies speeding up questionnaire responses or reviewing vendor documentation.

You understand how modern B2B SaaS companies work including cloud infrastructure access management vendor management product development customer data and enterprise sales processes.

Youre comfortable being customer-facing. You can join a sales call answer security questions clearly and give buyers confidence.

Youre strong at written communication. You can produce crisp policies questionnaire responses audit narratives and internal guidance that people actually understand.

Youre organised and detail-oriented. You can keep evidence control owners audit timelines and customer commitments moving without dropping things.

Youre pragmatic. You know the difference between meaningful risk reduction and compliance theatre.

You can work across teams and hold a high bar without becoming a blocker.

Youre excited by a high-growth high-ownership environment where the playbook is still being written.

Nice to have

Experience in HR tech fintech healthtech infrastructure or another category where customer data and enterprise trust are central.

Experience with security compliance platforms such as Vanta Drata Secureframe Sprinto or similar.

Experience reviewing DPAs subprocessors data residency questions privacy documentation and vendor contracts in partnership with Legal.

Familiarity with US healthcare or HIPAA requirements.

Experience building a trust centre customer-facing security portal or security questionnaire answer library.

Experience supporting enterprise sales procurement RFPs or security reviews.

What success looks like

Within your first 90 days youll understand our current compliance posture audit calendar control owners customer trust materials and major gaps.

Within six months youll have improved the operating rhythm of our compliance programme reduced friction in sales security reviews and made audits feel more predictable.

Within twelve months Humaans will have a more scalable trust function: stronger evidence better controls faster questionnaire turnaround clearer ownership and a security compliance programme that helps us win larger customers.

This is an in-person role. Our team comes together in the office Monday through Thursday while most of the team collaborates in person on Mondays Tuesdays and Thursdays.

Package & Benefits

Early stage startups can be messy we know that. Were putting effort in providing you with the best employee experience and a quality driven environment in exchange for trusting us.

• Market-leading compensation that reflects your value

• 25 days paid time off each year plus public holidays

• Share Options with 5-year exercise window so you dont feel pressure to exercise if you leave

• Free Thursday lunches at HQ quarterly team events and company offsites.

• Top tier private coverage for health vision and dental care

• A new MacBook and tools you need to do your best work

• Enhanced parental leave with up to 16 weeks for primary and 4 weeks for secondary

• Learning & development budget

Why Join Humaans Today

HR tech is having its AI moment and were positioned to own it. Humaans started as a next-gen HRIS taking on large incumbents in a massive market. Weve since evolved into something even bigger: an AI platform that sits across workforce data and automates the operational layer of HR entirely; the natural progression of what weve been building toward.

The product is highly differentiated. Its built around a structured workforce data model that makes AI reliable in an HR context something no one else has gotten right. Customers notice the difference immediately.

Were backed by Y Combinator Lachy Groom Moonfire Frontline Ventures and operators whove built some of the most consequential software companies of the last decade: the founders of Slack Figma and Shopify and Asanas former CRO and Head of OpenAI International.

Were a small team with an unapologetically high bar. It shows up in the product in how we communicate and in the standards we hold each other to.

Our Commitment to Diversity

At Humaans were looking for genuinely good people that are transparent and emphatic. Were committed to providing equal opportunities a diverse and inclusive work environment and ensuring a fair interview process for everyone. Youre welcome to apply no matter your gender ethnicity sexual orientation religion civil or family status age disability or race.

Privacy notice

We care about your privacy. When you apply for a role at Humaans well collect and process your personal data as part of our recruitment process. This includes things like your CV contact details and any other information you choose to share. We may also contact you about future opportunities. You can ask us to delete your data at any time. For more details see our .

Required Experience:

Manager