Director Of Governance, Risk, And Compliance (grc)

Hyperproof

Remote
$146,000—$206,000 usd py
Remote
Continuous assurance engine
Gold-standard compliance program
Soc 2 type ii and fedramp moderate authorizations
Hyperproof is seeking a Director of Governance, Risk, and Compliance (GRC) to lead their compliance initiatives, transforming compliance into a strategic advantage for the company. This remote role requires significant experience in GRC within high-growth SaaS environments, with a focus on regulatory frameworks and incident response

Job Summary

  • As the Director of GRC, you will transform compliance from a reactive exercise into a Continuous Assurance engine, responsible for building a gold-standard compliance program that meets regulatory bars and drives customer trust.
  • This role offers rare visibility across enterprise security and compliance, from direct engagement with 3PAOs to front-line conversations with Fortune 500 security teams, building and owning programs from the ground up.
  • You will be responsible for audit ownership, strategic roadmap expansion into new frameworks, serving as the internal owner of Hyperproof's platform, and maturing security awareness and training programs.

Matching Summary

Match Score: 85

Hyperproof is seeking a Director of Governance, Risk, and Compliance (GRC) to lead their compliance initiatives, transforming compliance into a strategic advantage for the company. This remote role requires significant experience in GRC within high-growth SaaS environments, with a focus on regulatory frameworks and incident response.

Salary

$146,000—$206,000 USD

Skills & Requirements

Must-have

  • Continuous Assurance engine
  • gold-standard compliance program
  • SOC 2 Type II and FedRAMP Moderate authorizations
  • ISO 27001, NIST AI RMF expansion
  • internal platform owner
  • security awareness and training
  • sales enablement and Trust Center
  • vendor risk management
  • penetration testing program
  • incident response leadership
  • business continuity and disaster recovery
  • global privacy compliance (GDPR)
  • quantified risk management
  • security metrics and KRI reporting
  • secure SDLC governance
  • vulnerability management program
  • developer security enablement
  • coordinated vulnerability disclosure

Nice-to-have

  • revenue enabler
  • enterprise growth strategy
  • high-ownership, high-impact seat
  • roll-up-your-sleeves attitude

Key Requirements

  • CISSP certification required
  • 8+ years in GRC or Information Security leadership
  • high-growth SaaS environment experience
  • FedRAMP Moderate ATO experience
  • NIST 800-53 controls familiarity
  • incident response leadership ability
  • technical literacy in cloud architecture

Work Rights

Not specified

Tailored Resume

Cover Letter