Director, GRC & Data Protection

This role is open to candidates based in Canada and in the United States only. Candidates must be located in the Eastern or Central Time zones (ET/CT).

Phreesia is looking for a Director, GRC & Data Protection to serve as the CISO’s operating partner and lead our GRC and data security programs in a highly product-driven, SaaS environment.

This role is ideal for a deeply technical security leader who can move comfortably between audit rooms, architecture reviews, and executive updates—someone who can both design controls and roll up their sleeves to implement them.

The Director, GRC & Data Protection will have overall responsibility and ownership for the design and implementation of Phreesia’s security governance, risk, compliance, and data protection architecture and associated strategy. A key objective of this role is to drive simplification, standardization, and security maturity across our products, platforms, and data environments, while enabli...