The Director of (Cyber) Governance, Risk & Compliance (GRC) is a cyber leadership role responsible for establishing, operationalizing, and continuously maturing the organization’s cybersecurity governance, risk management, and compliance programs in alignment with enterprise strategy and regulatory obligations. This role provides strategic oversight of policy development, risk assessment and treatment, internal controls, third-party risk management, audit readiness, and regulatory engagement. The Director partners closely with security architecture, security operations, legal, privacy, internal audit, product, and business stakeholders to ensure cybersecurity practices are aligned with enterprise risk tolerance and customer expectations. The role is accountable for defining governance structures, driving risk-informed decision-making, ensuring compliance with applicable frameworks and regulations, and building a scalable GRC function that enhances transparency, accountability, and trust across the organization.
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
Job Type
Full-time
Career Level
Director