Director, Governance, Risk, and Compliance (GRC)

About The Position

Requirements

• 10+ years in GRC / risk / compliance in complex infrastructure environments (e.g., data centers, cloud, large-scale ops)
• Experience building compliance programs from the ground up
• Deep knowledge of ISO 27001 and audit/evidence practices
• Strong understanding of asset governance and data quality controls
• Proven ability to build scalable systems, workflows, and reporting—not just policies

Nice To Haves

• ISO certifications (e.g., ISO 27001 Lead Auditor)
• Experience with control testing at scale and GRC platforms (Archer, Enablon)
• Familiarity with tools like Power BI, Power Platform, or SharePoint

Responsibilities

• Define and execute Riot’s enterprise GRC roadmap and controls architecture
• Own and lead the ISO 27001 program, including certification and continuous audit readiness
• Build and maintain a high-integrity asset governance model (≥99% data accuracy)
• Stand up a scalable controls monitoring and testing framework (CMF)
• Design risk-based policy and exception workflows with clear audit trails
• Establish information governance and evidence management practices
• Lead GRC tooling strategy (e.g., Archer, Enablon) and deliver executive dashboards
• Partner with operations teams to embed compliance into change management, incidents, and SLAs

Benefits

• Competitive Salary: Base range (commensurate with experience) + bonus + sign-on equity grant.
• Long-Term Growth: Eligible to participate in Riot’s equity incentive programs and share in the success you help build.
• 401(k) Retirement Plan: Includes a generous company match.
• Comprehensive Health Coverage: Multiple medical plan options, including 100% company-paid plans.
• Wellness & Lifestyle Perks: Enjoy free gym memberships, pet insurance, childcare discounts, and more to support your life both in and out of work.