Technology Director, Cybersecurity Compliance
Share
Job Location:
Raleigh, WV - USA
Monthly Salary:
Not Disclosed
Posted on:
2 hours ago
Vacancies:
1 Vacancy
Job Summary
Job Title: Technology - Director Cybersecurity Compliance
Start/End Dates: 4/27/2026 - 10/31/2026
Tax Work Location: Raleigh CSC
Ideal Candidate Profile Summary:
Leading cyber compliance organization. Build strategy steps to execution for a cyber compliance role. Thinking through metrics prioritizing what youre monitoring how do you reporting on monitoring. This is a strategic thinking position. What does the workflow look like. Risk compliance governance relates to eachother. Already have a manager in compliance and analyst in compliance.
Remote or On-site: Hybrid will be on site more often
Work Schedule: 8:00 - 5:00 may work with teams in India occassionally.
Interview Process: 2 rounds of interviews first with hiring manager then with leadership team.
Director Cybersecurity Compliance
Function: Information Security Governance Risk & Compliance (GRC)
Reports To: Chief Information Security Officer (CISO)
Position Summary
The Director Cybersecurity Compliance is responsible for establishing leading and overseeing Advance Auto Parts enterprise wide cybersecurity compliance program. This role ensures the organization consistently meets applicable regulatory legal and industry cybersecurity requirements while maintaining a repeatable auditable and scalable compliance posture.
Operating within the Information Security GRC function this position translates cybersecurity strategy into documented monitored and measurable compliance execution supporting audit readiness risk transparency and executive decision making.
Key Responsibilities
Cybersecurity Compliance Program Leadership
Establish and operate an enterprise wide cybersecurity compliance program that reduces risk and strengthens audit readiness.
Provide strategic direction and oversight for cybersecurity compliance activities across the organization.
Ensure alignment between cybersecurity compliance efforts business objectives and enterprise risk appetite.
Regulatory Framework & Standards Oversight
Lead compliance efforts related to regulatory legal and industry frameworks including but not limited to SOX PCI HIPAA and NIST CSF.
Oversee the selection maintenance and mapping of cybersecurity controls to applicable frameworks and requirements.
Ensure policies standards and controls are reviewed and updated in response to regulatory changes and evolving industry expectations.
Audit Monitoring & Evidence Management
Oversee continuous compliance monitoring including control testing evidence collection and remediation tracking.
Support internal and external audits by ensuring availability of accurate complete and timely compliance evidence.
Maintain a sustained audit ready posture through repeatable and scalable compliance processes.
Governance Accountability & Risk Management
Define and enforce roles responsibilities and accountability for cybersecurity compliance across system owners IT operations and business stakeholders.
Facilitate governance and escalation for compliance gaps remediation delays and risk acceptance decisions.
Partner with Enterprise Risk Management to ensure cybersecurity compliance outcomes are reflected in enterprise risk reporting.
Reporting & Executive Engagement
Provide regular compliance reporting to executive leadership including compliance status remediation progress and key risk indicators.
Support leadership and Board level discussions by delivering clear risk based compliance insights.
Promote transparency and consistency in compliance measurement and reporting across the organization.
Tooling & Enablement
Oversee governance and use of OneTrust (or equivalent GRC tooling) for compliance workflows evidence management and reporting.
Drive automation and standardization to improve efficiency consistency and reuse of compliance evidence across frameworks.
Required Qualifications
Bachelors degree in Information Security Information Systems Risk Management or a related field or equivalent professional experience.
8 years of experience in cybersecurity information security governance risk or compliance with demonstrated leadership at the enterprise level.
Strong knowledge of cybersecurity regulatory and compliance frameworks and how they apply in a large complex enterprise environment.
Experience leading compliance programs that support audit readiness and regulatory scrutiny.
Proven ability to engage executive stakeholders and translate technical compliance requirements into business relevant insights.
Preferred Qualifications
Experience implementing or operating a cybersecurity compliance program within a retail consumer or highly regulated environment.
Experience leveraging GRC platforms (e.g. OneTrust) for compliance management and reporting.
Professional certifications such as CISSP CISM CRISC or similar.
Tax Work Location: Raleigh CSC
Ideal Candidate Profile Summary:
Leading cyber compliance organization. Build strategy steps to execution for a cyber compliance role. Thinking through metrics prioritizing what youre monitoring how do you reporting on monitoring. This is a strategic thinking position. What does the workflow look like. Risk compliance governance relates to eachother. Already have a manager in compliance and analyst in compliance.
Remote or On-site: Hybrid will be on site more often
Work Schedule: 8:00 - 5:00 may work with teams in India occassionally.
Interview Process: 2 rounds of interviews first with hiring manager then with leadership team.
Director Cybersecurity Compliance
Function: Information Security Governance Risk & Compliance (GRC)
Reports To: Chief Information Security Officer (CISO)
Position Summary
The Director Cybersecurity Compliance is responsible for establishing leading and overseeing Advance Auto Parts enterprise wide cybersecurity compliance program. This role ensures the organization consistently meets applicable regulatory legal and industry cybersecurity requirements while maintaining a repeatable auditable and scalable compliance posture.
Operating within the Information Security GRC function this position translates cybersecurity strategy into documented monitored and measurable compliance execution supporting audit readiness risk transparency and executive decision making.
Key Responsibilities
Cybersecurity Compliance Program Leadership
Establish and operate an enterprise wide cybersecurity compliance program that reduces risk and strengthens audit readiness.
Provide strategic direction and oversight for cybersecurity compliance activities across the organization.
Ensure alignment between cybersecurity compliance efforts business objectives and enterprise risk appetite.
Regulatory Framework & Standards Oversight
Lead compliance efforts related to regulatory legal and industry frameworks including but not limited to SOX PCI HIPAA and NIST CSF.
Oversee the selection maintenance and mapping of cybersecurity controls to applicable frameworks and requirements.
Ensure policies standards and controls are reviewed and updated in response to regulatory changes and evolving industry expectations.
Audit Monitoring & Evidence Management
Oversee continuous compliance monitoring including control testing evidence collection and remediation tracking.
Support internal and external audits by ensuring availability of accurate complete and timely compliance evidence.
Maintain a sustained audit ready posture through repeatable and scalable compliance processes.
Governance Accountability & Risk Management
Define and enforce roles responsibilities and accountability for cybersecurity compliance across system owners IT operations and business stakeholders.
Facilitate governance and escalation for compliance gaps remediation delays and risk acceptance decisions.
Partner with Enterprise Risk Management to ensure cybersecurity compliance outcomes are reflected in enterprise risk reporting.
Reporting & Executive Engagement
Provide regular compliance reporting to executive leadership including compliance status remediation progress and key risk indicators.
Support leadership and Board level discussions by delivering clear risk based compliance insights.
Promote transparency and consistency in compliance measurement and reporting across the organization.
Tooling & Enablement
Oversee governance and use of OneTrust (or equivalent GRC tooling) for compliance workflows evidence management and reporting.
Drive automation and standardization to improve efficiency consistency and reuse of compliance evidence across frameworks.
Required Qualifications
Bachelors degree in Information Security Information Systems Risk Management or a related field or equivalent professional experience.
8 years of experience in cybersecurity information security governance risk or compliance with demonstrated leadership at the enterprise level.
Strong knowledge of cybersecurity regulatory and compliance frameworks and how they apply in a large complex enterprise environment.
Experience leading compliance programs that support audit readiness and regulatory scrutiny.
Proven ability to engage executive stakeholders and translate technical compliance requirements into business relevant insights.
Preferred Qualifications
Experience implementing or operating a cybersecurity compliance program within a retail consumer or highly regulated environment.
Experience leveraging GRC platforms (e.g. OneTrust) for compliance management and reporting.
Professional certifications such as CISSP CISM CRISC or similar.
Key Skills
- Children Activity
- Fund Management
- Event Planning
- Fabrication
- Airlines
- Corrosion
