Primary PurposeTechnology governance is not just about controls-it's about enabling the business to move with speed, clarity, and confidence. As our Technology organization continues to evolve, this role will shape a more modern, risk-aware, and well-governed environment that supports innovation at scale.
As Director of Technology Governance, you will own and evolve the enterprise governance function-establishing clear guardrails, decision rights, and operating standards that enable teams to move faster with confidence. You'll bring together governance, audit readiness, and knowledge management into a cohesive, scalable approach that strengthens how we operate across the organization.
This is a highly visible role within IT, partnering closely with Internal Audit, Information Security, and senior Technology leaders. You will help embed "compliance by design," enhance transparency across risk and decision-making, and drive measurable maturity-without slowing the business down.
If you're energized by turning governance into a strategic enabler and shaping how a large, evolving Technology organization makes decisions and manages risk, this role offers the opportunity to make a lasting, enterprise-wide impact.
Our flexible/hybrid work schedule includes 3 in-person days at one of our core locations and 2 remote days. Our core office location for this role is Salisbury, NC. Applicants must be currently authorized to work in the United States on a full-time basis. Key Responsibilities- Define and lead the enterprise technology governance model, including decision rights, forums, RACIs, standards, and exception frameworks-ensuring clarity and consistency across domains.
- Establish and continuously improve governance policies and processes, including lifecycle management, ownership, approvals, exceptions, attestations, and change control.
- Operate as a strong second line of defense by setting control expectations, monitoring effectiveness, and providing independent, constructive challenge to first line teams.
- Lead audit and compliance readiness efforts (e.g., SOX ITGC, PCI, HIPAA as applicable), including scoping, evidence strategy, walkthroughs, findings governance, and remediation tracking.
- Serve as a key partner to Internal Audit and Information Security, aligning on risk priorities, testing approaches, and lessons learned from audits and incidents.
- Establish and lead governance forums (e.g., Change/Release, Architecture/Standards, Data/Platform guardrails), ensuring decisions are clear, actionable, and consistently upheld.
- Own knowledge management for governance artifacts, including taxonomy design, centralized repositories, version control, accessibility, and change communications.
- Define and deliver KPI and KRI dashboards (e.g., policy adoption, attestations, exception trends, control effectiveness, finding aging) and use insights to drive continuous improvement.
- Embed "compliance by design" through enablement, training, and integration into ways of working and supporting tools.
- Partner across Procurement, Security, and Legal to strengthen governance of third-party and vendor technology risk within the CIO organization.
- Build, lead, and develop a high-performing team responsible for governance, risk, and knowledge management capabilities.
- Manage budgets, platforms, and external partners supporting GRC and knowledge management initiatives.
- Contribute to broader IT strategy development, ensuring governance frameworks support both innovation and risk management objectives.
- Partner with business and Technology leaders to identify opportunities to improve decision-making, reduce risk, and increase operational transparency.
Qualifications- 12+ years of progressive Technology leadership experience, including ownership of strategic programs, platforms, or domain-specific functions, with strong exposure to governance, risk, audit/compliance, or IT controls
- 4+ years of experience leading diverse, cross-functional teams within complex, matrixed environments
- Bachelor's degree in Computer Science, Engineering, Information Systems, Business, or related field (or equivalent experience)
- Proven success designing and implementing scalable governance frameworks, policy portfolios, and enterprise guardrails
- Strong financial acumen, including budget ownership and investment planning for governance and tooling initiatives
- Exceptional problem-solving and decision-making skills, with the ability to balance risk, innovation, and business agility
- Strong communication and influencing skills, with experience engaging senior stakeholders across IT, Security, Audit, Legal, and Finance
- Demonstrated ability to build and develop high-performing teams and foster a culture of accountability and continuous improvement
- Strong executive presence with the ability to translate strategy into actionable outcomes
- Deep understanding of control frameworks and regulatory environments (e.g., SOX ITGC, NIST, ISO 27001), as well as second line oversight and audit cycles
Preferred Qualifications- Master's degree in Information Technology, Business Administration, or related field
- Certifications such as CISM, CISSP, CGEIT, CRISC, CISA, or similar
- Experience leading governance, risk, or compliance functions in large, complex organizations
- Familiarity with GRC platforms (e.g., ServiceNow GRC/IRM, Archer) and enterprise knowledge management tools (e.g., SharePoint, Confluence)
- Experience supporting enterprise architecture or digital transformation initiatives
- Additional certifications in IT service management or risk frameworks (e.g., ITIL, ISO 27001 Lead Implementer/Auditor)