Skip to content
Q4 IncQ4 IncUnited States

Director, IT and Governance, Risk & Compliance

Leads IT operations, security operations, and GRC programs for a high-growth SaaS company. Manages infrastructure, risk, compliance, and a team while supporting audits and customer assessments.

Salary not listed
Remote7+ YOEIT Support

About the role

What you'll do

Strategy & Stakeholder Partnership

  • Translate enterprise technology, security, and GRC strategy into a clear roadmap with priorities, milestones, and success metrics.
  • Act as a senior security and risk SME, advising internal teams and customers on best practices, emerging threats, and pragmatic risk‑based decisions.
  • Run the portfolio of IT, security, and GRC initiatives as a formal program, coordinating cross‑functional delivery, timelines, and status reporting.

IT Operations & Service Delivery

  • Lead IT operations to ensure infrastructure, end‑user computing, and collaboration platforms are reliable, secure, and cost‑effective.
  • Oversee incident, request, and change management; drive improvements in SLAs, MTTR, and employee experience.
  • Own standards for asset management and access lifecycle for employees and independent contractors.

Security Operations & Risk Management

  • Manage day‑to‑day security operations: threat monitoring, alert triage, and coordination of incident response with Security and Engineering.
  • Maintain and test security incident response playbooks; coordinate periodic security testing and ensure remediation of findings.
  • Operate and improve vulnerability management; support DR/BCP planning; help manage security budgets and key security vendors.

Governance, Risk & Compliance (GRC)

  • Lead technology GRC processes (policies, controls, risk registers, exceptions) and coordinate SOC 2 and customer security assessments.
  • Operationalize GDPR, CCPA, PIPEDA and other requirements into controls in partnership with Legal/Privacy, maintaining RoPA, DPIAs, and vendor/sub‑processor assessments.
  • Define and track KPIs/KRIs (e.g., incident SLAs, vuln closure rates, audit findings) and provide clear dashboards and reports to leadership.

Business Systems & Enterprise Enablement

  • Partner with Business Systems, Product, and Data teams to ensure enterprise platforms and integrations meet security and governance expectations.
  • Contribute to architecture standards, access models, and data protection patterns across core systems.
  • Identify automation and tooling opportunities to reduce manual work and improve control coverage and data quality.

People Leadership & Collaboration

  • Lead and develop a high‑performing IT and GRC team with clear goals and feedback.
  • Foster a culture of accountability, continuous improvement, and strong cross‑functional partnership.
  • Champion security, privacy, and technology best practices through training, communication, and engagement.

Qualifications

  • 7+ years in IT operations, information security, technology risk, or GRC, including people management.
  • Strong knowledge of security and control frameworks (e.g., SOC 2, ISO 27001, NIST CSF, CIS) and privacy regulations (e.g., GDPR, CCPA, PIPEDA).
  • Hands‑on experience with IT and security tooling (IdP/IAM, MDM/EDR, logging/monitoring, GRC platforms).
  • Proven ability to manage multiple security/IT/GRC projects or programs with ownership of timelines, budgets, and stakeholder communication.
  • Track record supporting external audits and customer security assessments and communicating complex risk/technical topics in clear business language.

Skills

SOC 2ISO 27001Nist CsfCisGDPRCCPAPipedaIdp/IamMdm/EdrGrc Platforms

Similar roles

IT Support jobs
Harvey

Director, IT

HarveySan Francisco, CA +1

Lead IT Operations, Systems & Network Engineering, and A/V/live production for a high-growth AI company. Own global infrastructure strategy, team leadership, security partnerships, office buildouts, and operational excellence as the company scales.

224k – 336k
Hybrid10+ YOEIT Support
6sense

Sr. Director, IT and AI Transformation

6senseSan Francisco, CA

Lead enterprise AI strategy, internal copilots, and automation while owning global IT operations, infrastructure, and employee experience for a remote-first SaaS company. Drive AI adoption, AIOps, compliance, and vendor management with 10+ years IT experience and 5+ years leading global teams.

204k – 275k
Remote10+ YOEIT Support
Baton

Head of IT and Production Support

BatonSan Francisco, CA

Lead and scale Baton's Production Support Engineering team while owning enterprise IT operations across Google Workspace, Slack, AWS, and bridging to Ryder's Microsoft 365/Azure environment. Drive platform reliability, incident management, and 24x7 support transformation.

180k – 230k
Hybrid8+ YOEIT Support
OpenLoop

Director, Applications & Business Systems

OpenLoopUnited States

Lead enterprise applications and business systems strategy, roadmap, and team. Own SaaS stack lifecycle, integrations, compliance, vendor management, and digital transformation initiatives.

Salary not listed
Remote8+ YOEIT Support
Justworks

Director, IT Services

JustworksNew York, NY

Lead enterprise IT strategy and operations as Director of IT Services. Manage IT teams, enterprise systems, security/compliance programs, and vendor relationships while partnering cross-functionally to scale reliable technology services.

235k – 300k
Hybrid10+ YOEIT Support