Sr. Director, GRC and Customer Trust

Your Role

The Sr. Director of GRC and Customer Trust is a strategic security leader responsible for governing technical controls, managing external and regulatory security assessments, overseeing third party and customer assurance, ensuring organizational resiliency and integrating our customers into Stellarus compliance process. This role drives proactive risk management, technical incident response, and compliance programs (e.g., HIPAA, PCI DSS, SOC2, NIST), partnering across technical functions, business, and regulatory stakeholders to ensure robust security, operational continuity, and strong external trust.

The successful candidate will lead and drive a model of customer trust and compliance by design through our product lifecycle with cross-functional teams, repeatable features to be ingested as part of design to safeguard data and assets. The candidate will provide expert guidance to support internal teams to ensure requirements are met. The Sr. Director of GRC and Customer Trust will report to the Chief Information Security Officer. Our leadership model is about developing great leaders at all levels and creating opportunities for our people to grow - personally, professionally, and financially. We are looking for leaders that are energized by creative and critical thinking, building and sustaining high-performing teams, getting results the right way, and fostering continuous learning.

Your Knowledge and Experience

• Requires a Bachelor's degree in Business, Finance, Economics, Public Health, or Information Technology
• Minimum of one industry applicable security and risk or compliance certifications (CRISC, CISSP, CISM, CISA, etc) required
• Requires at least 12 years of experience in IT Risk Management, Management Consulting, Technology Strategy or IT Compliance
• Requires at least 6 years of people management experience
• Proven experience in technology risk and compliance management, preferably in the healthcare industry, with the ability to coordinate cross functional teams of IT professionals, business executives, and other key stakeholders towards common goals and objectives
• Strong leadership skills with the ability to inspire and motivate a high-performing team
• Proven ability to provide a strategic vision for a rapidly evolving organization
• Excellent communication and collaboration skills, with a track record of successful cross-functional partnerships
• Deep understanding of the technology landscape and emerging trends in technical security and industry regulatory compliance
• Strategic thinker with the ability to translate complex concepts into actionable plans
• Strong "hands-on" leadership style with the capability to get into the weeds with the team in problem solving and project execution
• Ability to manage and fulfill a broad spectrum of the organization's needs - from baseline, tactical to strategic in nature
• Effective technical ability to develop and analyze options, recommend solutions, and solve complex issues
• Excellent communication skills, ability to present and translate highly technical capabilities to business leaders in a way to gain understanding and to conceptualize business value, ability to recognize strategic opportunities and use data to make timely and sound decisions
• Excellent analytical, strategic conceptual thinking, strategic planning, and execution skills
• Strong business acumen, including industry, domain-specific knowledge of the enterprise and its business units