Director, Governance, Risk & Compliance (GRC)

At MTM we are not just colleagues; we are collaborators on a shared mission;communities without barriers. We have exciting opportunities to join our growing team where your work has a direct impact on the communities we serve. Our company culture is one of innovation collaboration and growth. If you are passionate driven and ready to join a team where your work will directly transform and shape our industry then we want to talk to you!

What will your job look like

The Director Governance Risk & Compliance (GRC) serves as the enterprises senior leader responsible for governing the compliance dimensions of modern technology and AI. This role is a second line of defense and provides the strategic oversight and assurance needed to ensure the organizations technology and AI ecosystem aligns with regulatory expectations ethical standards and customer commitments.

The Director GRC owns the technology & AI compliance Framework oversees governance for highrisk technologies and ensures the organization is prepared for external scrutiny including certifications such as SOC 2 HITRUST and FedRAMP.

This is a governance and risk leadership position ideal for someone who understands technology deeply but operates with a compliance assurance and regulatory mindset.

What youll do:

Audit & Certification Readiness

• Lead compliance oversight for SOC 2 HITRUST FedRAMP and similar certifications

• Ensure first-line teams produce audit-ready artifacts

• Track remediation and risk closure

Technology & AI Governance

• Lead enterprise governance for technology and AI within the Compliance function

• Own policies standards and controls related to cloud data AI/ML/GenAI automation and software development

• Drive risk-tiering and governance requirements for technology and AI systems

• Ensure alignment to regulatory ethical and customer expectations

• Establish KRIs and KPIs for technology and AI compliance (control maturity issues exceptions drift signals audit readiness)

• Provide regular reporting to senior leadership and the AI Governance Committee

• Lead thematic reviews of technical risk trends and emerging threats

Compliance Oversight

• Ensure cloud and SaaS environments meet compliance-related controls (SOC 2 HITRUST FedRAMP)

• Validate due diligence technical assessments and ongoing monitoring for technology adoption

• Ensure data governance practices incorporate compliance standards for classification retention quality and access

• Support privacy with DPIAs and data-related assessments

• Deliver training on AI governance cloud/SaaS compliance and technology risks

• Build processes templates and playbooks that operationalize compliance expectations

• Serve as a strategic advisor to technology data and AI leaders

• Govern AI risk assessments use-case oversight and documentation standards

• Define compliance criteria for high-risk AI

• Monitor evolving AI regulations

• Set compliance expectations for technology and AI vendors

• Oversee due diligence contractual requirements and ongoing vendor monitoring

• Define compliance-required controls; review and challenge technical architecture risk assessments and AI documentation

• Oversee compliance evidence requirements (e.g. model cards testing results data lineage)

• Advise on risk acceptance control gaps and compensating controls

• Provide daily guidance for team of direct reports

What youll need:

Experience Education & Certifications:

• High School Diploma or G.E.D

• 4 years in technology compliance technology risk cybersecurity risk audit or data governance roles

• 4 years of data analysis experience

• Experience with regulatory frameworks and certifications such as SOC 2 HITRUST FedRAMP

Skills:

• Strong command of AI governance model risk or responsible AI frameworks

• Excellent executive presence judgment and the ability to influence senior technical leaders

• Ability to translate complex technical concepts into actionable compliance requirements

• Outstanding analytical and organizational skills and attention to detail

• Ability to work independently and collaboratively with others to achieve defined goals

• Ability to motivate and empower employees

• Ability to work well under pressure

• Passion for data

• Ability to build and maintain effective cross functional department partnerships

• Strong sense of urgency

• Strategic thinker

• Demonstrate excellent time management skills

• Ability to identify interpret and communicate business risks

• Ability to lead coach and motivate a specialized compliance team

• Excellent problem-solving skills with the ability to anticipate and resolve problems

• Ability to maintain positive attitude and team focused during high stress situations

• Deep familiarity with cloud SaaS software development and AI/ML from a risk and compliance perspective

• Must be able to communicate with staff of all job levels professionally

• Demonstrate a high level of ownership

• Excellent communication skills

• Ability to maintain high level of confidentiality

Even better if you have:

• Experience in healthcare SaaS regulated industries or technology-focused compliance programs preferred

• Prior experience leading SOC/HITRUST/FedRAMP audits preferred

• Professional certifications (e.g. CISA CISM CRISC CIPM CCSK CCAI) a plus

• Direct exposure to data governance programs cloud security concepts or AI governance preferred

Whats in it for you:

• Health and Life Insurance Plans

• Dental and Vision Plans

• 401(k) with a company match

• Paid Time Off and Holiday Pay

• Maternity/Paternity Leave

• Casual Dress Environment

• Tuition Reimbursement

• MTM Perks Discount Program

• Leadership Mentoring Opportunities

Equal Opportunity Employer: MTM is an equal opportunity employer. MTM considers qualified candidates with a criminal history in a manner consistent with the requirements of applicable local State and Federal law. If you are in need of accommodations please contact MTMs People & Culture.

#MTM