Jobs › Director of Security, GRC
Director of Security, GRC
Role at a glance
- Category
- Governance
- Work arrangement
- Remote
- Location
- Remote
- Posted
- Jun 13, 2026
Aledade is hiring a Director of Security, GRC in Remote. This is a Governance role in the governance, risk, and compliance field. Review the full details below and apply directly with Aledade.
Aledade, a public benefit corporation operating the largest network of independent primary care in the country, is seeking a Director of Governance, Risk & Compliance (GRC) to lead and scale its enterprise GRC program. Reporting directly to the CISO, this role builds out a cohesive framework for risk management, compliance, and certifications while ensuring security, privacy, and governance practices align with regulatory, contractual, and audit expectations. The Director manages a growing team and owns Aledade's risk program, GRC platforms (including Vanta), and policy framework. The leader is accountable for driving compliance certifications (SOC 2, HIPAA, SOX/ITGC, HITRUST, CPRA), partnering across Security, IT, Product, and Legal to ensure evidence is ready for external audits, and ensuring governance enables both innovation and protection of sensitive patient data. Key duties include owning the enterprise risk management framework and risk registry with reporting to leadership and the Audit Committee, leading audit preparedness and execution, overseeing the Vanta Trust platform, and developing policies aligned with NIST, ISO 27001, HIPAA, and the AI
Full responsibilities and requirements are on Aledade's application page.
Apply for this role →Location and market context
This is a remote governance role, so it draws from a national talent pool rather than a single metro. Remote governance and compliance roles reward candidates who can show they work effectively across time zones and distributed legal, security, and product teams. Confirm any residency, travel, or occasional-onsite expectations directly with Aledade.
About governance roles
Governance roles design the structures, policies, and oversight that keep complex programs accountable, coordinating across legal, risk, compliance, and technology. Roles like this one are typically evaluated against frameworks such as governance frameworks, policy standards, and oversight and reporting practices.
How to position yourself for this governance role
Strong candidates emphasize policy and standard-setting, committee and stakeholder coordination, oversight reporting, and translating strategy into durable operating structures. In your resume and outreach, tie your experience to how Aledade would apply governance frameworks, policy standards, and oversight and reporting practices, and lead with concrete outcomes rather than duties.
Similar GRC roles
More GRC jobs: All GRC roles · Browse by category & location