Independence Pet Holdings3 weeks ago

Director of Governance, Risk, and Compliance / TPRM

Independence Pet Holdings

Hybrid · Chicago, Illinois, United States

Chicago, Illinois, United StatesHybridFull TimeSenior LevelDoctorate Or Professional DegreeHealthcare TechUnknown

Type

Full Time

Level

Senior Level

Education

Doctorate Or Professional Degree

Company size

Unknown

Industry

Healthcare Tech

Job Summary

Director, Governance, Risk & Compliance (GRC) and Third-Party Risk Management (TPRM) for a multi-entity insurance holding company. Lead the design, implementation, and maturation of a unified risk and compliance program across MGAs and insurance carriers, owning the enterprise information security compliance posture. Establish a defensible control environment and drive regulatory readiness across jurisdictions (e.g., NYDFS, SOC 2 Type II, ISO 27001, PCI DSS). Design a unified GRC operating model, define KRIs and metrics, and lead audit strategy and third-party risk management across the vendor lifecycle. Collaborate with leadership to deliver executive reporting, drive automation using GRC platforms, and harmonize disparate practices into a centralized function. Provide guidance to staff, manage budgets, and influence strategic investment in risk and compliance initiatives.

Required Qualifications

12–15+ years of progressive experience in cybersecurity, risk management, compliance, or audit
5–7+ years in senior leadership roles within insurance or highly regulated financial services environments (required)
Licensed attorney (JD) or Certified Public Accountant (CPA) strongly preferred, particularly with experience in regulatory interpretation, audit, or assurance
MBA or equivalent advanced business degree preferred
Certifications (Preferred): CISSP, CISM, CRISC, CISA, CGRC, CIA, CIPP/CIPM, ISO 27001 Lead Implementer/Lead Auditor
Deep knowledge of NIST 800-53, ISO 27001, SOC 2, PCI DSS; experience with NYDFS and other regulatory regimes
Experience implementing and scaling GRC tooling platforms
Ability to design and operationalize scalable, evidence-based control frameworks
Executive engagement skills
Strong strategic/analytical thinking and board-level communication

Apply with one swipe on Sorce. We auto-fill applications and apply on your behalf — no cover letters, no 40-minute forms.

Hiring someone like this?

Get your role in front of qualified candidates on Sorce.

Get started