Governance, Risk and Compliance Analyst

Job not on LinkedIn

🔥 0 minutes ago

Apply Now
Find Similar Remote Jobs

📊 Check your resume score for this job

Improve your chances of getting an interview by checking your resume score before you apply.

Logo of Ellit Groups

Ellit Groups

51 - 200 employees

Founded 2019

Healthcare • Life Sciences • Managed Services

Ellit Groups is a forward-thinking organization dedicated to transforming healthcare through innovative solutions. They specialize in bridging the gap between people, processes, and technology, effectively addressing business challenges within the healthcare and life sciences sectors. With an award-winning team of experts, Ellit Groups offers services such as healthcare and payer advisory, performance improvement, digital strategy and transformation, and managed services. Their commitment to enhancing patient outcomes and fostering sustainable growth makes them a vital partner for healthcare organizations and life sciences companies.

📋 Description

• Build, lead, and mature the IT Governance, Risk, and Compliance program. • Architect the new Sarbanes-Oxley (SOX) IT controls framework. • Establish and lead the company's annual internal IT audit program. • Design and implement a unified control framework that is both compliant and practical. • Collaborate closely with key stakeholders like SaaS owners, Legal, Finance, and Security Engineering. • Lead the development, documentation, and implementation of the SOX IT RACM Program. • Proactively drive IT control maturity milestones. • Lead control harmonization efforts by analyzing multiple frameworks. • Establish and lead internal audits and assessments to evaluate control effectiveness. • Act as a hands-on technical GRC expert, validating controls directly in systems. • Lead GRC advisory and remediation sessions with system owners. • Establish and lead risk identification workshops.

🎯 Requirements

• Bachelor's Degree (or equivalent) in Information Technology, Computer Science, IT Audit, or a related field. • 2 - 5 years of progressive experience in IT Audit, IT Risk Management, or IT GRC. • Demonstrable, hands-on experience in building, implementing, and/or managing a SOX 404 IT controls program is essential. • Expert-level knowledge and practical implementation experience with COSO (for ICFR) and COBIT (for ITGCs). • Strong understanding of other frameworks like ISO 27001, Cyber Trust Mark, CCF, NIST, and PCI-DSS is also required. • Deep experience in managing and responding to external audits, particularly SOC1. • Demonstrate a strong understanding of modern authentication and authorization protocols (e.g., SSO, OAuth, SAML). • Understand Identity and Access Management (IAM) concepts, including roles, privileges, permissions, and the difference between default/built-in vs. custom accounts/groups. • Be technically proficient enough to navigate the configuration settings of diverse systems to find evidence. • Understand IT operations concepts, including batch jobs, incident management, and the use of ticketing systems (like Jira) and audit trails as evidence. • An aptitude for and keen interest in learning new technologies. • Professional certifications such as CISA, CRISC, CISM, or CGEIT are highly preferred. • Proven ability to manage complex projects, drive milestones, and lead cross-functional initiatives. • Exceptional communication and presentation skills.

🏖️ Benefits

• Employees can work remotely

Apply Now

Similar Jobs

🕒 Yesterday

Parexel

10,000+ employees

⚕️ Healthcare Insurance

🧬 Biotechnology

💊 Pharmaceuticals

Clinical Trial Submission Lead managing regulatory applications and project coordination for global clinical trials. Collaborating with cross-functional teams to ensure timely and compliant submissions.

🇮🇳 India – Remote

💰 Venture Round on 1990-01

⏰ Full Time

🟢 Junior

🟡 Mid-level

🚔 Compliance

🕒 4 days ago

QAD

1001 - 5000

🏢 Enterprise

☁️ SaaS

Senior Process and Compliance Analyst at QAD managing compliance activities and internal audits. Ensuring adherence to industry standards in cybersecurity and process management.

🕒 June 30

Parexel

10,000+ employees

⚕️ Healthcare Insurance

🧬 Biotechnology

💊 Pharmaceuticals

Regulatory Affairs Associate supporting global regulatory lifecycle management activities for EU, US, and international markets. Preparing submission packages and managing post-approval processes under regulatory compliance.

🇮🇳 India – Remote

💰 Venture Round on 1990-01

⏰ Full Time

🟢 Junior

🟡 Mid-level

🚔 Compliance

🕒 June 25

Fortrea

10,000+ employees

🧬 Biotechnology

💊 Pharmaceuticals

⚕️ Healthcare Insurance

Regulatory Manager in Clinical Research overseeing regulatory submissions in collaboration with project teams. Managing compliance and quality assurance for global projects from India.

🕒 June 24

Pinnacle Group, Inc.

5001 - 10000

🏢 Enterprise

👥 HR Tech

🤝 B2B

GRC Manager managing the third-party risk management program at Pinnacle Group. Collaborating across teams to identify, analyze and mitigate risks in technology and vendor management.