GRC Lead

About The Position

Requirements

• 5+ years of experience in information security policy, audit, and technical compliance
• Bachelor’s degree in information technology, computer science, or related field.
• Hands‑on experience operating in highly regulated environments
• Proven ownership of a GRC program or major components of one — not just support work
• Experience designing policies, controls, and governance processes
• Comfort supporting audits and regulatory exams end‑to-end (evidence, narratives, questionnaires)
• High level of communication with the ability to explain technical risk in clear, business‑friendly language

Nice To Haves

• Experience across multiple regulatory environments (e.g., SEC + HIPAA / HITRUST)
• Familiarity with GRC automation tools (such as Drata or similar platforms)
• Relevant certifications (CISSP, CISA, CRISC, etc.) — helpful, but not required

Responsibilities

• Designing and implementing governance strategies, security policies, standards, and procedures aligned with regulatory obligations
• Mapping and operating against frameworks such as SEC, SOC 2, NIST (HIPAA and/or HITRUST experience is also valued)
• Owning control design, effectiveness, testing, and ongoing monitoring
• Leading third‑party and vendor risk management programs
• Monitoring and enforcing vulnerability management and remediation efforts
• Supporting audits, regulatory exams, and security questionnaires with confidence and clarity
• Turning technical risk into business‑level reporting leadership can actually use
• Building maturity over time — prioritizing what matters most and sequencing the rest

Benefits

• Benefit Eligibility on Day One: Enjoy immediate access to a robust benefits package starting on your first day of employment.
• Choice of Medical Plans: Select from two medical plans tailored to fit your needs.
• Health & Wellness Accounts: Opt for a Health Savings Account (HSA) or Flexible Spending Account (FSA) to manage your healthcare expenses.
• Flexible Dental Coverage: Choose between two dental plan options for optimal oral health.
• Vision Insurance: Keep your eyes healthy with our vision insurance plan.
• Company-Paid Life & AD&D Insurance: Feel secure with fully covered basic life insurance and accidental death & dismemberment benefits.
• Company-Paid Disability Coverage: Rest easy knowing you’re covered with both short-term and long-term disability plans.
• 401(k) with Company Match: Invest in your future with both Roth and Traditional 401(k) plans, featuring a per pay period company match.
• Generous Paid Time Off: Benefit from PTO that increases with your years of service, at least 11 paid holidays each year, a paid day each year for your Savantiversary, and enjoy shorter work weeks with our Summer Hours.
• Additional Leave and Time Off Benefits: Personal leave, parental leave, professional development paid time, and bereavement pay are just a few examples of how you will be supported with time off and other benefits during life's most critical moments.
• Dress Code: Enjoy a “Dress for Your Day” approach to your style. We offer wardrobe flexibility based on office culture, client expectations, and your daily schedule.
• Employee Recognition: Enjoy monetary awards through our recognition program.
• Team Incentive Plans: Participate in our team incentive plan for additional earning opportunities.
• Employee Assistance Program: Access support through our Employee Assistance Program whenever you need it.
• Exclusive Discounts: Take advantage of various discount programs for additional savings.
• Wellness Reimbursements: Get reimbursed for gym memberships and other wellness programs to stay fit and healthy.
• Additional Perks: Get reimbursed for your warehouse club memberships and receive an allowance for Savant Swag.