Who are we?
Cohere is the leading security-first enterprise AI company. We build cutting-edge foundation AI models and end-to-end products that are designed to solve real-world business problems.
We’re training and deploying frontier models for enterprises who are building AI systems. We believe that our work is instrumental to the widespread adoption of AI and we are looking for folks that want to be part of that.
We obsess over what we build. Each one of us is responsible for contributing to increasing the capabilities of our models and the value they drive for our customers. Cohere is a team of researchers, engineers, designers, and more, who are all passionate about their craft.
We are a global technology company co-headquartered in Toronto and San Francisco, with key offices in London, New York City, Montreal, Seoul, Germany and Paris. Join us!
Why this role?
The Governance, Risk, and Compliance (GRC) team at Cohere operates as a centralized function within the Security organization, leading efforts across governance, risk management, and compliance. This team is instrumental in reinforcing customer trust, ensuring adherence to regulatory requirements, and advancing robust internal governance and control practices across Cohere.
This role offers the opportunity to help build and shape Cohere’s compliance and governance foundation. As expectations around security, privacy, public sector readiness, and responsible AI continue to evolve, this individual will play a key role in translating complex requirements into scalable programs, practical controls, and durable governance processes. It is a high-impact role for someone eager to work at the intersection of security, compliance, technology, and AI governance, and to help enable responsible growth in a fast-moving environment.
This is not a purely policy-focused GRC role. We’re looking for someone who can pair compliance expertise with practical technical problem-solving, including automation, lightweight tool building, and process improvement.
What you’ll do
Build, implement, and scale compliance programs, controls, and processes across frameworks and regulatory requirements including SOC 2, ISO 27001, HIPAA, ISO 42001, Product Compliance, and FedRAMP/DoD (+others)
Support and mature compliance efforts related AI governance including work aligned to ISO 42001 and the EU AI Act
Drive compliance readiness for FedRAMP, DoD, and related public sector requirements, while supporting broader enterprise and customer-facing compliance obligations
Partner with Security, Engineering, Modeling, Product, Legal, and other cross-functional teams to translate requirements into practical, scalable controls
Improve compliance operations through automation, tooling, and scalable workflows
Help build scripts or lightweight tools for evidence collection, reporting, control tracking, and audit readiness
Manage cross-functional projects, timelines, remediation efforts, and audit preparation
Support audits, assessments, and customer or regulatory compliance requests.
What we’re looking for
You’ll ideally have 7+ years of progressive experience in the following:
Building and scaling compliance programs across multiple frameworks and regulatory requirements, including SOC 2, ISO 27001, HIPAA, with extensive experience in FedRAMP, DoD, and public sector or highly regulated environments
AI governance and frameworks such as ISO 42001
Strong project management and cross-functional execution skills
Technical fluency and comfort working with Engineering and Security teams
Automation, workflow tooling, or process design; some hands-on experience with Python or similar scripting for lightweight automation is a plus
Strong written communication, organization, and attention to detail.
Nice to have
Experience designing and implementing mature risk management frameworks, including FAIR, quantitative risk methodologies, and other structured enterprise risk models
Consulting experience i…
Every tech & IT company hiring across India — with AI match scores — on one live map.
Open the map →