Director of Governance, Risk, and Compliance

Department: Corporate

Employment Type: Permanent - Full Time

Location: Remote, US

Reporting To: Bob Fleu

Description

What You'll Do

• Governance & Compliance:
  • Lead the development, implementation, and maintenance of the GRC framework across the organization 
  • Ensure compliance with applicable regulations and industry standards (e.g., PCI, SOC 2, ISO 27701, GDPR, HIPAA, state privacy laws and regulations) 
  • Collaborate with key departments (Legal, Operations, Finance, IT, HR) to establish and enforce governance policies and procedures 
  • Serve as the point of contact for external auditors, regulatory bodies, and certification bodies 
• Risk Management:
  • Identify, evaluate, and prioritize organizational risks (financial, operational, security, compliance) and develop risk mitigation strategies 
  • Lead the risk assessment process, including conducting periodic risk reviews, vulnerability assessments, and control testing
  • Develop and track key risk indicators (KRIs) to monitor ongoing risk exposure and ensure proactive management of risks
• Internal Audits & Controls:
  • Leverage your accounting and auditing expertise to manage internal audits and financial control processes 
  • Ensure that reporting, operational processes, and SaaS product development follow proper compliance and governance guideline 
  • Perform regular audits of internal controls to ensure compliance with SOX and other financial regulations, making recommendations for improvements as necessary 
• Compliance & Regulatory Reporting:
  • Prepare reports for the board of directors, executive management, stakeholders, and regulators on GRC initiatives, audits, compliance status, and risk mitigation effort
  • Monitor changes in regulations and standards, ensuring the company adapts its processes and controls in a timely manner to remain compliant
  •  Lead or support the preparation of regulatory filings, reports, and certifications as needed 
• Policy & Training Development:
  • Develop and implement comprehensive GRC policies and training programs to ensure company-wide understanding and adherence
  •  Educate employees on compliance requirements, ethical practices, and risk management procedures
• Continuous Improvement & Reporting:
  • Continuously evaluate and enhance the effectiveness of governance, risk, and compliance processes and systems 
  • Report on the effectiveness of GRC activities and provide recommendations to senior leadership for continuous improvement
  • Manage and track remediation efforts in response to audit findings or non-compliance issues

What You'll Need

• 3+ years of experience in governance, risk, and compliance management, with a background in accounting and auditing. Certified Public Accounting qualification strongly preferred and prior accounting firm experience strongly preferred
• In-depth knowledge of GRC frameworks, financial regulations, and compliance standards (e.g., PCI, SOC 2, ISO 27701, GDPR, HIPAA and state privacy laws and regulations)
• Strong experience in managing internal and external audits, financial controls, and regulatory reporting within a SaaS or technology company
• Demonstrated experience with risk management practices, vulnerability assessments, and control design
• Excellent verbal and written communication skills with the ability to present complex topics to both technical and non-technical stakeholders
• Detail-oriented, with strong organizational, analytical, and problem-solving skills

What's In It For You

• Finvi offers, for most positions, a flexible work environment*
• Hybrid or remote unless otherwise identified*
• Flexible Time Off* for exempt roles to keep up with today’s varied lifestyles and ample PTO** for non-exempt.
  • WA non-exempt employees can utilize up to 12 days of vacation per year and up to 6 days of paid sick leave per year.
• Competitive pay and 401(k) with employer match
• Health insurance with wellness discounts, medical, dental, and vision care
• Three (3) weeks Paid Parental Leave for new parents
• Eight (8) Paid Holidays throughout the year
• We invest in our employees through educational assistance and learning and development
• Robust Wellness Program includes opportunities to earn money for your Health Savings Account (HSA) or Health Reimbursement Account (HRA)
• Paid Volunteer Time Off Program to make a difference in your community
• Learn more about what Finvi offers here: https://finvi.com/about-us/careers/