American Heart Association
Governance, Risk & Compliance Director
American Heart Association, Dallas, Texas, United States, 75215
Overview
Since our founding in 1924, we've cut cardiovascular disease deaths in half, but there is still so much more to do. To overcome today’s biggest health challenges and accelerate this progress, we need passionate individuals like you. Join our movement, be part of the progress, and help ensure a healthier future for all. You matter, and so does the impact you can make with us.
The American Heart Association has an excellent opportunity for a
Governance, Risk & Compliance Director .
The Governance, Risk & Compliance Director will serve as the subject matter expert responsible for developing and implementing the organization's cybersecurity operations, enterprise governance, risk, and compliance (GRC) initiatives. This role will work closely with leaders within and outside of Business Technology, Legal, Compliance, and Privacy. This role provides leadership in GRC activities and will work closely with the BT Cybersecurity team, understanding both GRC requirements and business requirements, and can tie technical concepts to enterprise and business risk.
The Association offers many resources to help you maintain work‑life harmonization through your changing needs and কোনো life situations. To help you be successful, you will have access to Heart U, our award‑winning corporate university, as well as additional training and support, locally.
#TheAHALife is more than a company culture; it is our way of life. It embodies our commitment to work‑life harmonization and is guided by our core values where our employees can thrive both personally and professionally. Europea why you will be Seen. Beulay.
Be Heard. Be Valued at the American Heart Association by following us on LinkedIn, Instagram, Facebook, X, and atheart.jobs.
Responsibilities
Develops, maintains, and executes the BT GRC strategy and roadmap in alignment with organizational information security and business objectives, including setting strategic другое direction, policies, and standards
Develops and maintains policies, processes, procedures, and standards to support GRC and Cybersecurity requirements based on selected industry and regulatory frameworks. Collaborates with business units, legal, and HR to ensure consistent policy application, awareness, and alignment with organizational goals
Manages the BT risk management program, including identification, assessment, mitigation, and reporting of cyber and technology risks, and maintains the risk register for leadership visibility.
Ensures GRC strategy covers security and privacy frameworks, adapting to changes in legislation and regulation. Stays current with evolving national, state, and local privacy laws and framework impacting security and data governance
Translates GRC requirements into actionable guidance for stakeholders, ensuring compliance or identifying compensating controls as needed. Maintains a compliance calendar and ensures timely execution of required activities such as policy reviews, annual training, risk assessments, and gathering compliance artifacts
Drives remediation plans and risk treatment strategies in collaboration with technology and business leaders, ensuring adherence to internal and external requirements
Lead and support internal and external audits, including readiness assessments, remediation activities, and serve as the primary contact for third‑party auditors and assessors
Performs other duties as required or assigned, which are reasonably within the scope and responsibility of the job level and family.
Qualifications
Requires a degree or equivalent
Requires 8 years of minimum prior relevant experience
Required Skills: Strategic Planning, Cybersecurity, Governance, Risk and Compliance (GRC), Risk Assessment, Regulatory Compliance, Project Management, Cloud Security, Metrics Management, Team Management and Team Building, Risk Management
Compensation & Benefits The American Heart Association invests in its people. Here are the main components of our total rewards package. Visit Rewards & Benefits to see more details.
Compensation
– Our goal is to ensure you have a competitive base salary. That’s why we regularly review the market value of jobs and make adjustments, as needed.
Performance and Recognition
– You are rewarded for achieving success through annual salary planning and incentive programs; Based on the type of position
Benefits
– We offer a wide array of benefits including medical, dental, vision, disability, and life insurance, along with a robust retirement program that includes an employer match and automatic contribution. As a mark of our commitment to employee well‑being, we also offer an employee assistance program, employee wellness program and telemedicine, and medical consultation.
Professional Development – You can join one of our many Employee Resource Groups (ERG) or be a mentor/mentee in our professional mentoring program. HeartU is the Association’s national online university, with more than 100,000 resources designed to meet your needs and busy schedule. Work‑Life Harmonization –
The Association offers Paid Time Off (PTO) at a minimum of 16 days per year for new employees. The number of days will increase based on seniority level. You will also have a total of 12 paid holidays off each year, which includes several days off at the end of the year.
Tuition Assistance
– We support the career development of all employees. This program provides financial assistance to employees who wish to further their education and career in relation to their current duties and responsibilities, or for potential future positions in the organization.
At American Heart Association | American Stroke Association, our mission is to be a relentless force for a world of longer, healthier lives, regardless of race, ethnicity, gender, gender identity, religion, age, language, sexual orientation, national origin and physical or cognitive abilities.This position not a match with your skills?
Click here to see other opportunities.
In accordance with local and state laws where applicable, qualified applicants with arrest or conviction records will be considered for employment.
EOE/Protected Veterans/Persons with Disabilities
#LI-Hybrid
#J-18808-Ljbffr
The American Heart Association has an excellent opportunity for a
Governance, Risk & Compliance Director .
The Governance, Risk & Compliance Director will serve as the subject matter expert responsible for developing and implementing the organization's cybersecurity operations, enterprise governance, risk, and compliance (GRC) initiatives. This role will work closely with leaders within and outside of Business Technology, Legal, Compliance, and Privacy. This role provides leadership in GRC activities and will work closely with the BT Cybersecurity team, understanding both GRC requirements and business requirements, and can tie technical concepts to enterprise and business risk.
The Association offers many resources to help you maintain work‑life harmonization through your changing needs and কোনো life situations. To help you be successful, you will have access to Heart U, our award‑winning corporate university, as well as additional training and support, locally.
#TheAHALife is more than a company culture; it is our way of life. It embodies our commitment to work‑life harmonization and is guided by our core values where our employees can thrive both personally and professionally. Europea why you will be Seen. Beulay.
Be Heard. Be Valued at the American Heart Association by following us on LinkedIn, Instagram, Facebook, X, and atheart.jobs.
Responsibilities
Develops, maintains, and executes the BT GRC strategy and roadmap in alignment with organizational information security and business objectives, including setting strategic другое direction, policies, and standards
Develops and maintains policies, processes, procedures, and standards to support GRC and Cybersecurity requirements based on selected industry and regulatory frameworks. Collaborates with business units, legal, and HR to ensure consistent policy application, awareness, and alignment with organizational goals
Manages the BT risk management program, including identification, assessment, mitigation, and reporting of cyber and technology risks, and maintains the risk register for leadership visibility.
Ensures GRC strategy covers security and privacy frameworks, adapting to changes in legislation and regulation. Stays current with evolving national, state, and local privacy laws and framework impacting security and data governance
Translates GRC requirements into actionable guidance for stakeholders, ensuring compliance or identifying compensating controls as needed. Maintains a compliance calendar and ensures timely execution of required activities such as policy reviews, annual training, risk assessments, and gathering compliance artifacts
Drives remediation plans and risk treatment strategies in collaboration with technology and business leaders, ensuring adherence to internal and external requirements
Lead and support internal and external audits, including readiness assessments, remediation activities, and serve as the primary contact for third‑party auditors and assessors
Performs other duties as required or assigned, which are reasonably within the scope and responsibility of the job level and family.
Qualifications
Requires a degree or equivalent
Requires 8 years of minimum prior relevant experience
Required Skills: Strategic Planning, Cybersecurity, Governance, Risk and Compliance (GRC), Risk Assessment, Regulatory Compliance, Project Management, Cloud Security, Metrics Management, Team Management and Team Building, Risk Management
Compensation & Benefits The American Heart Association invests in its people. Here are the main components of our total rewards package. Visit Rewards & Benefits to see more details.
Compensation
– Our goal is to ensure you have a competitive base salary. That’s why we regularly review the market value of jobs and make adjustments, as needed.
Performance and Recognition
– You are rewarded for achieving success through annual salary planning and incentive programs; Based on the type of position
Benefits
– We offer a wide array of benefits including medical, dental, vision, disability, and life insurance, along with a robust retirement program that includes an employer match and automatic contribution. As a mark of our commitment to employee well‑being, we also offer an employee assistance program, employee wellness program and telemedicine, and medical consultation.
Professional Development – You can join one of our many Employee Resource Groups (ERG) or be a mentor/mentee in our professional mentoring program. HeartU is the Association’s national online university, with more than 100,000 resources designed to meet your needs and busy schedule. Work‑Life Harmonization –
The Association offers Paid Time Off (PTO) at a minimum of 16 days per year for new employees. The number of days will increase based on seniority level. You will also have a total of 12 paid holidays off each year, which includes several days off at the end of the year.
Tuition Assistance
– We support the career development of all employees. This program provides financial assistance to employees who wish to further their education and career in relation to their current duties and responsibilities, or for potential future positions in the organization.
At American Heart Association | American Stroke Association, our mission is to be a relentless force for a world of longer, healthier lives, regardless of race, ethnicity, gender, gender identity, religion, age, language, sexual orientation, national origin and physical or cognitive abilities.This position not a match with your skills?
Click here to see other opportunities.
In accordance with local and state laws where applicable, qualified applicants with arrest or conviction records will be considered for employment.
EOE/Protected Veterans/Persons with Disabilities
#LI-Hybrid
#J-18808-Ljbffr