Director of Governance, Risk, and Compliance (GRC) - US Remote

Atlanta, GA, US Remote


Don't let unknown cybersecurity threats lurk in your enterprise networks. VerSprite helps solve your most complex cybersecurity challenges.

View company page


VerSprite is an Inc. 5000 2020 fastest growing company and industry leader in PASTA threat modeling. Founded in 2007, VerSprite is a private cybersecurity consulting firm helping organizations tighten their risk-gaps with evolved security solutions and advanced threat intel tools.

VerSprite has a 97% client retention rate providing organizations with services like penetration tests, evolved red teaming engagements, vCISO, vSOC and VerSprite’s advanced security tools Cloud Security Assessment Platform and Cyber Threat Intelligence Portal.

Job Title: Director of Governance, Risk, and Compliance (GRC)


Location: Remote,


Position Overview:

The Director of GRC will be responsible for developing, implementing, and managing the company's governance, risk, and compliance framework. This role will oversee all aspects of GRC, including policy development, risk assessment, compliance monitoring, and regulatory reporting. The ideal candidate will have a strong background in GRC practices, excellent leadership skills, and a proven track record of driving successful GRC programs.


Key Responsibilities:

  1. Develop and implement a comprehensive GRC framework aligned with industry standards, regulatory requirements, and organizational objectives.
  2. Establish and maintain policies, procedures, and controls to mitigate risks and ensure compliance with applicable laws, regulations, and standards.
  3. Conduct regular risk assessments to identify, assess, and prioritize enterprise-wide risks and vulnerabilities.
  4. Lead the development and implementation of risk mitigation strategies and action plans in collaboration with key stakeholders.
  5. Monitor and report on compliance with internal policies and external regulations, including GDPR, SOX, PCI-DSS, and other relevant standards.
  6. Serve as the primary point of contact for regulatory agencies, auditors, and other external stakeholders on GRC-related matters.
  7. Provide leadership and guidance to cross-functional teams to drive a culture of compliance and risk awareness throughout the organization.
  8. Stay abreast of emerging threats, regulatory changes, and industry best practices in GRC, and recommend appropriate measures to address evolving risks.
  9. Collaborate with senior management to provide regular updates on the status of GRC initiatives, key risk indicators, and compliance trends.
  10. Foster a culture of continuous improvement by identifying opportunities to enhance GRC processes, tools, and methodologies.



  • Bachelor's degree in business, finance, information technology, or a related field; advanced degree or professional certification (e.g., CISA, CISSP, CRISC, CISM, CGEIT, CIA) preferred.
  • Minimum of 5 years of experience in governance, risk management, compliance, or related fields, with at least 3 years in a leadership role.
  • Strong understanding of GRC principles, frameworks (e.g., COSO, ISO 31000), and regulatory requirements across multiple industries.
  • Demonstrated experience in developing and implementing GRC strategies, policies, and procedures in a complex organizational environment.
  • Proven track record of effectively managing enterprise-wide risks, conducting risk assessments, and implementing risk mitigation measures.
  • Excellent communication, interpersonal, and leadership skills, with the ability to influence and collaborate with stakeholders at all levels of the organization.
  • Strategic thinker with the ability to translate business objectives into actionable GRC initiatives and drive results.
  • Highly organized and detail-oriented, with the ability to manage multiple projects and priorities simultaneously.
  • Strong analytical skills, with the ability to analyze complex issues, identify root causes, and develop practical solutions.
  • Commitment to integrity, ethical conduct, and confidentiality in handling sensitive information.


Application Instructions:

To apply for the position of Director of GRC, please send your resume and cover letter outlining your qualifications and relevant experience to We thank all applicants for their interest; however, only those selected for an interview will be contacted.


We offer a competitive compensation package where you’ll be recognized for the value you bring to our business, along with:

  • Opportunities to develop new skills and progress your career;
  • The freedom and flexibility to handle your role in a way that’s right for you; and
  • A collaborative environment where everyone works together to create a better working world

If this seems intriguing to you, please apply! We will reach out promptly to discuss your fit and additional job details.

Apply now Apply later
  • Share this job via
  • or

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Tags: CIA CISA CISM CISSP Cloud Compliance CRISC Finance GDPR Governance Monitoring Red team Risk assessment Risk management Security assessment SOX Threat intelligence Vulnerabilities

Perks/benefits: Career development Competitive pay

Regions: Remote/Anywhere North America
Country: United States
Job stats:  28  7  0

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.