
5001 - 10000 employees
Founded 1996
Boston Medical Center (BMC) is a 511-bed, equity-led academic medical center and a proud member of the Boston Medical Center Health System. BMC delivers a model of healthcare where innovative and equitable care empowers all patients to thrive. As a premier academic medical center in Boston, a national leader in clinical care, and the largest essential hospital in New England, BMCâs world-class clinicians provide comprehensive care in more than 70 specialties and subspecialties.
đ„ 4 minutes ago
đșđž United States â Remote
đ” $89.5k - $130k / year
â° Full Time
đ Senior
đ Security Analyst
Improve your chances of getting an interview by checking your resume score before you apply.

5001 - 10000 employees
Founded 1996
Boston Medical Center (BMC) is a 511-bed, equity-led academic medical center and a proud member of the Boston Medical Center Health System. BMC delivers a model of healthcare where innovative and equitable care empowers all patients to thrive. As a premier academic medical center in Boston, a national leader in clinical care, and the largest essential hospital in New England, BMCâs world-class clinicians provide comprehensive care in more than 70 specialties and subspecialties.
âą Lead execution of GRC program initiatives, contributing design input on processes, workflows, and work products as the program matures toward enterprise tooling adoption. âą Maintain and operationalize risk registers, control frameworks, and maturity assessments aligned to NIST CSF 2.0, HIPAA/HITECH, and applicable federal and state security and privacy regulations. âą Drive compliance monitoring activities and recommend updates to security policies, standards, and procedures that balance regulatory rigor with operational practicality. âą Coordinate the third-party risk management process, including vendor risk assessments and ongoing vendor risk workflows. âą Apply risk scoring methodologies to support framework maturity tracking and quantified risk metrics, incorporating business continuity and disaster recovery considerations. âą Manage structured GRC work products in spreadsheet and document-based environments (e.g., Excel, SharePoint), keeping them accurate, accessible, and audit-ready on an ongoing basis. âą Translate technical findings into clear, actionable written and verbal reporting for executive and non-technical audiences. âą Partner with stakeholders across IT and non-IT business functions to advance new standards and workflows, influencing adoption without direct authority. âą Prioritize multiple concurrent workstreams to deliver accurate results on schedule in a fast-paced, evolving environment.
âą Bachelor's degree in Cybersecurity, Computer Science, Information Management, or a related field preferred âą A minimum of six years of experience in information security or related discipline, with a strong focus on governance, risk, and compliance programs in complex or regulated environments. âą Demonstrated experience building or significantly maturing a GRC function, including the design of processes and workflows prior to enterprise tooling adoption. âą Professional certifications such as CISA, CRISC, CISSP, or equivalent are highly desirable. âą Demonstrated experience in data mining, analysis and report development required. âą Strong knowledge of information systems security concepts and current information security/privacy trends and practices. âą Knowledge of Federal and State security and privacy-related regulatory requirements. âą Must be able to prepare formal reports and presentations as needed. âą Knowledge about medical records and other medical information, patient privacy and confidentiality, and release of information.
âą medical, dental, vision, pharmacy âą discretionary annual bonuses and merit increases âą Flexible Spending Accounts âą 403(b) savings matches âą paid time off âą career advancement opportunities âą resources to support employee and family well-being
Apply Nowđ„ 16 minutes ago
Information Security GRC Analyst III at CareSource managing and reporting on information security risks, vendor risk management, and ensuring alignment with enterprise risk management policies.
đșđž United States â Remote
đ” $94.1k - $164.8k / year
â° Full Time
đ Senior
đŽ Lead
đ Security Analyst
đŠ H1B Visa Sponsor
đ„ 52 minutes ago
ISSO Security Analyst ensuring security compliance for information systems while collaborating with Veterans Affairs stakeholders. Driving completion of Risk Management Framework activities and supporting IT deployments.
đșđž United States â Remote
đ” $85k - $90k / year
â° Full Time
đĄ Mid-level
đ Senior
đ Security Analyst
đ„ 1 hour ago
Senior Cybersecurity Analyst responsible for securing LSACâs network and intellectual property. Collaborating with departments to raise Security awareness and enhance Security best practices.
đșđž United States â Remote
đ” $120k - $132k / year
â° Full Time
đ Senior
đ Security Analyst
đ„ 8 hours ago
Offensive Security Analyst verifying and calibrating findings to improve automation at Sprocket Security. Working with R&D to cut false positives and enhance client deliverables.
đ 3 days ago
5001 - 10000
Security Compliance Analyst at Twilio managing regulatory strategy and cybersecurity compliance initiatives. Collaborating across departments while ensuring compliance and operational effectiveness.
đșđž United States â Remote
đ” $128.6k - $188.9k / year
â° Full Time
đĄ Mid-level
đ Senior
đ Security Analyst
đŠ H1B Visa Sponsor