Full-Time Director of Digital Technology - GRC

About Digital Technology: We’re not yesterday’s IT department, we’re Digital Technology. The world keeps changing, and so do we. We redefine what it means to be IT with a mindset focused on transformation, experience, AI-driven automation, innovation, and growth. We deliver delightful and secure experiences for our customers and employees. We love co-creating, using, and highlighting our own products to do it. We aim to make the world work better for our employees and customers.

About this role: The Director of Digital Technology GRC will develop and implement a comprehensive GRC program for the organization's IT environment.

Responsibilities:

1. Develop and execute a strategic roadmap for advanced Technology & Security architecture, controls, and solutions across applications, networks, and cloud environments.
2. Drive key Technology, Security, and Data compliance programs.
3. Architect and deploy technical controls across emerging risk priorities (e.g., Third Party Risk and Resiliency).
4. Partner closely with Legal, Privacy, and Data Security teams to develop GRC programs, ensuring adherence to requirements through ongoing monitoring and validation.
5. Lead the design, implementation, and execution of ServiceNow’s Internal AI Governance program.
6. Integrate GRC requirements into risk management and control programs.
7. Act as a technical advisor to stakeholders, communicating complex issues and recommendations.
8. Govern and enforce compliance through ongoing control testing, continuous controls monitoring, and automation.

Requirements:

• Experience with integrating AI into work processes, ideally using AI-powered tools, automating workflows, analyzing insights, or exploring AI's impact.
• 12+ years related experience, with 5+ years leadership in Technology Governance, Risk, and Compliance.
• Experience with Government and Regulated Markets mandates.
• Deep understanding of certification and attestation programs (e.g., SOX-404, EU AI Act, NIST AI RMF, NIST-CSF, ISO standards).
• Understanding of Federal compliance certifications (e.g., NIST 800-53, FedRAMP).
• Demonstrated ability to build scalable compliance systems and processes.
• Demonstrated ability to build and lead product development.
• Deep understanding of GRC principles and industry best practices.
• Self-motivated, self-directed, and able to thrive in a fast-paced environment.
• Ability to work across the organization to influence compliance efforts.
• Demonstrated ability to interface successfully with customers and engineering teams.
• Strong leadership, strategy, analytical, problem-solving, decision-making skills.
• Prior experience at a SaaS, PaaS, or IaaS Cloud company.
• Master's degree or related experience; certifications highly regarded.
• Willing to travel up to 20%.

What is the last date for applying to the job?

Which countries are accepted for this remote job?