×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security Data Security

Director, Governance, Risk Compliance

Remote / Online - Candidates ideally in
Morrisville, Wake County, North Carolina, 27560, USA
Listing for: Relias
Remote/Work from Home position
Listed on 2026-06-18
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security, Data Security
Salary/Wage Range or Industry Benchmark: 125000 - 150000 USD Yearly USD 125000.00 150000.00 YEAR
Job Description & How to Apply Below
Position: Director, Governance, Risk, & Compliance

Director, Governance, Risk, & Compliance What can Relias offer you?

  • Fantastic health and wellness benefits package, including an outstanding 401k match, a flexible PTO program, and a generous and inclusive parental leave policy. Additionally, Relias pays for the employee portion of the monthly healthcare premium!
  • Flexible work environment with onsite and work from home options – you choose when you want to come into the office!
  • Active Employee Resource Groups open to all employees!
  • Comprehensive onboarding program – a great introduction to our company, customers and culture!
  • Growth and career advancement opportunities!
    • Promotes internal mobility and career growth aligned with evolving business needs
    • Multiple development program options – leadership development, professional development curriculums, and Nanodegree options in both technology and data science
    • Professional development gained from conference attendance and participation in organizations like NC Tech
    • Onsite 321 Coffee Shop providing free coffee and pastries to employees
What you’ll be doing :
  • Lead the strategy, operating model, and maturity roadmap for governance, risk, and compliance programs.
  • Develop, maintain, and enforce information security policies, standards, procedures, and guidelines aligned with regulatory and business requirements.
  • Oversee enterprise risk management for cybersecurity, including risk identification, assessment, prioritization, treatment tracking, and reporting.
  • Maintain a centralized risk register and ensure appropriate risk acceptance, mitigation, or transfer decisions are documented and approved.
  • Lead internal and external audit readiness activities, including coordination of evidence collection, control validation, and remediation tracking.
  • Manage compliance with applicable frameworks and standards such as NIST CSF, ISO 27001, SOC 2, HIPAA, PCI DSS, and other regulatory obligations as applicable.
  • Oversee third-party risk management processes, including vendor assessments, due diligence, risk rating, and monitoring of remediation activities.
  • Establish governance forums, reporting structures, and escalation pathways to support risk-informed decision-making and accountability.
  • Develop and deliver risk reporting, dashboards, and executive communications that articulate control effectiveness, compliance posture, and residual risk.
  • Partner with legal, privacy, human resources, and business stakeholders to ensure alignment on regulatory obligations and data protection requirements.
  • Drive continuous improvement of controls, processes, and governance practices based on audit findings, risk trends, and evolving threats.
  • Support customer-facing security and compliance inquiries, including RFPs, due diligence questionnaires, and assurance reporting.
  • Manage technology platforms supporting GRC functions (e.g., risk management systems, policy tools, audit tracking solutions).
  • Lead, coach, and develop GRC professionals while fostering a culture of accountability, transparency, and continuous improvement.
You've got what it takes if you have/are:
  • 10+ years of progressive experience in cybersecurity, risk management, compliance, or related fields.
  • 5+ years of leadership experience in a GRC or related cybersecurity function.
  • Bachelor’s degree in Cybersecurity, Information Security, Information Technology, Business, or a related field; or equivalent professional experience.
  • Demonstrated experience building or managing governance, risk, and compliance programs in a mid-sized or large organization.
  • Experience supporting audits, regulatory inspections, and compliance assessments.
  • Experience managing third-party risk and vendor assessment processes.
  • Experience developing policies, standards, and enterprise risk frameworks.
  • Experience partnering with executive leadership and cross‑functional stakeholders on risk and compliance initiatives.
Experience/Education Preferred:
  • Master’s degree in Cybersecurity, Risk Management, Information Assurance, Business Administration, or related discipline.
  • Professional certifications such as CISSP, CISM, CRISC, or CISA.
  • Experience in SaaS, cloud‑native, or highly regulated industries.
  • Experience aligning security and…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search