Manager of Healthcare Risk & Compliance (GRC) - Remote jobs in United States
cer-icon
Apply on Employer Site
company-logo

Confidential Careers · 6 days ago

Manager of Healthcare Risk & Compliance (GRC) - Remote

positionUnited States
timeFull-time
remoteRemote
senioritySenior Level
date7+ years exp

Confidential Careers is seeking a Manager of Security & Compliance (GRC) to lead their governance, risk, and compliance program. This role will oversee daily operations, ensure adherence to industry standards, and serve as a trusted advisor to leadership and auditors.

Human ResourcesRecruiting

Responsibilities

Lead and manage daily operations of the Security & Compliance function, including workflow analysis, priority setting, standards development, and deadline management
Assign, review, and guide the work of security engineers and compliance analysts to ensure high-quality, timely execution
Hire, train, mentor, and supervise team members; participate in staffing and performance decisions
Serve as a trusted partner to directors, managers, vendors, and external stakeholders to resolve issues and drive alignment
Own and maintain the company’s internal compliance program and GRC automation platform
Lead SOC 2 Type II audit readiness, coordination, and execution; support internal and external auditors during assessments
Conduct periodic internal security and compliance reviews and audits
Create, review, maintain, and enforce security and compliance policies and procedures aligned to NIST standards
Chair and lead the Policy Management Committee, ensuring policies remain current and actionable
Assess product, operational, and compliance risks; partner with the Risk Management Board to develop mitigation strategies
Actively participate as a member of the Enterprise Governance Board
Support and mature the Third-Party Risk Management (TPRM) program, including vendor risk assessments and documentation review
Administer the organization’s physical security program, including access control systems and camera management
Coordinate and lead incident response tabletop exercises in collaboration with IT, Legal, HR, and other departments
Develop, administer, and continuously improve Security Awareness Training for new hires and employees
Respond to customer security questionnaires and lead in-person or virtual compliance reviews with clients
Clearly communicate security posture, controls, and compliance practices to build trust and support sales and client retention

Qualification

GovernanceRisk & Compliance (GRC)SOC 2 Type II AuditsNIST FrameworksRisk Assessment & MitigationPolicy Development & ManagementPeople LeadershipGRC Tools ExperienceWritten CommunicationAttention to DetailTime ManagementOrganizational Skills

Required

7+ years of progressive experience in Information Security, Compliance, and GRC roles
Demonstrated experience leading SOC 2 Type II audits and compliance programs
Strong working knowledge of NIST frameworks, risk management, and policy governance
Proven people leadership experience, including managing engineers and analysts
Experience working with GRC tools and automation platforms
Strong written communication skills with the ability to draft, edit, and maintain clear policies and documentation
Exceptional attention to detail, time management, and organizational skills

Company

Confidential Careers

twittertwitter
company-logo
Disclaimer : We are a community and job agrregator job board, where recruiters & job seekers as members connect for confidential and other roles.
dateFounded in 2024
location
Gurgaon, Haryana, IND
people-size2-10 employees
web-link
https://confidential.careers

Funding

Current Stage
Early Stage

Leadership Team

E
Edwin Xiao
Chief Revenue Officer
linkedin
Company data provided by crunchbase