Senior GRC Analyst
United StatesFull-TimeSenior
Salary not disclosed
Apply NowOpens the employer's application page
Job Details
- Experience
- 5+ years
- Required Skills
- ComplianceRisk ManagementHIPAA
Requirements
- Bachelor’s degree in information security, computer science, or related field, or equivalent experience.
- 5+ years of experience in information security (compliance, audit, or risk management).
- Direct experience with NIST SP 800-53, HITRUST, HIPAA, and/or FedRAMP.
- Experience responding to customer security questionnaires.
- Experience reviewing security-relevant language in contracts.
- Familiarity with healthcare data protection requirements.
- Experience evaluating security controls and conducting audit evidence gathering.
- Familiarity with cloud security concepts.
- Strong written and verbal communication skills.
- Proficiency with AI-supported tools such as ChatGPT or CoPilot.
Responsibilities
- Evaluate organizational policies and standards against compliance requirements.
- Develop compliance program improvements using AI, automation, and process optimization.
- Review security-relevant language in customer contracts and RFP/RFI security sections.
- Respond to customer security questionnaires using AI-assisted tools.
- Manage and update trust center content and customer-facing documentation.
- Perform vendor security risk assessments.
- Support internal and external audit reviews and evidence collection.
- Monitor internal compliance training programs.
- Communicate compliance posture to internal and external stakeholders.
View Full Description & ApplyYou'll be redirected to the employer's site
