Director-Governance, Risk, and Compliance (GRC) - Remote

Overview

We seek an experienced Director of Governance, Risk, and Compliance (GRC) to lead our security and compliance efforts and drive our organization's goal of achieving StateRAMP and FedRAMP certifications. The ideal candidate will be a seasoned professional with extensive experience in the state and federal space, bringing expertise in standards, assessments, and frameworks such as NIST 800-53, ISO 27001, and SOC2, among others. This position requires a great communicator, and strategic thinker who can manage compliance initiatives, lead audits, and ensure adherence to applicable regulations while collaborating with internal and external stakeholders.

In Short

• Develop and implement a comprehensive GRC strategy aligned with the organization’s objectives.
• Drive risk and compliance programs and ensure alignment with frameworks, standards and regulations.
• Collaborate closely with the CISO to integrate GRC initiatives into broader security and risk management strategies.
• Lead internal and external audits, including ISO 27001 and SOC2.
• Develop and maintain risk assessment processes to identify, mitigate, and monitor risks.
• Partner with cross-functional teams to embed compliance into business processes.
• Manage and optimize the use of GRC software to streamline compliance workflows.
• Provide guidance on emerging risks and regulatory changes.
• Manage our Third-Party Risk Management (TPRM) program.
• Assess, train, and educate employees on GRC policies and procedures.

Requirements

• Proven track record as a Director in Governance, Risk, and Compliance.
• Extensive experience in the State and Federal space.
• Hands-on experience with MARSe and CJIS data compliance (preferred).
• Experience managing third-party risk programs.
• Proficiency in managing audits for ISO 27001 and SOC2.
• Healthcare compliance experience (HIPAA, HITRUST) is a plus.
• Expertise in GRC software and compliance tools.
• Exceptional leadership and communication skills.
• Strong knowledge of cloud technologies and their compliance implications.
• Detail-oriented with strong analytical abilities.

Benefits

• Generous PTO Benefits: Enjoy a PTO benefit accrual of 22 days per year.
• Parental Leave: Experience one of the industry's best parental leave policies.
• Rewards & Recognition: Unlock your potential and be rewarded generously.
• Insurance Benefits: Medical, dental, and vision benefits along with 100% company-sponsored disability and life insurance.