Director, Governance, Risk & Compliance

TL;DR

Director, Governance, Risk & Compliance: Leading the enterprise GRC program, ensuring hirify.global is secure and audit-ready as it scales, with an accent on policy, user education, risk management, and audit/certification. Focus on driving SOX ITGC compliance, leading risk assessments, and optimizing GRC tooling to streamline workflows and reporting.

Location: Must be based in Tacoma, WA

Salary: $159,000 - $244,860 plus corporate bonus potential

Company

hirify.global provides cloud-first networking and security solutions, protecting 70% of the Fortune 500.

What you will do

• Lead and mature the enterprise GRC program across policy, education, risk, audit, certifications, SOX ITGC, and customer/vendor assurance.
• Own and continuously improve security policies and user education, including global phishing simulations and training content.
• Plan and run external and internal audits for SOC 2 and ISO certifications.
• Drive SOX ITGC compliance together with Finance and IT.
• Lead risk assessments using ISO and NIST frameworks, maintain risk registers, and report risk posture to leadership and the board.
• Implement and optimize GRC tooling (e.g., ServiceNow GRC) and automation, including AI, to streamline workflows, monitoring, and reporting.

Requirements

• 15+ years working in governance, risk and compliance and/or information security and risk management with direct ownership of controls and audits.
• Functional knowledge of CISSP security domains and information security industry standards and best practices.
• Strong understanding of applicable security regulatory requirements such as SOX and GDPR, including IT general controls.
• Functional knowledge of ISMS governance models and frameworks (e.g., ISO 27001, NIST CSF, CAIQ) and common security certifications (e.g., SOC 2, ISO 27017-18, ISO-42001).
• IT audit background with solid project management and organizational skills.
• Bachelor’s degree in a relevant field (e.g., Computer Science, Information Systems, Engineering, Business) or equivalent practical experience.

Culture & Benefits

• Comprehensive health coverage, generous PTO, and flexible work options.
• Learning opportunities, career-mobility programs, and leadership workshops.
• Sixteen paid volunteer hours each year and global employee resource groups.
• Modern offices with EV charging and healthy snacks.
• Charitable Giving Program supported by Company Match.

Hiring process

• First 90 Days: Immerse in our culture, connect with mentors, and map the systems and meet with key stakeholders that rely on your work.
• Six Months: Lead at least one major audit or certification event, refine our customer and vendor assurance processes, and advance implementation of ServiceNow GRC and related automation.
• One Year: Demonstrate a measurable improvement in our risk posture, SOX ITGC readiness, and customer/vendor assurance efficiency.