Manager of Healthcare Risk & Compliance (GRC) - Connecticut jobs in United States
cer-icon
Apply on Employer Site
company-logo

Confidential Careers · 2 days ago

Manager of Healthcare Risk & Compliance (GRC) - Connecticut

positionConnecticut, United States
timeFull-time
remoteHybrid
senioritySenior Level
date7+ years exp

Confidential Careers is seeking a Manager of Security & Compliance (GRC) to lead the organization’s governance, risk, and compliance program. This role is responsible for overseeing daily security and compliance operations and ensuring adherence to industry standards such as HIPAA and SOC 2, while serving as a key advisor to leadership and managing internal governance initiatives.

Human ResourcesRecruiting

Responsibilities

Lead and manage daily operations of the Security & Compliance function, including workflow analysis, priority setting, standards development, and deadline management
Assign, review, and guide the work of security engineers and compliance analysts to ensure high-quality, timely execution
Serve as a trusted partner to directors, managers, vendors, and external stakeholders to resolve issues and drive alignment
Own and maintain the company’s internal compliance program and GRC automation platform
Lead SOC 2 Type II audit readiness, coordination, and execution; support internal and external auditors during assessments
Conduct periodic internal security and compliance reviews and audits
Create, review, maintain, and enforce security and compliance policies and procedures aligned to NIST standards
Assess product, operational, and compliance risks; partner with the Risk Management Board to develop mitigation strategies
Actively participate as a member of the Enterprise Governance Board
Support and mature the Third-Party Risk Management (TPRM) program, including vendor risk assessments and documentation review
Administer the organization’s physical security program, including access control systems and camera management
Coordinate and lead incident response tabletop exercises in collaboration with IT, Legal, HR, and other departments
Develop, administer, and continuously improve Security Awareness Training for new hires and employees where necessary
Respond to customer security questionnaires and lead in-person or virtual compliance reviews with clients
Clearly communicate security posture, controls, and compliance practices to build trust and support sales and client retention

Qualification

GovernanceRisk & Compliance (GRC)SOC 2 Type II AuditsNIST FrameworksRisk Assessment & MitigationPolicy Development & ManagementWritten CommunicationAttention to DetailTime ManagementOrganizational Skills

Required

7+ years of progressive experience in Information Security, Compliance, and GRC roles
Demonstrated experience leading SOC 2 Type II and HIPAA audits and compliance programs
Strong working knowledge of NIST frameworks, risk management, and policy governance
Experience working with GRC tools and automation platforms
Strong written communication skills with the ability to draft, edit, and maintain clear policies and documentation
Exceptional attention to detail, time management, and organizational skills

Company

Confidential Careers

twittertwitter
company-logo
Disclaimer : We are a community and job agrregator job board, where recruiters & job seekers as members connect for confidential and other roles.
dateFounded in 2024
location
Gurgaon, Haryana, IND
people-size2-10 employees
web-link
https://confidential.careers

Funding

Current Stage
Early Stage

Leadership Team

E
Edwin Xiao
Chief Revenue Officer
linkedin
Company data provided by crunchbase