Senior IT GRC Advisor (100% Remote - Preference in NC) jobs in United States
cer-icon
Apply on Employer Site
company-logo

Vaco by Highspring · 14 hours ago

Senior IT GRC Advisor (100% Remote - Preference in NC)

positionUnited States
timeFull-time
remoteRemote
seniorityMid, Senior Level
money$85K/yr - $110K/yr
date2+ years exp

Vaco by Highspring is partnering with a mission-driven organization in the healthcare space to hire a Senior IT GRC Advisor. This role involves leading IT risk assessments and audits, performing vendor risk assessments, and collaborating with stakeholders to strengthen IT internal controls.

Staffing & Recruiting
check
H1B Sponsor Likelynote
Hiring Manager
Faith Keller, PHR
linkedin

Responsibilities

Lead and execute IT risk assessments, IT audits, and advisory engagements across systems, infrastructure, and IT processes
Perform vendor risk assessments, including security, privacy, disaster recovery, and contract compliance reviews for cloud-based systems and SaaS platforms
Review SOC 2 reports, penetration test results, and other assurance documentation to identify risks and evaluate control effectiveness
Provide guidance on IT initiatives and projects, ensuring risks are identified, assessed, and mitigated appropriately
Support the development and maintenance of risk management methodologies, templates, internal reporting, and GRC documentation
Collaborate with stakeholders to strengthen IT internal controls and develop corrective action plans where needed
Contribute to internal policy reviews, compliance activities, and occasional corporate insurance or governance initiatives
Develop and deliver training and awareness programs related to IT controls and risk
Stay current on industry frameworks and best practices, including COBIT, NIST, ITIL, and other relevant standards

Qualification

IT auditIT risk managementCISA certificationCISSP certificationCISM certificationCloud technologiesVendor risk assessmentsSOC 2 reportsNIST frameworkCOBIT frameworkITIL frameworkCommunication skillsProject management

Required

2-6 years in IT audit, IT security, or IT risk management
Experience leading complex IT audits or advisory engagements
Strong understanding of IT infrastructure, cybersecurity risks, cloud technologies, and third-party vendor oversight
Experience evaluating cloud systems (AWS, Azure, or similar environments)
Ability to work independently, manage multiple projects, and communicate findings clearly to both technical and non-technical audiences
Professional certification: CISA, CISSP, or CISM (required)
Bachelor's degree in Information Systems, IT Audit, Cybersecurity, or a related field

Preferred

Experience with HIPAA Security Rule
Background conducting cloud platform audits
Exposure to AI audit or AI governance assessments (nice to have, not required)
Familiarity with vendor management best practices and cloud assurance documentation

Benefits

Encouraged unlimited PTO
Excellent benefits

Company

Vaco by Highspring

twitter
company-logo
Vaco is the Talent Solutions division of Highspring, a leading global professional services organization.
location
Brentwood, Tennessee, US
people-size5001-10000 employees
web-link
https://vaco.com

H1B Sponsorship

Vaco by Highspring has a track record of offering H1B sponsorships. Please note that this does not guarantee sponsorship for this specific role. Below presents additional info for your reference. (Data Powered by US Department of Labor)
Distribution of Different Job Fields Receiving Sponsorship
Represents job field similar to this job
Trends of Total Sponsorships
2023 (1)

Funding

Current Stage
Late Stage
Company data provided by crunchbase