Job Description

Aledade is seeking a Director of Governance, Risk & Compliance (GRC) to lead and scale their enterprise GRC program. This role focuses on building a framework for risk management, compliance, and certifications, ensuring alignment with regulatory and audit expectations. The Director will manage a team, own the risk program and GRC platforms, and drive compliance certifications.

Responsibilities

• Build and mature the Governance, Risk & Compliance program
• Own and maintain the enterprise risk management framework
• Lead compliance certification programs (SOC 2, HIPAA, SOX/ITGC, HITRUST, and CPRA)
• Manage audit preparedness and execution
• Oversee the Vanta Trust platform
• Develop and enforce policies and standards

Requirements

• 10+ years of experience in GRC, Information Security, or related fields
• 5+ years in leadership roles
• Strong knowledge of risk management frameworks and regulatory requirements
• Experience preparing organizations for external audits
• Hands-on experience with GRC platforms
• Ability to design and operationalize compliance programs
• Excellent leadership, communication, and collaboration skills

Benefits

• No benefits