Lead GRC Analyst

Sorry, this job was removed at 01:02 p.m. (CST) on Tuesday, Dec 17, 2024
Hiring Remotely in United States
Remote
100K-140K Annually
Internship
Healthtech • Other • Software
The Role

Description

About Us

TherapyNotes is the go-to superhero for behavioral health Practice Management and EHR software! Our top-notch SaaS solution handles scheduling, billing, documenting, telehealth, and more so clinicians can focus on awesome patient care.

We're a dynamic team of pros who love to innovate and push the envelope, keeping our software cutting-edge. Join us, and let's revolutionize behavioral health software together while making a real difference!

Position Description

TherapyNotes is seeking an experienced cyber security professional to join our team of technology enthusiasts. The right candidate should have a focus on cybersecurity compliance, security control implementation, risk/vulnerability management, continuous monitoring, and security awareness training. The role will serve as the liaison for external audits, oversee an internal cybersecurity audit program, and lead a team of GRC Analysts. This role requires a strong understanding of regulatory requirements, risk management frameworks, and industry best practices.

Qualifications

  • BS degree from an accredited postsecondary institution or program in Information Security, Risk Management, Business Administration, or related field
  • 5+ years of experience in GRC, risk management, or related fields, with demonstrated leadership experience
  • Certified Information Systems Security Professional (CISSP), Certified Information Security Auditor (CISA), Certified Information Security Manager (CISM) or Certified in Risk and Information Systems Control (CRISC) strongly preferred
  • Strong knowledge of regulatory requirements (e.g., GDPR, HIPAA, PCI-DSS, CPRA) and industry standards (e.g., ISO 27001, NIST).
  • Expert in designing, implementing, and maintaining security solutions
  • Experience developing and implementing GRC frameworks, policies, and procedures
  • Expert in OWASP, CIS and/or other security standards and secure configuration baselines
  • Proficiency with cloud-based solutions and web related technologies

Responsibilities

  • Develop and implement GRC strategies, policies, and procedures to ensure compliance with regulatory standards and industry best practices.
  • Lead the assessment and management of risks across the organization, including conducting risk assessments, identifying gaps, and developing mitigation plans.
  • Collaborate with cross-functional teams to integrate GRC principles into business processes and systems.
  • Monitor regulatory changes and industry trends to ensure the organization remains compliant and proactive in addressing emerging risks.
  • Provide guidance and training to employees on GRC policies, procedures, and best practices.
  • Oversee the execution of audits, assessments, and compliance activities to validate adherence to compliance standards.
  • Act as a liaison with external auditors, regulators, and stakeholders on GRC-related matters.
  • Develop and maintain key performance indicators (KPIs) and metrics to measure the effectiveness of GRC initiatives.
  • Mentor and coach GRC analysts, fostering their professional development and growth within the organization.
  • Drive the execution and continual improvement of the company’s information security program, including meeting HIPAA-HITECH, state, and GDPR compliance requirements
  • Identify and document cyber risks and manage mitigation, follow up on open security risks, and report issues to leadership
  • Assist with ad-hoc compliance reporting and follow up with customers and/or support partners to ensure all identified vulnerabilities are being addressed
  • Provide support to Information Security Incident Response team during cyber/privacy incidents
  • Validate that information security requirements are built into architectures and new technology projects
  • Ensures the running application and developing codebase protects the confidentiality, integrity, and availability of our customer's data
  • Evaluate the technical security posture of newly proposed third-party solutions

Benefits

  • Competitive salary - $100,000-$140,000
  • Employer sponsored health, dental, vision, life, and disability insurance
  • Retirement plan with company contribution
  • Annual company profit sharing
  • Personal development/training budget
  • Open, collaborative work environment
  • Extensive 2-week onboarding plan
  • Comprehensive mentorship program

TherapyNotes, LLC is an Equal Employment Opportunity Employer. All applicants will be considered for employment without attention to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran or disability status. All candidates whom have been given a conditional offer of employment with TherapyNotes, LLC must also undergo a criminal background check.

#LI-Remote
#LI-PL1

11/7/2024

The Company
HQ: Horsham, PA
85 Employees
On-site Workplace
Year Founded: 2010

What We Do

TherapyNotes™ is an online practice management system for behavioral health, featuring robust notes, scheduling, and billing features.

The heart of TherapyNotes™ is the notes system. Whereas most practice management systems offer a generic free-form text area, TherapyNotes™ offers an easy-to-use form-filled approach, greatly speeding up data entry and note writing. The notes were carefully designed by TherapyNotes™ cofounder and psychologist Debra Pliner, with feedback from other psychologists, psychiatrists, and significant research to maximize compliance with insurance, HIPAA, and industry standards.

TherapyNotes™ also offers a powerful “to do” list which automatically directs clinicians regarding what actions need to be taken such as notes to write after sessions, to contact the primary care physician when appropriate, or reminders to schedule treatment plan updates.

TherapyNotes™ was developed by the husband and wife team: Dr. Debra Pliner, clinical psychologist, and Brad Pliner, web technologies expert, to fill a need for a practice management system that was built for the unique needs of mental health practitioners.

Similar Jobs

NBCUniversal Logo NBCUniversal

GRC Analyst

AdTech • Cloud • Digital Media • Information Technology • News + Entertainment • App development
Remote
Hybrid
New York, NY, USA
68000 Employees
70K-90K Annually

TherapyNotes, LLC Logo TherapyNotes, LLC

Lead GRC Analyst

Healthtech • Other • Software
Remote
United States
85 Employees
100K-140K Annually

NBCUniversal Logo NBCUniversal

Staff Enterprise GRC Developer

AdTech • Cloud • Digital Media • Information Technology • News + Entertainment • App development
Remote
Hybrid
New York, NY, USA
68000 Employees
130K-160K Annually

Ro Logo Ro

Sr. GRC Compliance Analyst

Healthtech • Pharmaceutical • Telehealth
Easy Apply
Remote
2 Locations
649 Employees
134K-158K Annually

Similar Companies Hiring

Jobba Trade Technologies, Inc. Thumbnail
Software • Professional Services • Productivity • Information Technology • Cloud
Chicago, IL
45 Employees
RunPod Thumbnail
Software • Infrastructure as a Service (IaaS) • Cloud • Artificial Intelligence
Charlotte, North Carolina
53 Employees
Hedra Thumbnail
Software • News + Entertainment • Marketing Tech • Generative AI • Enterprise Web • Digital Media • Consumer Web
San Francisco, CA
14 Employees

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account