GRC Analyst

  • Posted 5 hours ago | Updated 5 hours ago

Overview

Remote
$70 - $80
Contract - Independent
Contract - W2
Contract - 6 Month(s)
No Travel Required

Skills

HITRUST
HIPAA
GRC
Cybersecurity

Job Details

Job Description
Seeking a Customer Assurance & Trust, IT Security professional to drive vendor risk management, compliance, and customer trust across healthcare, pharma, and AI. This role ensures security, privacy, and regulatory obligations are met while leading GRC programs and supporting audits.

Responsibilities

  • Manage third-party/vendor risk in regulated industries.

  • Act as SME for security/compliance in client engagements.

  • Build GRC frameworks, policies, and risk registers.

  • Maintain compliance docs (SOC 2, ISO, white papers).

  • Support audits (HIPAA, GDPR, DORA, GxP, AI compliance).

  • Partner with IT, legal, and privacy teams.

  • Track evolving AI/healthcare regulatory standards.

Requirements

  • Bachelor s in InfoSec/CS or equivalent.

  • 7+ years in Cybersecurity, GRC, or Vendor Risk.

  • Experience with HIPAA, HITRUST, GDPR, ISO 27001, SOC 2, NIST, etc.

  • Familiarity with AI/data governance and ML risk.

  • Strong vendor due diligence and remediation skills.

  • Knowledge of IAM, encryption, and data protection.

  • Excellent communication; English required (French/Italian a plus).

Nice to Have
Certifications (CISA, CISSP, CRISC, HITRUST, etc.); healthcare/pharma experience.

Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.