Governance Risk & Compliance Analyst III

The Governance Risk & Compliance Analyst III plays a critical role in Vatica’s Information Security Program, evaluating and assessing cyber and data risk exposure, and supporting the planning and implementation of information security controls.

Requirements

• Bachelor’s degree in computer science or technology/information security-related field or equivalent experience
• Minimum of four (4) years of direct experience in a GRC role where risk-based methodology is used
• Certified in Risk and Information Systems Controls (CRISC) or equivalent
• Certified Information Systems Auditor (CISA) is preferred
• Strong understanding of ISO-27000 based security program functional areas and other commonly accepted standards
• Familiarity of relevant healthcare regulatory requirements
• Knowledge of computer networking, operating systems, application development, cloud base solutions, and information security tools
• Robust understanding and proficiency with compliance and audit processes associated with major federal and industry regulations (e.g., HIPAA)
• Experience participating in a HITRUST R2 audit cycle
• Strong understanding of policy, compliance, and best practice security principles
• Excellent analytical, decision-making, and problem-solving skills
• Exceptional communication skills, both verbally and in writing, to technical and non-technical audiences of various levels
• Able to work independently with minimal guidance

Benefits

• Competitive salary based on experience and skills
• Bonus Potential
• 401k plans
• Room for growth and advancement
• Comprehensive Medical, Dental, and Vision insurance plans
• Tax-free Dependent Care Account
• Life insurance, short-term, and long-term disability
• Excellent PTO policy
• Great work-life balance environment
• Strong supportive teams