Loading...
SeniorFull-timeGoRustAWSGCPRESTAI
About the Role
We are seeking a Governance Risk and Compliance Manager to oversee regulatory compliance, risk management, and governance programs at Included Health. This role ensures compliance with healthcare regulations like HIPAA, HITECH, and SOC 2 while building a robust GRC framework to protect protected health information. The position reports directly to the Chief Information Security Officer and plays a crucial role within the Governance, Risk & Compliance team.
Key Responsibilities
- βManage the complete third-party risk management program, including vendor assessments and contract reviews.
- βConduct security risk assessments for vendors handling protected health information.
- βOversee all internal and external audits, including SOC 2 and HIPAA compliance.
- βDevelop and maintain the company's incident response plan and security awareness programs.
- βLead responses to client security questionnaires, RFPs, and assessments.
- βCreate, review, and maintain clear security policies, standards, and procedures.
- βManage the enterprise risk management program and conduct annual risk assessments.
Requirements
- β7+ years of experience in GRC, compliance, risk management, or information security roles.
- βAt least 4 years in a management or leadership capacity.
- βDemonstrated experience managing third-party risk management programs and vendor assessments.
- βHands-on expertise leading external audits for SOC 2 Type 2 and HIPAA frameworks.
- βProven ability to build and manage enterprise risk programs and incident response plans.
- βDirect experience serving as a security subject matter expert in client-facing roles.
- βExceptional technical writing skills for creating security policies and documentation.
Benefits
- β Remote-first culture with work-from-home reimbursement.
- β Comprehensive medical, vision, and dental coverage with disability insurance.
- β 401(k) savings plan through Fidelity.
- β Generous paid time off and discretionary time off.
- β 12 weeks of 100% paid parental leave.
- β Fertility and family building benefit up to $25,000.
- β Compassionate leave for family building challenges.
- β 11 paid holidays plus one floating holiday.
- β 24 hours of paid volunteer time off per year.
