All openings

Director, Security Governance, Risk and Compliance

Washington, DC

As our Governance, Risk and Compliance (GRC) Director, you will report directly to the Head of Security at Rally. You will focus on bringing our GRC program to the next level, integrating Policy Management, Risk Management and Compliance. And don't get the wrong impression - this is no ordinary check-the-box GRC program… we are building an excellent program that will actually guide security strategy at Rally! Come join us to make it happen!

You Will:

  • Be an essential member of the Security Leadership Team, helping shape overall strategy
  • Manage our GRC Team, comprised of four professionals
  • Manage Security Policy, Risk Management (including Vendor Security), and our security audits
  • Guide the Team in maturing and maintaining Rally's Risk Register and Security Control Library in our GRC system (ZenGRC).
  • Lead the team in integrating audit testing with the Control Library, capturing on-going control effectiveness feedback for risk assessments
  • Mature the Risk Management Program to produce strategic insight for security decisions.
  • Work with SMEs across the organization to mature/design security controls & mitigate risk
  • Perform product security assessments

You Have:

  • 15+ years of information security/compliance/audit experience or Information Technology (IT)
  • 5+ years experience in GRC, with experience managing security risks and designing controls.
  • 5+ years experience in people management
  • Passion for GRC as a strategic approach, not a check-the-box exercise
  • Security certifications encouraged (CISA or CISSP)
  • Please note that hiring for this position will only be considered in the following states: AZ, DC, FL, IL, MD, MN, NC, NJ, NV, NY, OR, PA, TN, TX, VA, WA

Rally Health® is about putting health in the hands of the individual by empowering people to take charge of their health and health care with our online and mobile tools. We know that a diverse workforce enriches us with the talent, perspective, and inspiration we need to achieve our mission. Rally knows that we are strongest when our teams reflect the diversity of the world around us and create a sense of belonging.

Since 2017, Rally has been a non-integrated entity of Optum, a part of UnitedHealth Group. In the next stage of our evolution, Rally will elevate into a new organization within Optum known as Optum Digital. With these changes, set to be complete by the end of September 2021, we will bring together teams and resources to ultimately better deliver our digital products and services to consumers.

Our Benefits:

  • Great compensation package
  • Comprehensive benefits package for full-time employees, including medical, dental, vision coverage, stock purchase plan, and 401(k)
  • Wellness programs, including physical and mental health services
  • Flexible paid time off for full-time employees & paid leave for new parents

Rally Health believes in a policy of equal employment and opportunity for all people. It is our policy to train and promote individuals in all job titles, and administer all programs, without regard to race, color, religion, national origin or ancestry, citizenship, sex, age, marital status, pregnancy, childbirth or related medical conditions, personal appearance, sexual orientation, gender identity or expression, family responsibilities, genetic information, disability, matriculation, political affiliation, veteran status, union affiliation, or any other category protected by applicable federal, state or local laws.

Individuals with disabilities and veterans are encouraged to apply. Applicants who require an accommodation related to the application or review process should notify Talent Acquisition (

Ready to Rally?

Ready to join Rally?