At MTM, we are not just colleagues; we are collaborators on a shared mission; communities without barriers. We have exciting opportunities to join our growing team where your work has a direct impact on the communities we serve. Our company culture is one of innovation, collaboration, and growth. If you are passionate, driven, and ready to join a team where your work will directly transform and shape our industry, then we want to talk to you!
What will your job look like?
The Director, Governance, Risk & Compliance (GRC) serves as the enterprise’s senior leader responsible for governing the compliance dimensions of modern technology and AI. This role is a second line of defense, and provides the strategic oversight and assurance needed to ensure the organization’s technology, and AI ecosystem aligns with regulatory expectations, ethical standards, and customer commitments.
The Director, GRC owns the technology & AI compliance Framework, oversees governance for high‑risk technologies, and ensures the organization is prepared for external scrutiny, including certifications such as SOC 2, HITRUST, and FedRAMP.
This is a governance and risk leadership position, ideal for someone who understands technology deeply but operates with a compliance, assurance, and regulatory mindset.
What you’ll do:
Audit & Certification Readiness
Lead compliance oversight for SOC 2, HITRUST, FedRAMP, and similar certifications
Ensure first-line teams produce audit-ready artifacts
Track remediation and risk closure
Technology & AI Governance
Lead enterprise governance for technology and AI within the Compliance function
Own policies, standards, and controls related to cloud, data, AI/ML/GenAI, automation, and software development
Drive risk-tiering and governance requirements for technology and AI systems
Ensure alignment to regulatory, ethical, and customer expectations
Establish KRIs and KPIs for technology and AI compliance (control maturity, issues, exceptions, drift signals, audit readiness)
Provide regular reporting to senior leadership and the AI Governance Committee
Lead thematic reviews of technical risk trends and emerging threats
Compliance Oversight
Ensure cloud and SaaS environments meet compliance-related controls (SOC 2, HITRUST, FedRAMP)
Validate due diligence, technical assessments, and ongoing monitoring for technology adoption
Ensure data governance practices incorporate compliance standards for classification, retention, quality, and access
Support privacy with DPIAs and data-related assessments
Deliver training on AI governance, cloud/SaaS compliance, and technology risks
Build processes, templates, and playbooks that operationalize compliance expectations
Serve as a strategic advisor to technology, data, and AI leaders
Govern AI risk assessments, use-case oversight, and documentation standards
Define compliance criteria for high-risk AI
Monitor evolving AI regulations
Set compliance expectations for technology and AI vendors
Oversee due diligence, contractual requirements, and ongoing vendor monitoring
Define compliance-required controls; review and challenge technical architecture, risk assessments, and AI documentation
Oversee compliance evidence requirements (e.g., model cards, testing results, data lineage)
Advise on risk acceptance, control gaps, and compensating controls
Provide daily guidance for team of direct reports
What you’ll need:
Experience, Education & Certifications:
High School Diploma or G.E.D
4+ years in technology compliance, technology risk, cybersecurity risk, audit, or data governance roles
4+ years of data analysis experience
Experience with regulatory frameworks and certifications such as SOC 2, HITRUST, FedRAMP
Skills:
Strong command of AI governance, model risk, or responsible AI frameworks
Excellent executive presence, judgment, and the ability to influence senior technical leaders
Ability to translate complex technical concepts into actionable compliance requirements
Outstanding analytical and organizational skills and attention to detail
Ability to work independently and collaboratively with others to achieve defined goals
Ability to motivate and empower employees
Ability to work well under pressure
Passion for data
Ability to build and maintain effective cross functional department partnerships
Strong sense of urgency
Strategic thinker
Demonstrate excellent time management skills
Ability to identify, interpret and communicate business risks
Ability to lead, coach and motivate a specialized compliance team
Excellent problem-solving skills with the ability to anticipate and resolve problems
Ability to maintain positive attitude and team focused during high stress situations
Deep familiarity with cloud, SaaS, software development, and AI/ML from a risk and compliance perspective
Must be able to communicate with staff of all job levels professionally
Demonstrate a high level of ownership
Excellent communication skills
Ability to maintain high level of confidentiality
Even better if you have:
Experience in healthcare, SaaS, regulated industries, or technology-focused compliance programs, preferred
Prior experience leading SOC/HITRUST/FedRAMP audits, preferred
Professional certifications (e.g., CISA, CISM, CRISC, CIPM, CCSK, CCAI) a plus
Direct exposure to data governance programs, cloud security concepts, or AI governance, preferred
What’s in it for you:
Health and Life Insurance Plans
Dental and Vision Plans
401(k) with a company match
Paid Time Off and Holiday Pay
Maternity/Paternity Leave
Casual Dress Environment
Tuition Reimbursement
MTM Perks Discount Program
Leadership Mentoring Opportunities
Equal Opportunity Employer: MTM is an equal opportunity employer. MTM considers qualified candidates with a criminal history in a manner consistent with the requirements of applicable local, State, and Federal law. If you are in need of accommodations, please contact MTM’s People & Culture.
#MTM