Massachusetts Jobs

Director, GRC

Canton, Massachusetts

Job Type: Direct Hire | Recruiter: Kelsey Walsh (https://digitalprospectors.com/our-team/kelsey-walsh) | Phone: 6036374088

Position: Director of Governance, Risk, and Compliance

Location: Canton, MA (Remote – candidates must be located on the East Coast)

Length: Direct Hire

Job Description:

Our client is seeking a qualified Director of Governance, Risk, and Compliance (GRC) to join their team. As a leader in advanced wound care and surgical biologics, our client is committed to maintaining the highest standards of IT governance, compliance, risk management, and data protection. The Director of GRC will play a pivotal role in ensuring adherence to regulatory requirements and industry standards while driving strategic initiatives to enhance our security and compliance posture.

Essential Duties and Responsibilities (but not limited to):

• Develop and implement IT governance, compliance, risk, and data protection strategies.

• Collaborate across departments to manage compliance needs, audits, and governance.

• Maintain and update Information Security policies and SOPs.

• Conduct SOX audits and coordinate with audit partners.

• Enhance incident response capabilities through Risk Management exercises.

• Drive security program maturity metrics and align initiatives with the roadmap.

• Design and implement security, privacy, and risk assessment programs.

• Assess and manage security and compliance for systems and vendors.

• Ensure effectiveness of controls and contribute to business continuity planning.

• Conduct periodic assessments to ensure ongoing compliance.

Qualifications:

• Minimum of 6 years of experience in IT governance, risk management, and compliance, with at least 3 years in a leadership role.

• Proven expertise in developing and implementing IT governance, compliance, and risk management strategies.

• In-depth understanding of information security policies, risk assessments, and regulatory compliance.

• Strong familiarity with relevant regulations, including SOX, GDPR, HIPAA, NIST Cybersecurity Framework, and industry standards.

• Experience supporting an organization through HITRUST CSF or ISO 27001 readiness, obtaining and maintaining certification.

• Experience responding to and/or working with SOC-1, SOC-2, HIPAA, PCI-DSS, and audit assessment reports.

• Collaborative team player with strong leadership skills and the ability to motivate and manage others.

• Excellent communication, collaboration, and organizational skills.

• Highly motivated, flexible, and hands-on with strong attention to detail and the ability to prioritize effectively.

• Ability to travel to onsite leadership meeting a few times a year.

POST-OFFER BACKGROUND CHECK IS REQUIRED. Digital Prospectors is an Equal Opportunity Employer and all qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, or any other characteristic protected by law. Digital Prospectors affirms the right of all individuals to equal opportunity and prohibits any form of discrimination or harassment.

Come see why DPC has achieved:

• 4.9/5 Star Glassdoor rating and the only staffing company (< 1000 employees) to be voted in the national Top 10 ‘Employee’s Choice - Best Places to Work’ by Glassdoor.

• Voted ‘Best Staffing Firm to Temp/Contract For’ six times by Staffing Industry Analysts as well as a ‘Best Company to Work For’ by Forbes, Fortune and Inc. magazine.

www.LoveYourJob.com