Director, Governance Risk and Compliance

Snapdocs is a rapidly growing company that is disrupting the residential mortgage market, bringing scalable and sophisticated software to a pillar of the US economy that still relies on fax machines and manila envelopes. Today, 20% of real estate transactions are processed through our platform. Our products rely on carefully designed workflows, AI-based automations, and empathetic user experiences to deliver best-in-class customer experiences. We are backed by investors like Sequoia, Y Combinator, and F-Prime. 

We are an innovative team. As we expand our product offering to serve more customers in more ways, we need to grow our team with smart, hungry, and curious people. That’s where you come in…

We’re looking for a GRC Director to drive Snapdocs’ governance, risk, and compliance initiatives. You'll work closely with internal teams and external auditors to ensure our products and security practices remain compliant. Your mission is to build and maintain trust and safety within the organization, design and implement compliance programs, and promote a culture of security and privacy.

What you’ll do:

• Lead the GRC and IT teams, maintaining cross-functional relationships to coordinate services.
• Develop and manage risk assessment and risk management programs aligned with industry standards (NIST, ISO, FFIEC).
• Oversee the Information Security Management System (ISMS) to ensure ISO 27001 compliance.
• Manage Snapdocs' IT services and key vendors.
• Ensure a robust Third-Party Risk Management Program.
• Enhance and implement the Security/Privacy awareness training program, using meaningful metrics to measure effectiveness.
• Build and maintain a strategic Data Protection and Privacy program with consistent policies and controls.
• Develop and track quarterly objectives and key metrics.
• Reduce risk and improve security/privacy controls through an integrated approach.
• Collaborate with Legal to stay updated on legislative changes for ongoing and future compliance.
• Continuously improve Snapdocs’ GRC automation platform to enhance efficiency and automate risk management processes.
• Maintain compliance with industry certifications and attestations (e.g., SOC2, GLBA, NIST).
• Respond to customer and sales inquiries related to information security compliance and risk management.

You’re a good fit if you have: 

• 10+ years of experience in governance, risk, compliance, data protection, and privacy.
• Management experience in a cloud service provider (PaaS/SaaS) environment.
• Expertise in regulatory certifications and standards like SOC2, ISO 27001/27017, and CCPA/CPRA.
• Experience with COSO and COBIT frameworks for risk management and controls.
• Strong knowledge of cloud security technologies and compliance.
• Ability to work effectively in a fast-paced environment with shifting priorities.
• Self-motivated with excellent research, written, and verbal communication skills.
• Experience with GRC automation tools and policy/process development.
• Understanding of balancing business needs with compliance and security requirements.
• Experience in financial services or mortgage industry standards and regulations would be a bonus. 

If you are located in NY, CA, WA or MA, the salary range for this role is $224,600.00 - $303,800.00. For all other locations, the range is $196,500.00 - $265,900.00. As a new hire, your starting salary will likely be between the 25th percentile and the midpoint of the range; however, all offers are based on the successful candidate’s experience and qualifications.

Snapdocs strongly values diversity and drive. We want to work with people of different backgrounds and different paths in life, and we trust our team to make smart decisions. This means we value independent work as well as collaboration. 

Our benefits include (but are not limited to):

• Excellent health, dental, and vision benefits
• 401(k) with up to 4% company match
• 16 weeks paid parental leave (regardless of gender)
• Flexible time off policy
• Flexible spending account for healthcare and dependent care
• Life and disability insurance

Snapdocs is proud to be an equal opportunity workplace. We are committed to equal employment opportunity regardless of race, color, ancestry, religion, sex, national origin, sexual orientation, age, citizenship, marital status, disability, gender identity, or Veteran status. If you have a disability or special need that requires accommodation, please let us know.

California residents applying for positions at Snapdocs are subject to our candidate privacy policy. (www.snapdocs.com/california-candidate-privacy)