Director, Governance Risk & Compliance

Date:  Jul 14, 2024
Job Requisition ID:  1318
Company:  Hanesbrands Inc
Brand:  Corporate

Winston-Salem, NC, US, 27105


HanesBrands (NYSE: HBI) makes everyday apparel that is known and loved by consumers around the world for comfort, quality and value. Among the company’s iconic brands are Hanes, the leading basic apparel brand in the United States; Champion, an innovator at the intersection of lifestyle and athletic apparel; Bonds, which is setting new standards for design and sustainability; Maidenform, America’s number one shapewear brand; and Bali, America’s number one bra brand. HBI employs 48,000 associates in 29 countries and has built a strong reputation for workplace quality and ethical business practices. The company, a longtime leader in sustainability, has set aggressive 2030 goals to improve the lives of people, protect the planet and produce sustainable products. HBI is building on its unmatched strengths to unlock its #FullPotential and deliver long-term growth that benefits all of its stakeholders.


We are seeking an experienced and strategic-minded Director of Governance Risk & Compliance to oversee the development and implementation of and operating a strategic, risk-based program for our GRC program. The successful candidate will play a key role in establishing and maintaining effective governance practices, managing risks, and ensuring compliance with applicable regulations and standards.



  • Develop and implement the organization's GRC framework, policies, and procedures to ensure effective governance, risk management, and compliance.
  • Lead the GRC team in identifying, assessing, and managing risks across the organization, including operational, financial, and cybersecurity risks.
  • Collaborate with business units to assess compliance with regulatory requirements, industry standards, and internal policies.
  • Conduct regular risk assessments and gap analyses to identify areas for improvement and develop remediation plans.
  • Monitor changes in regulations and standards relevant to the organization's operations and implement necessary updates to the GRC program.
  • Establish and maintain relationships with external auditors, regulators, and industry peers to stay informed about best practices and emerging trends in GRC.
  • Provide guidance and support to business units on GRC matters, including interpreting regulations, resolving compliance issues, and implementing controls.
  • Prepare and present GRC reports and metrics to senior management and the board of directors to demonstrate the organization's risk and compliance posture.
  • Supports regulatory compliance related to IT General Control,  SOX and PCI requirements with emphasis on change management, internal controls, quality assurance (QA) and business continuance.
  • Administers all HBI IT compliance policies, systems, and processes, and makes recommendations of tools to support policies and procedures. Participates in risk management for major initiatives, identifying risks and recommending actions to minimize risks.


Minimum Education/ Experience 

  • Bachelor's degree with 10+ years relevant work experience including prior management experience; 4+ years of equivalent work experience can be substituted for Bachelor's degree


Preferred Education/ Experience

  • Master's degree with 8+ years relevant work experience


Required Certification(s)

  • ISACA’s Certified Information Security Manager or equivalent)


Preferred Certification(s)

  • Relevant certifications (e.g., CRISC, CISA) preferred.


Specific Skills or Experience Required:

  • Extensive experience (8+ years) in governance, risk management, and compliance roles, preferably in a regulated industry.
  • Strong leadership and team management skills, with a proven ability to build and lead high-performing GRC teams.
  • In-depth knowledge of regulatory requirements and standards (e.g., SOX, GDPR, PCI DSS, ISO 27001) relevant to the organization's operations.
  • Experience in developing and implementing GRC frameworks, policies, and procedures.
  • Strong working knowledge and understanding of key concepts in Information Security, Risk Management, Compliance.
  • Understanding of corporate Governance, Risk, Compliance, and Privacy functions
  • Consistently demonstrated growth in their own skills & leadership.


Job Specific Competencies:

  • Excellent analytical and problem-solving skills, with the ability to assess complex GRC issues and develop effective solutions.
  • Strong communication and interpersonal skills, with the ability to collaborate effectively with stakeholders at all levels of the organization.
  • Experience with developing cybersecurity risk management process to include risk collection, risk register, and risk treatment criteria
  • In depth knowledge of awareness training and anti-phishing campaigns


Core Competencies

  • Data Fluency
  • Written/verbal communication and listening
  • Strong interpersonal and relationship skills
  • Teamwork and collaboration
  • Results orientation
  • Adaptability


Core Values

  • Play to Win - We expect to win, working together to drive results. We push ourselves to simplify and innovate. When we fail, learn from it.  We will break with the past when necessary to move forward.
  • Act Like Owners - We take action. We build relationships across functions so we can see the company holistically and seek out opportunities for improvement.  We’re willing to sacrifice in one area if that leads to our overall success.
  • Do What’s Right - We behave ethically. We are transparent. We share information about the factors influencing our actions. Our behavior aligns with our values. Our products make the world a better place.
  • Create Opportunity for All - With success comes opportunity.  Everyone is respected and included.  We provide opportunities for all associates to reach their Full Potential.


This position requires full COVID-19 vaccination. Applicants may request exemption from the vaccine requirement for medical or religious reasons by contacting


To qualify, applicants must be legally authorized to work in the United States and should not require now, or in the future, sponsorship for employment visa status


EOE/AA: Minorities/Females/Veterans/Disabled

Only applicants requiring reasonable accommodation for any part of the application and hiring process should contact us directly:  

Telephone: 877.999.5553


Nearest Major Market: Winston-Salem

Job Segment: Quality Assurance, QA, Compliance, Garment, Apparel, Technology, Quality, Legal, Fashion