Director, Governance, Risk & Compliance

Role Overview

The Director of Governance, Risk Management & Compliance (GRC) will lead API's global IT and security GRC program, reporting to the CISO. This leader is accountable for the company's cyber risk management framework, regulatory compliance posture, vendor risk program, and data governance strategy.

What You Will Do

Lead organization-wide risk analysis, maintain a risk register with documented remediation and mitigation plans, serve as the primary advisor on information security risks, establish and own the strategy for managing security audits, compliance checks, and external assessments, build and manage a comprehensive vendor risk program, drive ongoing security program improvement, lead data governance and data protection programs, facilitate IT compliance across identified controls, document, communicate, and enforce security policies, oversee GRC-related incident response activities, manage the access review process.

Why It Might Be a Fit

Success in this role requires the ability to identify, evaluate, and communicate security risks, influence strategy across a diverse technology landscape, balance rigorous risk management with business agility, and position security as an enabler rather than an obstacle. The ideal candidate will have 7–10+ years of experience in cybersecurity, a proven track record managing GRC programs, and experience with vendor and third-party risk management programs.

Requirements

• 7–10+ years of experience in cybersecurity
• Demonstrated experience leading and managing GRC programs
• Proven track record managing security audits and assessments for SOC 2, ISO 27001, GDPR, CCPA, and other standards
• Hands-on experience with vendor and third-party risk management programs
• Experience with incident response tracking, documentation, and reporting
• 2+ years of experience with AWS and/or Microsoft Azure cloud security configuration and management
• Bachelor’s degree, trade school certification, or equivalent professional experience required; Master’s degree desirable

Benefits

• Competitive salary
• Benefits package
• Equity
• Paid time off
• Health insurance
• Retirement plan
• Learning budget
• Parental leave
• Wellness program
• Relocation assistance
• Remote work flexibility