Senior Risk and Compliance Engineer I

About the Role

Join Instacart's Governance, Risk, & Compliance (GRC) team as a Senior Risk & Compliance Engineer focused on Data Governance & Data Privacy to shape the future of our privacy initiatives. This role focuses on creating scalable data governance processes, assisting legal and engineering to translate requirements into actionable technical details, and maturing processes to ensure compliance across multiple global jurisdictions.

As this role sits at the intersection of technical problem-solving and risk reduction, you’ll need to read code, develop reports, and refine operational processes. The successful candidate will bring technical expertise and work across teams to balance risk reduction goals with operational and technical feasibility.

About the Team

The Governance Risk and Compliance (GRC) team plays a critical role in protecting Instacart's operations, data, and systems by identifying, mitigating, and managing risks across Privacy, Security, and Compliance domains. As part of the Chief Information Security Organization (CISO), the GRC team operates at the intersection of technology, legal guidance, and proactive risk management.

This tightly connected function includes sub-groups such as Data Governance, Compliance Management, and Security Risk Management, working collaboratively with stakeholders from Legal, Product, Engineering, Operations, and beyond. As a Senior Risk & Compliance Engineer on the Data Governance team, you'll be part of the group driving processes for privacy governance and broader data-related risks, with the ability to influence cross-functional decisions across the entire organization. With the support of the broader GRC team, you will shape key strategies and build scalable systems to meet the needs of a dynamic and fast-growing product ecosystem.

At Instacart, we believe in empowering each team member with significant ownership and responsibility, fostering a culture of collaboration, and providing opportunities for leaders who are ready to make an impact.

About the Job

As a Senior Risk & Compliance Engineer, you'll empower Instacart's GRC program by developing scalable Data Governance processes and implementing innovative solutions to address privacy risks, operational challenges, and regulatory compliance requirements. You will work on transformative projects across Instacart’s evolving products and business lines, contributing from day one in a high-visibility role that directly impacts our engineering and operational practices.

In this role, you will:

• Lead the development and operations of Privacy and Data Governance methodologies, partnering cross-functionally with product, engineering, and legal teams.
• Translate high-level regulatory and legal guidance into detailed, technical plans and processes that mitigate risks while balancing operational needs.
• Develop scalable solutions for testing, monitoring, and communicating data governance controls, leveraging automation where possible to ensure compliance and drive efficiency. This includes investigating and tracing complex data flows, schemas, and source systems to inform decision-making and ensure accuracy.
• Collaborate with global teams to manage risks for emerging product lines and international operations, ensuring precision and consistency across regions.
• Foster a results-driven, collaborative culture by influencing stakeholders, articulating risks and technical issues with clarity, and driving consensus on scalable solutions.

This role blends deep technical problem-solving with high-level operational strategy, making it a fantastic opportunity for someone excited to work on challenging problems with real-world impact in a fast-paced environment.

About You

You have a strong technical foundation and a passion for modernizing risk and compliance practices.

Minimum Qualifications

• BA/BS Degree in Computer Science, Engineering, Management Information Systems, or a related field (or equivalent practical experience).
• 6+ years of professional experience in Privacy Compliance, Compliance Engineering, Big 4 Consulting/Auditing, GRC, and/or Security within the technology industry.
• Strong technical skills with data systems, including the ability to investigate, trace, and validate complex data flows, schemas, and source systems to inform decision-making. Familiarity with tools like SQL and data query languages is helpful.
• Certifications and expertise in privacy compliance such as CIPT, CIPM, GDPR and US Privacy laws.
• Excellent collaboration and communication skills to navigate complex systems and convey results effectively.
• Demonstrated capacity to assess data pipelines and complex environments.

Preferred Qualifications

• Familiarity with compliance automation solutions and GRC tools.
• Tech background at consumer-focused organizations.
• Experience optimizing compliance processes through coding or automation solutions.
• A proactive, forward-thinking approach with a passion for automating manual processes and tackling GRC challenges creatively.

#LI-Remote