Provide regular reporting to executive leadership and board-level stakeholders (e.g., Audit Committee,
Risk Committee).
Collaborate daily with the Chief Privacy Officer (CPO) and Chief Risk Officer (CRO) organizations
to ensure alignment across privacy, enterprise risk management, and information security compliance.
Translate complex regulatory and technical requirements into business-aligned decision frameworks.
Influence enterprise investment decisions through quantified risk exposure and control effectiveness.
Leadership & Organizational Complexity
Lead a multi-layered global GRC and TPRM organization, including:
o 4 senior GRC functional leaders
o A transversal offshore operations team
o A dedicated outsourced delivery pod (India-based) supp
Benefits
Health insurance
Additional Information
Established in 2021, Independence Pet Holdings is a corporate holding company that manages a diverse and broad portfolio of modern pet health brands and services, including insurance, pet education, lost recovery services, and more throughout North America.
We believe pet insurance is more than a financial product and build solutions to simplify the pet parenting journey and help improve the well-being of pets. As a leading authority in the pet category, we operate with a full stack of resources, capital, and services to support pet parents. Our multi-brand and omni-channel approach include our own insurance carrier, insurance brands and partner brands.
Director, Governance, Risk & Compliance (GRC) and Third-
Party Risk Management (TPRM)
Location: Chicago, IL (Hybrid)
Reports To: Chief Information Security Officer (CISO)
Position Overview
The Senior Director of Governance, Risk & Compliance (GRC) and Third-Party Risk Management (TPRM) is an
enterprise leadership role accountable for the design, implementation, and continuous maturation of a unified
risk and compliance program across a $2.5 billion insurance holding company.
This position holds end-to-end accountability for the information security compliance posture of an
organization comprised of 12 Managing General Agencies (MGAs) and 2 insurance carriers, operating
within a complex and highly regulated environment.
Operating at the intersection of cybersecurity, regulatory compliance, and third-party governance, this leader
serves as the central authority for aligning disparate control environments into a cohesive, measurable, and
defensible enterprise risk framework. The role requires executive-level influence, regulatory fluency, and the
ability to drive consistency across a federated, acquisition-driven operating model.
Independencepetgroup · US