Director of GRC Operational Risk Management

About The Position

Requirements

• Bachelor’s degree in Business, Risk Management, Operations, or a related field, or comparable experience.
• Relevant certifications preferred (e.g., CRISC, CTPRP, CISA, CISM, CPA, CIA)
• 6+ years of experience in third-party risk management and/or operational risk, compliance roles, including experience managing teams, projects, and driving process improvements and efficiency
• Strong leadership, communication, and organizational skills
• Experience with GRC tools and risk platforms (e.g., ProcessUnity, Optro, Workiva, GRC, OneTrust)
• Strong analytical skills with the ability to translate risk data into actionable insights
• Ability to balance strategic thinking with operational execution
• Experience coordinating operational workflows and managing queue-based assignments.
• Familiarity with risk assessment platforms (e.g., ProcessUnity, Prevalent, or similar).
• Ability to manage multiple priorities and ensure quality and consistency
• Comfortable collaborating cross-functionally and presenting updates to senior stakeholders

Responsibilities

• Lead end-to-end third-party risk management (TPRM) lifecycle: Due diligence and onboarding, Risk tiering and assessments, Contractual risk controls, Ongoing monitoring and offboarding
• Manage a team of risk analysts who: Evaluate risks associated with vendors, partners, and outsourced services, including financial, operational, compliance, and reputational risks, Conduct risk management for external websites and mobile applications, Support additional risk assessments as required
• Partner with other corporate teams to: Review security controls, vulnerabilities, and penetration testing results, Ensure data protection, privacy, and resilience standards are met
• Drive a strong risk culture, ensuring accountability across first, second, and third lines of defense
• Mature and improve the program: Integrate third-party risk into broader enterprise risk and operational risk frameworks
• Distribute assessment assignments and monitor progress to ensure SLAs are met across all risk levels
• Support quality assurance by reviewing assessment documentation and identifying areas for process improvement
• Track team metrics, backlog status, and stakeholder engagement levels for reporting
• Lead team standups and serve as the primary point of contact for operational blockers or intake escalations
• Identify opportunities for efficiency improvements, automation, and stakeholder engagement enhancements

Benefits

• Medical, vision, dental and mental health benefits for you and your family, with access to a health care concierge, and Flexible or Health Savings Accounts (FSA or HSA)
• Free concert tickets
• Generous paid time off including paid holidays, sick time, and personal days
• 401(k) program with company match
• Stock reimbursement program
• New parent programs including caregiver leave, plus fertility, adoption, foster, or surrogacy support
• Career and skill development programs with School of Live, tuition reimbursement, and student loan repayment
• Volunteer time off
• Crowdfunding match
• Generous vacation
• Healthcare
• Retirement benefits
• Student loan repayment
• Tuition reimbursement
• Six months of paid caregiver leave for new parents including fostering
• Perks like Roadie Babies helping new parents care for their babies on work trips
• Access to free live events through our exclusive employee ticketing program