Careers at RiskWatch
Build the compliance platform 500+ teams trust.
RiskWatch is the assessment platform behind 40+ regulatory frameworks, ISO 27001, HIPAA, PCI DSS, SOC 2, NIST, GDPR, OSHA PSM, and many more, used by risk and compliance teams across the United States, Canada, and the United Kingdom. We're a small, distributed team building tools we'd actually use ourselves. If that sounds like the kind of work you want to do, we'd love to hear from you.
Why work at RiskWatch
Small team, real customers, work that ships.
RiskWatch has been building compliance assessment software since 2003. We're profitable, customer-funded, and run by people who started in audit and risk. The work is concrete: every feature you ship is used the next quarter by a CISO, a compliance manager, or an internal-audit lead preparing for a real regulator visit.
Roadmap items come from customer calls and quarterly reviews, not vanity metrics. You'll talk to the people using what you build, often the week you ship it.
Small enough that a single engineer ships a major framework module end-to-end. Small enough that one well-designed survey template helps every customer in that vertical.
USA + Canada + UK across product, engineering, customer success, and sales. Asynchronous-first, video for the things that need it, no return-to-office talk.
We use RiskWatch internally for our own SOC 2 and ISO 27001 evidence. The team that builds it is the team that runs it, every rough edge gets felt and fixed.
Open Roles
Roles we're hiring for right now.
We post roles only when there's real work for them on day one. Don't see your role? Scroll down and send us your CV, we keep good candidates on file and reach out when something opens up.
Benefits
Standard SaaS benefits, taken seriously.
We don't have a Michelin-star chef or a slide between floors. We do have the things that actually move the needle for distributed knowledge workers, health coverage, retirement matching, time to recover, budget to keep learning, a working home office, and skin in the game.
Medical, dental, and vision coverage for you and your dependents. Country-appropriate equivalents in Canada and the United Kingdom.
401(k) with employer match for US team members. RRSP for Canadian team members and pension contributions for UK team members.
Take the time you need. Two-week minimum encouraged so the policy isn't theoretical. Public holidays observed by your local team.
Annual stipend for books, courses, conferences, and certifications, including the compliance certs (CISA, CISSP, CRISC) we work with every day.
One-time setup budget for desk, chair, and monitor when you join, plus an annual top-up for replacements and upgrades.
Every full-time employee gets equity. Meaningful upside if we keep doing what we've been doing for the last two decades.
Hiring Process
Four steps. About two to three weeks end-to-end.
We don't run multi-month gauntlets and we don't ask candidates to do unpaid take-home projects that look suspiciously like real work. The process below is what every full-time hire goes through, regardless of role.
Send a CV and a short note about why this role. No cover letter required, three to five sentences is plenty. We read every application and reply within five business days.
30 minutes with a hiring manager to talk through your background, what you're looking for, and what the role actually involves day-to-day. We share comp range on this call so neither of us wastes time.
One with the team you'd join (craft + collaboration) and one with a cross-functional partner (how you work across the business). Each is 60 minutes. For technical roles, one of these includes a paid short exercise.
Reference checks run in parallel with offer prep. Written offer within 48 hours of the final interview, with a one-week response window so you have time to think it through and ask follow-up questions.
General Application
Don't see your role? Send us your CV.
We hire ahead of urgent need when we meet the right person. If RiskWatch sounds like the kind of place you want to work, send a CV and a short note about what you'd want to do, we read every one and keep good candidates on file.
Or email directly: careers@riskwatch.com