Candescent is the largest non-core digital banking provider. We bring together the transformative technologies that power and connect account opening, digital banking and branch solutions for banks and credit unions of all sizes on any core. Our Candescent solutions power the top three U.S. mobile banking apps and are trusted by banks and credit unions of all sizes.

We offer an extensive portfolio of industry-leading products and services with an extensible ecosystem of out-of-the-box and integrated partner solutions. In addition, our API-first architecture and developer tools enable financial institutions to optimize and expand upon their existing capabilities by seamlessly integrating custom-built or third-party solutions. And our connected in-person, remote and digital experiences reinvent customer service across all channels.

Self-service configuration and marketing tools give financial institutions greater control of their branding, targeted messaging and overall user experience. And data-driven analytics and reporting tools provide valuable insights to help drive continued growth and profitability. From conversions and implementations to custom development and customer care, our clients get expert, end-to-end support at every step.

Job Title: Director of Governance, Risk & Compliance (GRC)

Location: ATL / GHQ office

Reports To: Chief Compliance Officer / General Counsel

Position Overview

Strategic and experienced Director of Governance, Risk & Compliance (GRC) to lead the Candescent global compliance and ethics program across all regions of operation (US, Canada, UK, India, Serbia) under the direction of Corporate Counsel. This role is critical to ensuring our fintech organization maintains the highest standards of integrity, regulatory compliance, and risk management. The ideal candidate will bring expertise in corporate ethics and compliance program establishment and ongoing management, monitoring of regulatory frameworks (FFIEC, SOC 2, PCI), and privacy standards (including GDPR, CCPA, and other global regulations).

Key Responsibilities

Governance & Ethics

• Lead the development and implementation of global corporate ethics policies and related training programs.
• Serve as a key advisor on ethical business practices and decision-making across departments.
• Oversee whistleblower programs and internal investigations.

Risk Management

• Develop and maintain the enterprise risk management framework.
• Conduct risk assessments across business units and geographies.
• Collaborate with external or internal auditors and legal teams to monitor and mitigate risks.

Compliance Oversight

• In partnership with management, ensure compliance with FFIEC, SOC 2, and PCI DSS standards.
• Partner with IT and InfoSec teams to manage the internal and external audits related to IT security, financial controls, and operational compliance.
• Working with privacy counsel, monitor regulatory changes and ensure timely updates to policies and procedures.
• Manage and execute compliance outreach to employees and/or contractors for global compliance training requirements, including creation of and execution of related awareness programs.

Privacy & Data Protection

• Under the direction of privacy counsel, monitor global privacy compliance framework of controls, including GDPR, CCPA, LGPD, and other regional laws.
• Partner with IT and privacy counsel to ensure data governance and protection strategies are effective.
• Lead incident response efforts for data breaches and privacy violations, under direction of privacy counsel and in partnership with CISO office.

Reporting & Communication

• Prepare and present compliance reports to executive leadership and/or the board on a regular basis.
• Maintain relationships with regulators and industry bodies.
• Communicate compliance priorities and updates across the organization.

Qualifications

• Bachelor’s degree in Law, Business, or related field; advanced degree preferred.
• 10+ years of experience in compliance, risk management, or legal roles within financial services or fintech.
• Proven leadership in global compliance programs.
• Knowledge of FFIEC, SOC 2, PCI DSS, and international privacy laws.
• Strong analytical, communication, and stakeholder management skills.
• Certifications such as CCEP, CISA, CIPM, or CRISC are a plus.

EEO Statement

Integrated into our shared values is Candescent’s commitment to diversity and equal employment opportunity. All qualified applicants will receive consideration for employment without regard to sex, age, race, color, creed, religion, national origin, disability, sexual orientation, gender identity, veteran status, military service, genetic information, or any other characteristic or conduct protected by law. Candescent is committed to being a globally inclusive company where all people are treated fairly, recognized for their individuality, promoted based on performance and encouraged to strive to reach their full potential. We believe in understanding and respecting differences among all people. Every individual at Candescent has an ongoing responsibility to respect and support a globally diverse environment.

Statement to Third Party Agencies
To ALL recruitment agencies: Candescent only accepts resumes from agencies on the preferred supplier list. Please do not forward resumes to our applicant tracking system, Candescent employees, or any Candescent facility. Candescent is not responsible for any fees or charges associated with unsolicited resumes.