Director, Governance, Risk & Compliance (GRC)

At MTM, we are not just colleagues; we are collaborators on a shared mission; communities without barriers. We have exciting opportunities to join our growing team where your work has a direct impact on the communities we serve. Our company culture is one of innovation, collaboration, and growth. If you are passionate, driven, and ready to join a team where your work will directly transform and shape our industry, then we want to talk to you!

What will your job look like?

The Director, Governance, Risk & Compliance (GRC) serves as the enterprise’s senior leader responsible for governing the compliance dimensions of modern technology and AI. This role is a second line of defense, and provides the strategic oversight and assurance needed to ensure the organization’s technology, and AI ecosystem aligns with regulatory expectations, ethical standards, and customer commitments.

The Director, GRC owns the technology & AI compliance Framework, oversees governance for high‑risk technologies, and ensures the organization is prepared for external scrutiny, including certifications such as SOC 2, HITRUST, and FedRAMP.

This is a governance and risk leadership position, ideal for someone who understands technology deeply but operates with a compliance, assurance, and regulatory mindset.

What you’ll do:

Audit & Certification Readiness

• Lead compliance oversight for SOC 2, HITRUST, FedRAMP, and similar certifications

• Ensure first-line teams produce audit-ready artifacts

• Track remediation and risk closure

Technology & AI Governance

• Lead enterprise governance for technology and AI within the Compliance function

• Own policies, standards, and controls related to cloud, data, AI/ML/GenAI, automation, and software development

• Drive risk-tiering and governance requirements for technology and AI systems

• Ensure alignment to regulatory, ethical, and customer expectations

• Establish KRIs and KPIs for technology and AI compliance (control maturity, issues, exceptions, drift signals, audit readiness)

• Provide regular reporting to senior leadership and the AI Governance Committee

• Lead thematic reviews of technical risk trends and emerging threats

Compliance Oversight

• Ensure cloud and SaaS environments meet compliance-related controls (SOC 2, HITRUST, FedRAMP)

• Validate due diligence, technical assessments, and ongoing monitoring for technology adoption

• Ensure data governance practices incorporate compliance standards for classification, retention, quality, and access

• Support privacy with DPIAs and data-related assessments

• Deliver training on AI governance, cloud/SaaS compliance, and technology risks

• Build processes, templates, and playbooks that operationalize compliance expectations

• Serve as a strategic advisor to technology, data, and AI leaders

• Govern AI risk assessments, use-case oversight, and documentation standards

• Define compliance criteria for high-risk AI

• Monitor evolving AI regulations

• Set compliance expectations for technology and AI vendors

• Oversee due diligence, contractual requirements, and ongoing vendor monitoring

• Define compliance-required controls; review and challenge technical architecture, risk assessments, and AI documentation

• Oversee compliance evidence requirements (e.g., model cards, testing results, data lineage)

• Advise on risk acceptance, control gaps, and compensating controls

• Provide daily guidance for team of direct reports

What you’ll need:

Experience, Education & Certifications:

• High School Diploma or G.E.D 

• 4+ years in technology compliance, technology risk, cybersecurity risk, audit, or data governance roles

• 4+ years of data analysis experience

• Experience with regulatory frameworks and certifications such as SOC 2, HITRUST, FedRAMP

Skills:

• Strong command of AI governance, model risk, or responsible AI frameworks

• Excellent executive presence, judgment, and the ability to influence senior technical leaders

• Ability to translate complex technical concepts into actionable compliance requirements

• Outstanding analytical and organizational skills and attention to detail 

• Ability to work independently and collaboratively with others to achieve defined goals

• Ability to motivate and empower employees

• Ability to work well under pressure 

• Passion for data  

• Ability to build and maintain effective cross functional department partnerships 

• Strong sense of urgency 

• Strategic thinker 

• Demonstrate excellent time management skills

• Ability to identify, interpret and communicate business risks

• Ability to lead, coach and motivate a specialized compliance team

• Excellent problem-solving skills with the ability to anticipate and resolve problems

• Ability to maintain positive attitude and team focused during high stress situations

• Deep familiarity with cloud, SaaS, software development, and AI/ML from a risk and compliance perspective

• Must be able to communicate with staff of all job levels professionally

• Demonstrate a high level of ownership 

• Excellent communication skills 

• Ability to maintain high level of confidentiality 

Even better if you have:

• Experience in healthcare, SaaS, regulated industries, or technology-focused compliance programs, preferred

• Prior experience leading SOC/HITRUST/FedRAMP audits, preferred

• Professional certifications (e.g., CISA, CISM, CRISC, CIPM, CCSK, CCAI) a plus

• Direct exposure to data governance programs, cloud security concepts, or AI governance, preferred

What’s in it for you:

• Health and Life Insurance Plans

• Dental and Vision Plans

• 401(k) with a company match

• Paid Time Off and Holiday Pay

• Maternity/Paternity Leave

• Casual Dress Environment

• Tuition Reimbursement

• MTM Perks Discount Program

• Leadership Mentoring Opportunities

Equal Opportunity Employer: MTM is an equal opportunity employer.  MTM considers qualified candidates with a criminal history in a manner consistent with the requirements of applicable local, State, and Federal law.  If you are in need of accommodations, please contact MTM’s People & Culture.

#MTM