Director, Governance, Risk & Compliance (GRC)

We’re in an unbelievably exciting area of tech and are fundamentally reshaping the data storage industry. Here, you lead with innovative thinking, grow along with us, and join the smartest team in the industry.

This type of work—work that changes the world—is what the tech industry was founded on. So, if you're ready to seize the endless opportunities and leave your mark, come join us.

The Governance, Risk and Compliance (GRC) team within Pure Storage’s Global Information Security Office (GISO) is responsible for driving maturity in security processes through policies and standards, effective risk management practices and ensuring compliance with contractual and legal requirements.

The Director of GRC will be responsible for developing and implementing a comprehensive GRC program for Pure Storage.

SHOULD YOU ACCEPT THIS CHALLENGE...

• Develop and execute a strategic roadmap for assessing technology and security risks, evaluating controls, and implementing solutions across applications, networks, and cloud environments.
• Drive critical Technology, Security, and Data Compliance programs in alignment with the organization’s strategic priorities and regulatory obligations.
• Partner with Architecture and Engineering teams to proactively identify and assess technical security risks within solution architecture and design processes.
• Collaborate cross-functionally with key stakeholders across Engineering, the Digital Transformation Group (DTG), Legal, and HR to promote the adoption of security controls, ensuring compliance through continuous monitoring, validation, and enhancement of DT security practices.
• Lead the design, implementation, and operational execution of Pure’s Internal AI Governance Program to ensure risk-based, compliant controls are embedded across the development, testing, deployment, and monitoring of AI systems within the corporate environment.
• Provide strategic leadership and oversight for Pure’s Third-Party Risk Management (TPRM) program, strengthening risk posture and ensuring effective supplier governance.
• Build and manage the security awareness and training program to foster a strong security culture and drive behavioral change across the organization.
• Define, measure, and report key metrics and KPIs to assess GRC program maturity, effectiveness, and continuous improvement opportunities.

WHAT YOU’LL NEED TO BRING TO THIS ROLE...

• 12+ years of relevant experience, including 5+ years of direct leadership experience serving as Head of GRC within a technology-driven organization.
• Expert-level understanding of GRC principles, methodologies, frameworks, and industry best practices.
• Proven ability to collaborate and influence across all levels of the organization to drive IT compliance, governance initiatives, and risk management strategies.
• Track record of successfully interfacing with customers and engineering teams during critical audits and high-stakes discussions, demonstrating resilience under pressure.
• Strong leadership, strategic thinking, analytical, problem-solving, and decision-making skills, with the ability to thrive in fast-paced, minimally directed environments.
• Executive presence with outstanding verbal and written communication skills, capable of engaging technical and business audiences alike.
• Bachelor’s degree in Computer Science or a related field required; Master’s degree preferred.
• Professional certifications such as CISA, CISM, CRISC, or CISSP are highly desirable.
• We are primarily an in-office environment and therefore, you will be expected to work from the Santa Clara or Lehi office locations in compliance with Pure’s policies, unless you are on PTO, or work travel, or other approved leave.

The annual base salary range is: $159,000 – $302,000. 

Salary ranges are determined based on role, level and location. For positions open to candidates in multiple geographical locations, the base salary range is reflective of the labor market across the applicable locations. 

This role may be eligible for incentive pay and/or equity. 

And because we understand the value of bringing your full and best self to work, we offer a variety of perks to manage a healthy balance, including flexible time off, wellness resources, and company-sponsored team events - check out purebenefits.com for more information. 

There is no application deadline and we accept applications on an ongoing basis until the job is filled.

#LI-ONSITE

#LI-KT1

WHAT YOU CAN EXPECT FROM US:

• Pure Innovation: We celebrate those who think critically, like a challenge and aspire to be trailblazers.
• Pure Growth: We give you the space and support to grow along with us and to contribute to something meaningful. We have been Named Fortune's Best Large Workplaces in the Bay Area™, Fortune's Best Workplaces for Millennials™ and certified as a Great Place to Work®!
• Pure Team: We build each other up and set aside ego for the greater good.

And because we understand the value of bringing your full and best self to work, we offer a variety of perks to manage a healthy balance, including flexible time off, wellness resources and company-sponsored team events. Check out purebenefits.com for more information.

ACCOMMODATIONS AND ACCESSIBILITY:

Candidates with disabilities may request accommodations for all aspects of our hiring process. For more on this, contact us at TA-Ops@purestorage.com if you’re invited to an interview.

WHERE DIFFERENCES FUEL INNOVATION:

We’re forging a future where everyone finds their rightful place and where every voice matters. Where uniqueness isn’t just accepted but embraced. That’s why we are committed to fostering the growth and development of every person, cultivating a sense of community through our Employee Resource Groups and advocating for inclusive leadership. At Pure Storage, diversity, equity, inclusion and sustainability are part of our DNA because we believe our people will shape the next chapter of our success story.​ 

Pure Storage is proud to be an equal opportunity employer. We strongly encourage applications from Indigenous Peoples, racialized people, people with disabilities, people from gender and sexually diverse communities, and people with intersectional identities. We also encourage you to apply even if you feel you don’t match all of the role criteria. If you think you can do the job and feel you’re a good match, please apply.